Data Protection and Privacy

Data controller:

MBT Teknik Yapı Kimyasalları Sanayi ve Tic. A.Ş. Eyüp Sultan Mah. Sekmen Cad. HAYY 1000A No:26 K:5 D:8, 34885 Sancaktepe, İstanbul, Türkiye

You may also contact our data protection coordinator Emre Karaca via the e-mail address emre.karaca@mbt-tech.tr

You can lodge a complaint with our data protection coordinator or, in particular, with a supervisory authority in your country of habitual residence, your place of work or where the alleged infringement occurred.

Alternatively, you can contact the supervisory authority responsible for us:

Below, we would like to inform you in detail about:

​​1. What personal data do we collect when you visit and interact with our website, for what purposes and legal basis for processing​

2. How we use cookies

3. Which recipients may receive your personal data

4. How we protect your personal data

5. Your rights regarding the processing of your personal data

6. Data protection for minors​

1.1 When you visit our website without contacting us or logging in, your browser automatically transmits the following information to our server:

IP ​​address of your computer
Information about your browser
The website you were on just before you came to our website
URL or file requested
Date and time of your visit
Amount of data transmitted
Status information, such as error messages

The purpose of this data processing is:
To send the requested content to your browser.

When doing this, we only store the full IP address to the extent necessary to provide you with the requested content. We send your IP address to a service provider to match your public IP address with company and industry-related information (not personal information). We will store this industry-related information. During this process, your IP address is never stored with our service provider or in our system.
To protect us from attacks and to ensure the proper functioning of our website. In doing so, we store the data in question temporarily and with restricted access for a maximum of 180 days. Data regarding access required for further monitoring of attacks and malfunctions are excluded from this deletion after a maximum of 180 days. The legal basis for processing this data is Article 6(1)(f) of the General Data Protection Regulation (GDPR). Our legitimate interests arise from the aforementioned data processing purposes.

1.2 When you contact us via email or the contact form on our website, we will collect the following information:

Your first and last name
Your e-mail address and other personal data you provide by e-mail or via fields in a contact form
Other information provided voluntarily
When sending a message, the following data is also recorded:
Date and time of your message
Purpose of this data processing
Processing your message
Other personal data processed during sending are used to prevent misuse of the contact form and to ensure the security of our technical information systems.

The legal basis for this storage is Article 6(1)(f) GDPR. Our legitimate interests consist of the aforementioned data processing purposes, in particular, to respond to your requests, to provide a general response and to provide evidence in the event of any questions or disputes.

1.3 Our website offers the option to subscribe to a free newsletter. When a user registers for the newsletter, the following data entered in the login screen is transmitted to us:

IP ​​address of the accessing computer
Your first and last name
Your e-mail address
Other information provided voluntarily
The following data is also recorded during registration:
Date and time of registration
The purpose of this data processing
To send you the newsletter to which you have subscribed
Other personal data processed during the registration procedure are used to prevent misuse of the contact form and to ensure the security of our technical information systems.

The legal basis for sending the newsletter to which you have subscribed is your consent pursuant to Article 6(1)(a) GDPR. Please note that you can revoke this consent at any time. However, such revocation will not affect the legitimacy of the processing that took place before the revocation.

You also have the right to object to the processing of your personal data for direct marketing purposes (Article 21(2) GDPR).

For the registration process for our newsletter, we use the so-called "Double Opt-In" procedure. When you subscribe to the newsletter on our website, you will receive an e-mail asking you to confirm your registration at the e-mail address you provided during registration.
The purpose of this data processing is to prevent incorrect or unauthorized e-mail addresses from being used for registration. The legal basis for the processing of your e-mail address for the Double-Opt-In procedure is Article 6(1)(f) GDPR. Our legitimate interests arise from your registration to the newsletter mailing list; this represents a relevant and appropriate relationship within the meaning of Article 47 GDPR, and also from the fact that providing information about new products or services as well as activities and events is common in the business and is both expected and appreciated by the majority of our customers.
1.4 We provide free, downloadable information on our website (e.g. white papers, webinars, planning tools and the like). In order for you to download the free information, the following information will be provided to us via a login screen:

User's IP address
Date and time of registration
First and last name
E-mail (as username)
Zip code
Country
Password
User group (e.g. architect)
Other information provided voluntarily
The following data is also recorded during registration:
Date and time of download
Purpose of this data processing
Providing the requested information
Approaching you with offers
Other personal data processed during the registration procedure are used to prevent misuse of the login screen and to ensure the security of our technical information systems.

The legal basis for processing this data is Article 6(1)(b) GDPR. The commercial use of your personal data is part of the benefits of our mutual relationship.

Cookies

We transmit the personal data specified in Sections 1.1 to 1.4 to data processors located in the European Union. Such data processors process personal data only on our instructions and the processing is carried out on our behalf.

The personal data specified in Section 2.5 is transmitted to the operator HubSpot. Data processing by HubSpot is based on standard contractual clauses in accordance with the European Commission Decision of 5 February 2010.

We implement technical and organisational measures to ensure an appropriate level of security to protect your personal data against accidental or unlawful alteration, destruction, loss or unauthorised disclosure. Our security measures will be continuously improved in line with technological developments.

You have certain rights under the GDPR:

Right to access: You have the right to receive information about your personal data and certain other pieces of information (for example, those provided in this Privacy Notice) processed by us.

Right to rectification: You have the right to have your personal data corrected if it is inaccurate or incomplete.

Right to erasure: You can request that we erase your information about such personal data when we have no retention obligations, based on what is known as the ‘right to be forgotten’. The right to erasure is not exempt from exceptions. We have the right to continue using your personal data if such use is necessary for compliance with our legal obligations or for the establishment, exercise or defence of legal claims.

Right to restriction of processing: This right relates to the restriction of the use of your data or the type and manner of use. Please note that this right is limited in certain circumstances. When we process the personal information we collect from you with your consent, you can only request a restriction based on the following: (a) the data is inaccurate; (b) our processing is unlawful and you do not want your personal information erased; (c) you need it for a legal claim; or (d) we no longer need to use the data for the purposes for which we hold it. When processing is restricted, we may still store your information but we cannot use it any further. We maintain lists of persons who have requested that the use of their personal information be restricted to ensure that the restriction is complied with in the future.

Right to data portability: This means that you have the right to request that we copy, move or transfer your personal information in a structured, commonly used and machine-readable format for your purposes, where technically feasible.

Right to object: You may object to our use of your personal information, including where we use it for our legitimate interests, such as in the case of direct marketing.

Right to withdraw consent: If you have consented to our processing of your personal data, you have the right to withdraw your consent at any time. Such withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of the consent given up to the point of withdrawal.

The exercise of these rights is free for you. However, you must prove your identity by two approved identity documents. We will use reasonable efforts consistent with our legal duty to provide, correct or delete personal information about you in our filing system.

To ask questions or to exercise any of your rights set out above, please contact us by email or write to us. We will try to respond within 30 days. You can find our contact details at the top of this Privacy Notice.

If we receive formal written complaints, we will contact and follow up with the person making the complaint. If necessary, we will work with the relevant regulatory authorities, including local data protection authorities, to resolve complaints that we cannot resolve directly.

If you are not satisfied with the way any complaint you have made about how we have processed your personal information, you may escalate your complaint to the relevant data protection supervisory authority (see section 6 below).

This website is intended for use by individuals aged 18 and over. We do not intend to collect information about individuals under the age of 18.

No information should be submitted or published to the website by individuals under the age of 18. If such an individual submits personal information through the website, we will delete such information as soon as we learn their age and will not process such information further.