1. Introduction

Aponine [Nisa Nur Çakar] (“Aponine”, “we”, “us”) cares about the privacy of your personal data. This document is to inform you about how we collect and protect any personal information you provide to us and how you can control what personal information we collect from you and what we do with it. It sets out how we intend to use your information, who we will share it with and what rights you have about use of your information.

As a data controller we process personal data of all people related to us including but not limited to the people provided with the goods and services.

This notice applies to all our activities under the above brand and however you provide personal information to us, whether you visit us online at any of our websites or visit our stores or contact us via social media or whether you telephone, email, write to or text us.

In this scope, this Privacy Policy (the “Policy”) describes how and for what purposes the personal data of the following persons is collected, processed and shared with third parties by Aponine:

• Natural person customers/service recipient and/or natural person prospective customers/ service recipient and contact persons of the corporate customers/service recipient and/or prospective customers/ service recipient
• Natural person suppliers or the contact persons of the corporate suppliers which provides goods or services to Aponine;
• Website (“https://www.aponine.com/”) users of Aponine;
• Any other individuals about whom Aponine obtains personal data.

 

2. Definitions

Specifically, we use the following terms in this Privacy Policy:

Personal Data: All kinds of information and data related to an identified or identifiable natural person. (For example, your name, surname, date of birth, identity number, electronic mail address, phone number etc. shared with us are named and termed as Personal Data for the purposes hereof)

Data Subject: Any identified or identifiable natural person whose Personal Data are processed by the Controller.

Processing: Any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, limiting, erasure or destruction.

Data Controller: The natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing operation.

 

3. The Data Controller’s Identity

The Data Controller is Aponine [Nisa Nur Çakar], registered in Turkey under Tax Number 2200865498 with the registered address “Tarabya Mah. Kasımpatı Sk. No: 3 A Sarıyer, İstanbul, Turkey.

Personal Data Processed by The Data Controller

THE CATEGORY AND CONTENT OF THE COLLECTED PERSONAL DATA
Identity Data	Name-surname, ID number, sex, place and date of birth, marital status, signature, passport number, nationality, title/position, postal address including billing and delivery addresses, telephone numbers (including mobile numbers) and e-mail address, your interests, preferences, feedback and competition and survey responses
Contact Data	Residence or office address, e-mail address, home, office and mobile telephone number. your correspondence and communications with us
Financial Data	Information on financial transactions, debt and credit balance, IBAN number, bank account number, tax number and tax office, invoice details, payment history, commercial and legal payment obligations, purchases and orders made by you.
Transaction Security Data	Log registrations, website login and exit information.

We do not collect or transfer your personal data other than the ones you share with us directly with your explicit consent.

 

4. Methods for Collecting of Personal Data

The above-mentioned Personal Data are collected in physical or electronic platforms directly from sources depending on the manner in which they are shared with Aponine and processed and transferred within the scope of the purposes mentioned below. Automatic data processing systems are used.

 

5. The Purposes of and Legal Grounds for Processing Personal Data

We collect and process your personal data in order to;

• contact you for sharing the information on goods and services requested by you,
• realize the payment,
• verify your identity,
• manage any account(s) you hold with us;
• evaluate and resolve the complaints related to the goods and services (customer services)
• receive feedback for improvement of our services and products
• confirm the validity of your payment method (in collaboration with our partners listed below)
• send you e-mails related to your purchase
• contact you electronically about promotional offers, events, products and services which we think may interest you
• use or disclose your information where we have a legal right or duty (for example in relation to an investigation by a public authority or in a legal dispute)

If you are a EU, Switzerland, UK or Turkish resident, aaccording to relevant act personal data of an individual can be processed if there are lawful basis. According to relevant law processing personal data lawful only if and to the extent that at least one of the following applies:

• the data subject has given consent to the processing of his or her personal data for one or more specific purposes
• processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
• processing is necessary for compliance with a legal obligation to which the controller is subject;
• processing is necessary in order to protect the vital interests of the data subject or of another natural person;
• processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
• processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.

For the abovementioned purposes and in scope of the above, we process your personal data based on your explicit consent; or without your consent where the processing is necessary for the establishment or performance of our agreement with you, or when it is requested by the legal or government authorities in scope of a legal proceeding or to the extent our legitimate interests require, provided that it does not harm your fundamental rights and freedoms.

If you are not a resident of a Country not mentioned above, the laws of your country of residence shall apply. Your data will be processed and transferred on your explicit consent in any case.

 

6. Storage of the Personal Data

Your personal data shared with Aponine is being kept and stored in Aponine’s local/foreign secure servers in strict compliance with the applicable laws and regulations, the provisions of the Law. Aponine takes the necessary technical and administrative security measures specified under the legislation to protect the security of your personal data.

 

7. Retention Period of Personal Data

Once the purposes for processing the data no longer exist (e.g. you delete your account) and/or upon expiration of the legal retention periods during which we are obliged to retain your personal data (e.g. for the legal purposes, security or financial recording purposes), your personal data will be deleted, destroyed or anonymized.

 

8. Transfer of Personal Data

Your Personal Data may be shared with competent courts and other governmental bodies and public entities for the performance of our legal duties and obligations. We may also share your personal data and traffic information in connection with your visit our website to ensure your security and to fulfil our obligations under the applicable legislation with the authorities and institutions.

We transfer personal data;

• To our local business partner and services providers in order to receive services on information technologies, payment security or consultancy services requiring expertise and/or to its business partner and services providers abroad,
• To administrative and legal authorities in order to fulfil our legal duties to provide information and documents and to use our legal rights,
• To our business partners in order to provide our services or our providers from which we receive products or services,
• To our business partners for educational and compliance purposes; to our lawyers, financial advisors, occupational safety specialists etc. in order to fulfil our legal duties; to our partners abroad in order to build connections, conclude, execute and fulfil agreements.

The list of our service providers and business partners and their privacy policies are as follows:

• Adjust https://www.adjust.com/terms/privacy-policy
• Google LLC (Firebase) https://policies.google.com/privacy
• Google LLC (Google Ads) https://policies.google.com/privacy
• Apple https://www.apple.com/privacy/
• Tiktok https://ads.tiktok.com/i18n/official/policy/privacy
• Instagram https://privacycenter.instagram.com/policy
• Shopify https://www.shopify.com/legal/privacy

 

9. What are your rights arising out of the Law?

If you are an EU, Switzerland, UK, USA or Turkish resident, you have the following rights related to your personal data:

• learn whether any of your personal data is subject to processing;
• request information regarding the processing activities;
• learn the purposes for processing;
• know local and foreign third persons if, and to whom, personal data are transferred;
• request correction of personal data if processed incompletely or inaccurately;
• request deletion or destruction of personal data if the purposes for processing no longer exist;
• request notification of deletion or correction to third parties to whom personal data is transferred;
• object to negative consequences which arise as a result of processing of personal data by automatic means; and
• request indemnification if you suffer damage as a result of illegal processing of your personal data.

If you request to use your rights above, contact us info@aponine.com.

Additionally, if you are a European resident, we note that we are processing your information in order to fulfil contracts we might have with you (for example if you make an order through our website), or otherwise to pursue our legitimate business interests listed above.

If you are not a resident of a country not mentioned above, the laws of your country of residence shall apply and Aponine will evaluate your requests accordingly.

 

This version of our Privacy Policy was last updated on January 1^st, 2024.