1. Introduction and Scope

At Dogusan Branda, the trading name of DOĞUSAN TEKSTİL ÇADIR BRANDA TURZ. İNŞ. OTOM. SAN. TİC. LTD. ŞTİ. (“Dogusan Branda“, the “Company“, “we“, “our“, or “us“), we are committed to protecting the privacy of individuals and ensuring that personal data is processed responsibly, transparently, and securely.

This Privacy Policy explains how we collect, use, disclose, store, and protect personal data when you visit dogusanbranda.com.tr, contact us, request information about our products or services, submit an enquiry, or otherwise interact with the Company.

We process personal data in accordance with applicable data protection legislation, including:

  • the European Union General Data Protection Regulation (EU) 2016/679 (“GDPR”), where applicable;

  • the Turkish Personal Data Protection Law No. 6698 (“KVKK”); and

  • other applicable privacy and data protection laws governing our business activities.

This Privacy Policy applies whenever the Company acts as the data controller in relation to personal data processed through our website, business communications, customer enquiries, commercial relationships, and other legitimate business activities.

This Privacy Policy does not apply to third-party websites, applications, or services that may be accessed through links available on our website. Such third-party platforms operate independently and maintain their own privacy practices. We encourage you to review their privacy policies before providing any personal information.

By accessing our website or communicating with the Company, you acknowledge that you have read and understood this Privacy Policy.


2. Data Controller

For the purposes of applicable data protection legislation, the data controller responsible for processing your personal data is:

Dogusan Branda

Legal Entity:
DOĞUSAN TEKSTİL ÇADIR BRANDA TURZ. İNŞ. OTOM. SAN. TİC. LTD. ŞTİ.

Veliköy Organized Industrial Zone (OIZ)
Sanayi District
Osman Uzun Street No: 27/A
59500 Çerkezköy / Tekirdağ
Türkiye

Telephone: +90 282 746 13 33

E-mail: [email protected]

Website: https://dogusanbranda.com.tr

If you have any questions regarding this Privacy Policy or the processing of your personal data, you may contact us using the details provided above.


3. Definitions

For the purposes of this Privacy Policy:

Personal Data means any information relating to an identified or identifiable natural person.

Processing means any operation or set of operations performed on personal data, whether by automated or non-automated means, including collection, recording, organisation, structuring, storage, adaptation, retrieval, consultation, use, disclosure, transfer, restriction, erasure, or destruction.

Data Subject means any identified or identifiable natural person whose personal data is processed by the Company.

Data Controller means the natural or legal person that determines the purposes and means of processing personal data.

Consent means any freely given, specific, informed, and unambiguous indication of a data subject’s wishes by which they agree to the processing of their personal data where consent is required by applicable law.

Website means the website operated by the Company at https://dogusanbranda.com.tr, including its associated webpages.

Unless otherwise defined in this Privacy Policy, capitalised terms shall have the meanings assigned to them under applicable data protection legislation.


4. Categories of Personal Data and Purposes of Processing

The categories of personal data processed by the Company depend on the nature of your interaction with us. We collect and process only the personal data that is necessary for specific, explicit, and legitimate business purposes.

4.1 Contact and Identification Data

When you contact the Company through our website, e-mail, telephone, or other communication channels, we may process information including:

  • Full name;

  • Company name;

  • E-mail address;

  • Telephone number;

  • Country or business location (where voluntarily provided); and

  • Any other information you choose to include in your enquiry or correspondence.

This information is processed for purposes including:

  • responding to enquiries and requests;

  • providing information about our products and services;

  • preparing quotations or commercial proposals;

  • communicating before entering into a business relationship;

  • maintaining customer and supplier communications; and

  • managing ongoing commercial relationships.

4.2 Communication Records

Where you communicate with the Company, we may maintain records of correspondence, including enquiries, requests, feedback, and other business-related communications.

These records help us:

  • respond consistently to future enquiries;

  • improve customer service;

  • document commercial communications where appropriate; and

  • establish, exercise, or defend legal claims where necessary.

4.3 Technical and Website Usage Data

When you access our website, certain technical information may be collected automatically by our servers and website infrastructure, including:

  • IP address;

  • browser type and version;

  • operating system;

  • device information;

  • referring pages;

  • pages visited;

  • date and time of access;

  • server log information; and

  • similar technical identifiers required for website security and functionality.

Such information is processed to:

  • maintain website functionality;

  • ensure information security;

  • detect and prevent fraudulent or malicious activities;

  • diagnose technical issues;

  • protect the integrity of our systems; and

  • comply with applicable legal obligations.

