Personal Data Protection Management System Policy

METYX Companies:

Telateks Foreign Trade and Composite Industry Co. Ltd,
Telateks Textile Products Ind. and Tic. Co. Ltd;

Our organization collects and processes personal data in compliance with the laws of Turkey and the European Union Member countries, primarily to protect individuals’ fundamental rights and freedoms, including the right to privacy.
All of our personal data processing activities are within the scope of our policy. This includes processing personal and sensitive personal data of customers, employees, suppliers, and business partners, as well as any data collected and processed by the organization from any source.

Our organization takes necessary technical and administrative measures to prevent unlawful processing of personal data, unauthorized access to data, and to ensure the security of data, conducts necessary audits in this regard.

Regarding the processing of personal data; we conduct personal data processing activities in accordance with the law and principles of fairness, accuracy, and, when necessary, up-to-dateness; for specific, clear, and legitimate purposes; in a manner that is relevant, limited, and proportionate to the purpose of personal data processing.

Our organization retains personal data for the period prescribed by laws or as required by the purpose of personal data processing.

Our organization informs data subjects and provides necessary information to data subjects upon request for information.

Our organization acts in compliance with the regulations envisaged for the processing of sensitive personal data and does not engage in actions or activities without explicit consent except for cases clearly envisaged by the law.

Our organization complies with the regulations envisaged for the transfer of personal data and engages in actions and activities accordingly.

We continue our activities aimed at protecting personal data with measurable and evaluable objectives.

Our organization creates awareness among internal and external stakeholders regarding the protection of personal data and conveys their relevant obligations.

Our organization conducts training to develop technical and behavioral competencies aimed at increasing awareness of personal data protection.

Our organization manages personal data breaches by evaluating the issue according to the disciplinary procedure and immediately informing the authorized officials for offenses and breaches requiring penalties.

Our organization continuously monitors the confidentiality, integrity, accuracy of data, and access rights to personal data through process-based asset inventory and process-based risk assessment.

Our organization commits to implementing practices for the Personal Data Protection Management System, managing the system systematically, ensuring continuous improvement of the system, and allocating the necessary resources for the system.

Respectfully submitted for your information.

Uğur Üstünel – CEO