REIS JEWELLERY COMMUNICATION FORM PRIVACY NOTICE

DATA CONTROLLER

In accordance with the Personal Data Protection Law No. 6698 (“PDPL”) and the Regulation 2016/679 of the European Parliament and Council of 27 April 2016 (European Data Protection Regulation or “GDPR”) and other applicable legislation, your personal data can be processed by data controller controller Reis Mücevherat ve Kuyumculuk Ticaret Anonim Şirketi (“Company”) based in “Reis Jewellery LTD’’ in the scope of the details explained in this notice. 

THE METHOD OF COLLECTING PERSONAL DATA

Your personal data is collected by our Company by the digital forms you have filled on our website or the other information and documents which you have disclosed to us.

THE PURPOSES AND THE LEGAL REASONS OF PROSESSING PERSONAL DATA

Our Company will be able to process your personal data in order for executing the communication processes, creating a e-bulletin membership, evaluating and follow-up your requests, suggestions and complaints, informing you regarding our products and /or services, planning and executing the customer satisfaction activities, planning and executing the proposal and promotion of the services customized according to their choices, usage habits and needs within the scope of legal reasons listed in below:

• "the establishment or the performance of a contract” regulated in Article 5/2 (c) of the PDPL and Article 6/1(b) of the GDPR ,
• "compliance with a legal obligation" regulated in Article 5/2(ç) of PDPL and Article 6/1(c) of the GDPR,
• the "legitimate interest of the data controller" regulated in Article 5/2 (f) of the PDPL and Article 6/1(f) of the GDPR,
• "explicit consent" regulated in Article 5/1 of PDPL and Article 6/1(a) of the GDPR (for the purpose of sharing on the website of our company within the scope of conducting advertising, marketing and promotional activities regarding products and / or services, measuring your satisfaction with our services by satisfaction questionnaire, taking necessary actions and making analyzes for your satisfaction)

TRANSFER OF PERSONAL DATA

We only share your Data when strictly necessary, and only to the following third parties provided that:

• our partner companies;
• our suppliers, to perform the purposes described above or to fulfil a task on our behalf (including sales support, advertising, market research or customer services, and account management, supply of products or services now or in the future, or prize draws, competitions or promotions);
• to our service providers for managing the Reviews. Our service providers will have access to the Data you send when you submit a Review.
• to a third party when stipulated or authorised by the law, or a valid legislative provision, court order or regulation, or if such disclosure is necessary as part of an investigation or procedure, within the national territory or in another country.

Finally, in accordance with the legal praovisions (in particular Article 6(1) and recital 48 of GDPR;  and in Article 8 and 9 of PDPL), we may share your Data with REIS JEWELLERY Global companies for internal administrative purposes.

If a transfer as described above takes place to a country outside the Republic of Turkey and/or  the European Union and , we will put in place measures to protect your data, appropriate to the legislation in force. Similarly, if you are located outside the EU, your Data will be transfered within the EU where they will be processed in accordance with the legal provisions of the European Data Protection Regulation.

YOUR RIGHTS AS THE DATA SUBJECT

According to the Article 11 of PDPL and Article 12 of GDPR, you also have the following rights:

1. learn whether your personal data are being processed,
2. if they are, request information,
3. obtain information on the purpose of processing and find out whether personal data has been used as fit for the purpose,
4. obtain information about the third persons in Turkey and abroad, to whom personal data are transferred,
5. request rectification of personal data that may have been incompletely or inaccurately processed,
6. request the deletion or destruction of personal data,
7. request notification of the operations made as per indents (e) and (f) to third parties to whom personal data have been transferred,
8. object to occurrence of any detrimental result by means of analysis of personal data exclusively through automated systems and
9. request compensation for the damages due to unlawful processing of personal data.

You can send your requests to the Company according to Comminuque on the Principles and Procedures for the Request to Data Controller. You can also direct your applications to us by submit it to the address “50 Acre Lane Covent Garden EC1A4EN” via registered letter or to the info@reisjewellery.com  e-mail adress.

Our Company fulfills your requests as soon as possible and within thirty days at the latest and once for free of charge. However, requester may be charged for following requests or for the initial request if the action taken on the request requires additional cost. Our Company can accept and process the request or reject the request in writing by explaining its reason.

You are entitled to file a complaint to the Turkish Board of Personal Data Protection (“Board”) within thirty days as of the notification of the reply and in all cases within sixty days if the application is rejected after carrying out the procedure mentioned above, the reply is deemed to be insufficient or the requests are not responded in a timely manner. However, the complaint cannot be filed without exhausting this application process.  

The Board may conduct the necessary inspections within its field of duty upon receiving a complaint or ex officio upon detecting a breach. The complaint shall be examined by the Board and answers shall be provided to those concerned. If no replies are given within sixty days as of the date of the complaint, the request shall be deemed to be rejected. If, as a result of inspections upon receiving a complaint or ex officio investigation, a breach is detected, the Board shall rule the identified contraventions of law to be eliminated by the data controller, and shall notify those concerned accordingly. This decision shall be fulfilled without delay but no later than within thirty days as of the notification of the decision. The Board is authorized to halt data processing or international transfer of data if damages that are hard or impossible to compensate occur and if there is an explicit infringement of the law.

We would like to emphasize that your data is meticulously protected by the Company and thank you for the trust that you place in us.