4.4 Analytics and Website Performance Data

Subject to your consent where required by applicable law, the Company may use analytics technologies to better understand how visitors interact with our website.

Depending on the technologies implemented from time to time, this information may include:

  • website navigation behaviour;

  • referring source information;

  • session data;

  • interaction with website content; and

  • aggregated website performance metrics.

Analytics information is used solely to:

  • improve website performance;

  • analyse visitor trends;

  • optimise website usability;

  • measure the effectiveness of website content; and

  • support business development through aggregated statistical analysis.

Where analytics technologies require your consent under applicable law, they will only be activated after your consent has been obtained through our cookie management platform.

4.5 Data Minimisation

The Company does not intentionally collect personal data that is unnecessary for the purposes described in this Privacy Policy.

We ask visitors not to submit sensitive personal data or confidential information through our general contact forms unless specifically requested by the Company or required for the intended business purpose.


5. Legal Bases for Processing Personal Data

The Company processes personal data only where a valid legal basis exists under applicable data protection legislation. The legal basis applicable to a particular processing activity depends on the nature of the relationship between you and the Company and the purpose for which your personal data is processed.

Depending on the circumstances, personal data may be processed on one or more of the following legal grounds:

5.1 Performance of a Contract or Steps Prior to Entering into a Contract

The Company may process personal data where it is necessary to respond to a request for quotation, evaluate a commercial enquiry, prepare a proposal, supply products or services, or take other steps requested prior to entering into a business relationship.

5.2 Compliance with Legal Obligations

Certain personal data may be processed where required to comply with applicable legal, regulatory, accounting, taxation, customs, export control, or other statutory obligations.

5.3 Legitimate Interests

The Company may process personal data where such processing is necessary for its legitimate business interests, provided that these interests are not overridden by the fundamental rights and freedoms of the data subject.

Legitimate interests may include:

  • operating and maintaining our website;

  • ensuring information and network security;

  • preventing fraud, abuse, and unauthorised access;

  • responding to customer and supplier enquiries;

  • managing business communications;

  • improving our products, services, and website;

  • establishing, exercising, or defending legal claims; and

  • maintaining appropriate business records.

5.4 Consent

Where required by applicable law, the Company will obtain your consent before processing personal data.

Consent may be requested, for example, before:

  • placing non-essential cookies on your device;

  • using analytics technologies that require prior consent;

  • carrying out specific marketing activities; or

  • processing personal data where no other lawful basis applies.

Where processing is based on consent, you may withdraw your consent at any time. Withdrawal of consent will not affect the lawfulness of processing carried out before the withdrawal became effective.

5.5 Protection of Legal Rights

Where necessary, personal data may also be processed for the establishment, exercise, or defence of legal claims, dispute resolution, regulatory investigations, or judicial proceedings.

The Company will process personal data only for the purposes for which it was collected or for other compatible purposes permitted under applicable law.


6. Disclosure of Personal Data and International Data Transfers

The Company treats personal data as confidential and does not sell, rent, or otherwise disclose personal data to third parties for their independent marketing purposes.

Personal data may be shared only where necessary for legitimate business purposes, contractual requirements, legal obligations, or with your consent where required by applicable law.

6.1 Categories of Recipients

Depending on the nature of the processing activity, personal data may be disclosed to the following categories of recipients:

  • authorised employees of the Company;

  • professional advisers, including legal, financial, accounting, or audit advisers;

  • information technology, hosting, cybersecurity, backup, and infrastructure service providers;

  • logistics, customs, export, transportation, or operational service providers where necessary for commercial activities;

  • competent public authorities, courts, regulatory bodies, or law enforcement authorities where disclosure is required by law;

  • other service providers acting on behalf of the Company under appropriate contractual and confidentiality obligations.

The Company requires service providers processing personal data on its behalf to implement appropriate technical and organisational measures to protect personal data.

6.2 International Data Transfers

As a business serving customers in different jurisdictions, certain processing activities may involve the transfer of personal data outside Türkiye or the European Economic Area (“EEA”), depending on the technologies or service providers used.

Where international transfers occur, the Company will ensure that appropriate safeguards are implemented in accordance with applicable data protection legislation.

Such safeguards may include:

  • transfers to jurisdictions recognised as providing an adequate level of data protection;

  • the use of Standard Contractual Clauses or other recognised transfer mechanisms where applicable;

  • contractual, organisational, and technical safeguards implemented with service providers; or

  • your explicit consent where required by applicable law.

6.3 Third-Party Technologies

The Company’s website may utilise third-party technologies to support website functionality, analytics, security, communication, or future digital marketing activities.

