Privacy Policy

This privacy policy applies to mkslojistik.com website, job application forms, and all digital services provided by MKS Logistics.

As a data controller, we aim to inform you about how your personal data will be processed, to whom and for what purposes it may be transferred, the method and legal basis of data collection, and your rights regarding your personal data.

This policy covers job applicants, customers, suppliers, visitors, and all other data subjects interacting with our company.

Identity and Contact Information: Name, surname, national ID (when required), date of birth, place of birth, email address, phone number, postal address.

Job Application Information: Information in your CV (education history, work experience, language skills, certifications, references), applied position, application date.

Technical and Log Data: IP address, browser type and version, operating system, visit date and time, accessed pages, click data.

Cookie Data: User preferences, session information, analytics data collected through cookies.

Communication Records: Email correspondence, phone call recordings (if legally required), messaging records.

Your personal data is processed for the following purposes:

Job Application Process: Evaluation of job applications, contacting candidates for suitable positions, conducting recruitment processes, creating talent pools.

Customer and Supplier Relations: Meeting service requests, conducting proposal processes, fulfilling contracts, processing invoices and payments.

Legal Obligations: Fulfilling obligations arising from tax legislation, commercial law, labor law and other relevant regulations, responding to official authority requests.

Security and Auditing: Ensuring information security, preventing unauthorized access, detecting fraud and abuse attempts, conducting internal audits and risk management activities.

Service Improvement: Analyzing website performance, improving user experience, developing new services, increasing customer satisfaction.

Your personal data is processed based on the following legal grounds:

Explicit Consent: By completing the job application form and checking the consent box, you have given explicit consent for the processing of your personal data.

Contract Performance: Processing personal data is necessary for the establishment and performance of an employment or service contract with you.

Legitimate Interest: Data processing may be necessary to protect the legitimate interests of our company and third parties (e.g., business security, commercial reputation protection).

Legal Obligation: Data processing is mandatory to fulfill legal obligations such as tax legislation, social security notifications, and ministry reports.

Legal Authorization: Personal data processing is explicitly provided for in relevant laws (e.g., Labor Law, Code of Obligations).

Your personal data is retained for the period required by the processing purpose and within the framework of our legal retention obligations:

Job Applications: Successful or unsuccessful applications are retained for a maximum of 24 months. After this period, your data will be deleted or anonymized.

Employment Records: Data of hired candidates is retained during the employment contract and for 10 years after contract termination (in accordance with social security and tax legislation).

Customer and Supplier Records: Commercial documents and contracts are retained for 10 years in accordance with Turkish Commercial Code and Tax Procedure Law.

Log and Cookie Data: Technical logs are retained for a maximum of 2 years, analytics cookies for a maximum of 1 year.

Upon expiry of retention periods, your personal data will be deleted, destroyed, or anonymized.

Your personal data may be transferred to the following third parties to achieve the purposes stated above:

Hosting and Infrastructure Providers: Server providers for website and database services (e.g., AWS, Google Cloud, Azure).

Email Service Providers: Email delivery services for managing job applications and communications (e.g., SMTP providers).

Security and Monitoring Tools: Cybersecurity, log monitoring, and threat analysis services.

Analytics Platforms: Analytics tools for collecting website usage statistics (Google Analytics, similar platforms).

Official Authorities: Authorized public institutions and organizations within the framework of legal obligations (court orders, administrative requests, tax/social security notifications).

International Transfers: Some service providers' servers may be located in the European Union or the USA. Adequate protection measures (Standard Contractual Clauses, Privacy Shield-like mechanisms) are taken for such transfers.

Data transferred to third parties is processed only for specified purposes and protected by confidentiality commitments.

You have the following rights regarding your personal data:

Right to Information: Learn whether your personal data is being processed and request information if it is.

Right of Access: Access your processed personal data and request a copy thereof.

Right to Rectification: Request correction of your personal data if there are errors or deficiencies.

Right to Erasure: Request deletion or destruction of your personal data if processing conditions no longer exist.

Notification to Third Parties: Request that correction, deletion, or destruction requests be notified to third parties to whom your data has been transferred.

Right to Object: Request rectification of damages if you suffer harm due to unlawful processing of your personal data and object to the processing activity.

Data Portability: Request transfer of your personal data to another data controller (if technically feasible).

Withdraw Consent: You have the right to withdraw your consent at any time for data processed based on your explicit consent.

To exercise these rights, you can contact us using the methods specified in the 'Contact' section below. Your requests will be evaluated and concluded within 30 days at the latest.

The following technical and administrative measures are implemented to ensure the security of your personal data:

Encryption: Sensitive data (passwords, payment information, etc.) is encrypted using SSL/TLS protocols and transmitted over secure connections.

Access Control: Access to personal data is limited to employees who have access authorization by virtue of their duties. Access logs are maintained.

Firewall and Antivirus: Our systems are protected by firewalls, antivirus software, and intrusion detection systems.

Regular Backups: Your data is regularly backed up and backups are stored in secure environments.

Staff Training: Our employees are regularly trained on data security and privacy matters.

Confidentiality Agreements: All personnel and business partners with access to personal data sign confidentiality agreements.

However, data transfers over the internet cannot be guaranteed to be 100% secure. In case of a security breach, notification will be made to the relevant authorities and affected individuals within the framework of our legal obligations.

To exercise your rights, ask questions, or file a complaint, you can use the following contact channels:

Email: privacy@mkslojistik.com

Postal Address: MKS Logistics, Istanbul, Turkey

Application Form: For identity verification, you can deliver a copy of your ID card or signed application petition to the above address by mail or in person.

Your applications must clearly state your name, surname, subject of application, and request. National ID number or passport number may be requested for identity verification.

This privacy policy comes into effect on the date it is published on our website.

MKS Logistics reserves the right to update this policy due to changes in legal regulations, developments in business processes, or security improvements.

Updates will be published on our website and significant changes will be notified to registered users by email.

We recommend that you regularly check for policy updates.

Last Updated: January 1, 2025