Examples may include services provided by:

  • website hosting and infrastructure providers;

  • analytics providers;

  • content delivery and security services;

  • embedded map or media providers; and

  • advertising or marketing platforms implemented by the Company from time to time.

Where these technologies involve the processing of personal data or the placement of non-essential cookies, they will be implemented in accordance with applicable law and, where required, only after obtaining your consent.

The Company regularly reviews its third-party service providers to ensure that personal data is processed in accordance with applicable privacy and security requirements.


7. Cookies and Similar Technologies

The Company’s website uses cookies and similar technologies to ensure the proper operation of the website, enhance user experience, improve security, understand how visitors use our website, and support the ongoing development of our digital services.

Cookies are small text files stored on your device by your web browser. Depending on their purpose, cookies may remain on your device only for the duration of your browsing session or for a longer period.

7.1 Categories of Cookies

Depending on the services implemented on our website, we may use the following categories of cookies:

Strictly Necessary Cookies

These cookies are essential for the operation, security, and core functionality of the website. They enable basic features such as page navigation, security controls, consent management, and technical functionality. Because these cookies are necessary for the website to operate, they do not require user consent where permitted by applicable law.

Functional Cookies

Functional cookies allow the website to remember user preferences and improve the browsing experience by providing enhanced functionality where available.

Analytics Cookies

Analytics cookies help us understand how visitors interact with our website by collecting aggregated and statistical information. These cookies enable us to evaluate website performance, identify areas for improvement, and optimise the overall user experience.

Where required by applicable law, analytics cookies will only be placed after obtaining your consent.

Advertising and Marketing Cookies

Should the Company implement digital advertising or marketing technologies in the future, cookies may be used to measure campaign performance, understand visitor interactions, improve advertising effectiveness, and deliver more relevant content.

Such cookies will only be activated where permitted by law and, where required, after obtaining your prior consent.

7.2 Cookie Consent

Where required by applicable law, the Company obtains your consent before placing non-essential cookies on your device.

Your cookie preferences may be accepted, rejected, or modified at any time through our cookie consent platform or, where applicable, through your browser settings.

Withdrawing your consent does not affect the lawfulness of cookie processing that occurred before your preferences were changed.

7.3 Managing Cookies

Most web browsers allow you to control cookies through their settings.

You may choose to delete existing cookies, prevent certain cookies from being stored, or receive notifications before cookies are placed.

Please note that disabling certain cookies may affect the functionality, availability, or performance of some parts of the website.

7.4 Cookie Policy

Additional information regarding the specific cookies used on our website, including their purpose, duration, provider, and applicable legal basis, is available in our separate Cookie Policy, which forms an integral part of this Privacy Policy.


8. Data Retention

The Company retains personal data only for as long as necessary to fulfil the purposes for which it was collected, to comply with applicable legal obligations, to resolve disputes, and to establish, exercise, or defend legal claims.

Retention periods vary depending on the nature of the personal data, the purpose of processing, and applicable legal or regulatory requirements.

8.1 General Retention Principles

When determining the appropriate retention period, the Company considers factors including:

  • the purpose for which the personal data was collected;

  • the nature and sensitivity of the personal data;

  • contractual and business requirements;

  • applicable legal and regulatory obligations;

  • statutory limitation periods; and

  • the necessity of retaining information for dispute resolution or legal proceedings.

8.2 Retention Categories

Business Communications

Personal data contained in enquiries, quotations, correspondence, and other business communications is retained for as long as reasonably necessary to manage the relevant business relationship and to comply with applicable legal obligations.

Commercial and Contractual Records

Where personal data forms part of contractual documentation, accounting records, invoices, export documentation, or other commercial records, it may be retained for the period required under applicable commercial, tax, accounting, customs, or other legal requirements.

Technical Logs

Technical logs, security records, and website infrastructure logs are retained only for the period reasonably necessary to maintain system security, investigate incidents, comply with applicable legal obligations, and protect the Company’s legitimate interests.

Cookie Data

Information collected through cookies is retained in accordance with the retention periods applicable to the respective cookie. Details regarding cookie retention periods are available in the Company’s Cookie Policy.

8.3 Deletion and Anonymisation

When personal data is no longer required for the purposes for which it was collected, and no legal obligation requires continued retention, the Company will securely delete, anonymise, or otherwise dispose of such personal data using appropriate technical and organisational measures.

Where deletion is not immediately possible due to technical, legal, or operational reasons, the processing of such personal data will be appropriately restricted until deletion can be completed.


9. Security of Personal Data

The Company is committed to protecting personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, unauthorised access, or any other form of unlawful processing.

Taking into account the nature of the personal data processed, the risks associated with processing activities, and the state of available technology, the Company implements appropriate technical and organisational measures designed to safeguard personal data throughout its lifecycle.

Such measures may include, where appropriate:

  • access controls based on business responsibilities;

  • confidentiality obligations applicable to authorised personnel;

  • secure hosting and infrastructure management;

  • network and information security measures;

  • system monitoring and incident management;

  • regular maintenance of information systems;

  • data backup and recovery procedures;

  • authentication and access management mechanisms; and

  • organisational policies governing the handling of personal data.

The Company periodically reviews its security practices and internal procedures to maintain an appropriate level of protection and to respond to evolving technological, operational, and regulatory developments.

Although the Company takes reasonable measures to protect personal data, no method of electronic transmission or electronic storage can be guaranteed to be completely secure. Consequently, while we strive to protect personal data using commercially reasonable measures, absolute security cannot be guaranteed.


10. Your Privacy Rights

Subject to applicable data protection legislation, you may have the following rights in relation to your personal data.

The availability of certain rights may depend on your jurisdiction, the legal basis for processing, and the specific circumstances of the processing activity.

10.1 Right of Access

You may request confirmation as to whether the Company processes your personal data and, where applicable, obtain access to such personal data together with information regarding how it is processed.

10.2 Right to Rectification

If you believe that your personal data is inaccurate, incomplete, or no longer up to date, you may request that it be corrected or updated.

10.3 Right to Erasure

You may request the deletion of your personal data where applicable data protection legislation provides such a right, including where the personal data is no longer necessary for the purposes for which it was collected or where processing is otherwise unlawful.

This right is subject to legal or regulatory obligations that may require the Company to retain certain information.

10.4 Right to Restrict Processing

Where permitted by applicable law, you may request that the Company temporarily restrict the processing of your personal data while a request, objection, or legal issue is being assessed.

10.5 Right to Object

Where processing is based on the Company’s legitimate interests or other applicable legal grounds, you may object to such processing where permitted by applicable law.

The Company will carefully assess each objection in accordance with its legal obligations.

10.6 Right to Data Portability

Where applicable under relevant legislation, you may request that personal data you have provided to the Company be transferred to you or another data controller in a structured, commonly used, and machine-readable format.

10.7 Right to Withdraw Consent

Where processing is based on your consent, you may withdraw that consent at any time.

The withdrawal of consent will not affect the lawfulness of processing carried out before the withdrawal became effective.

10.8 Right to Lodge a Complaint

If you believe that your personal data has been processed in breach of applicable data protection legislation, you have the right to lodge a complaint with the competent supervisory authority in your jurisdiction.

Where appropriate, we encourage you to contact the Company first so that we may have the opportunity to address your concerns promptly.

10.9 Exercising Your Rights

Requests relating to your personal data may be submitted using the contact details provided in this Privacy Policy.

The Company may request additional information where reasonably necessary to verify the identity of the requester before responding to a request.

Requests will be handled within the timeframes required under applicable law.


11. Children’s Privacy

The Company’s website and services are intended for business customers, commercial partners, suppliers, and individuals seeking information about our products and services.

Our website is not directed to children, and the Company does not knowingly collect personal data from individuals who are not legally capable of providing valid consent under applicable law.

If you believe that personal data relating to a child has been provided to the Company without appropriate authorisation, please contact us. Where required by applicable law, we will take reasonable steps to investigate the matter and, where appropriate, delete such information.


12. Changes to this Privacy Policy

The Company may update this Privacy Policy from time to time to reflect changes in applicable legislation, regulatory guidance, business operations, technological developments, or the services provided through our website.

The latest version of this Privacy Policy will always be published on our website together with the date of the latest revision.

Where changes materially affect the way personal data is processed, the Company will take reasonable steps to provide appropriate notice where required by applicable law.

Your continued use of the website following the publication of an updated Privacy Policy constitutes acknowledgement of the revised Policy to the extent permitted by applicable law.


13. Contact Us

If you have any questions regarding this Privacy Policy, the processing of your personal data, your privacy rights, or wish to submit a request concerning your personal data, you may contact the Company using the details below.

Dogusan Branda

Legal Entity

DOĞUSAN TEKSTİL ÇADIR BRANDA TURZ. İNŞ. OTOM. SAN. TİC. LTD. ŞTİ.

Veliköy Organized Industrial Zone (OIZ)
Sanayi District
Osman Uzun Street No: 27/A
59500 Çerkezköy / Tekirdağ
Türkiye

Telephone: +90 282 746 13 33

E-mail: [email protected]

Website: https://dogusanbranda.com.tr