Every brand has a story
waiting to be told.
We strengthen your brand identity and lead you to leave strong and lasting impressions on your target audiences with creative and sustainable strategic steps.
We develop a holistic communication language that includes internal and external communication strategies, focusing on corporate reputation. We build a prestigious and permanent perception with consistent communication that reflects your corporate stance.
We manage leader communication from a strategic perspective; we shape the social perception of leaders with content and platforms that consistently reflect the organization’s vision, values and discourses.
We ensure that your brand is represented correctly in digital media, increase your online reputation, and strengthen your digital presence with strategic steps.
We manage internal communication activities with strategic approaches, deepen the corporate culture with the projects, events and special content we develop, and strengthen the bonds of employees with the organization.
We carry out works that reflect corporate values with projects that aim to create social impact and create a responsible brand identity by strengthening your brand’s social responsibility awareness.
We identify effective sponsorship opportunities that match your brand’s communication goals, guide management processes, and develop lasting partnerships by adapting your strategies to add value to your brand.
With the events we shape with creativity, we manage all processes end-to-end from planning to implementation, design events that emphasize the participant experience and aim for perfection at every stage.
We strategically manage the IPO process and position your brand strongly in the eyes of investors and stakeholders. We ensure the value transfer of your brand through communication strategies, media relations and public opinion creation efforts.
We carry out pre-crisis preparations by foreseeing possible risks, provide effective solutions with strategic communication in times of crisis; take fast and effective actions to protect your brand’s reputation.
In line with your brand’s communication goals, taking into account developments in the sector and public interest; we provide effective agenda management with the right message at the right time.
We develop customized content for each medium that is suitable for your communication messages and implement strategic media plans that will effectively bring your brand together with your target audience.
We tell your products and services with stories that make a difference, highlight your brand with our strategic marketing communication methods and create a strong and consistent image across all channels.
Get in touch with us to meet.
Address: Levent Mah. Sülün Sk. No:18 Levent / İstanbul
Phone: 0212 282 40 85
E-mail: ask@essance-istanbul.com
For your job and internship applications: ask@essance-istanbul.com
You can send us your requests and questions by filling out the form below.
Our team will contact you as soon as possible.
Essance İstanbul İletişim Danışmanlığı Ltd. Şti. (“Essance”) has prepared this Personal Data Storage and Destruction Policy in its capacity as the Data Controller in accordance with the Personal Data Protection Law No. 6698 and the Regulation on the Deletion, Destruction or Anonymization of Personal Data. The Personal Data Storage and Destruction Policy has been prepared to determine the processes for the storage and, if necessary, destruction of all Personal Data processed by Essance.
DEFINITIONS
| “Explicit Consent” | It means consent regarding a specific subject, based on information and expressed with free will.
|
| “Worker” | It means a natural person who has an employer-employee relationship with Essance based on an employment contract or agency agreement..
|
| “Law” or “KVKK” | The Personal Data Protection Law No. 6698.
|
| “Personal Data” | Any information related to an identified or identifiable natural person. |
| “ Processing of Personal Data ” | Any operation performed on personal data such as collection, storage, modification, transfer, etc.
|
| “Board” | Refers to the Personal Data Protection Board. |
| “Special Categories of Personal Data” | Data relating to race, ethnicity, political opinion, religion, health, sexual life, and biometric and genetic data. |
| “Policy” | Refers to this Policy and any policies to be adopted in the future. |
| “Essance” veya “Company” | Essance Istanbul Communication Consultancy Ltd. Co. |
“Regulation” | The Regulation published in the Official Gazette dated 28.10.2017 regarding the Deletion, Destruction, or Anonymization of Personal Data. |
Scope and Purpose
Essance has prepared this Policy as the Data Controller in accordance with the provisions of the Law, Regulation and other legislation. This Policy has been prepared to determine the processes regarding the storage and, when necessary, destruction of all Personal Data processed by Essance. In case of requests for information from official authorities and authorities, the subject will be evaluated within the scope of the relevant legislation.
This Policy aims to define the storage, transfer, protection, deletion, destruction, anonymization when necessary of the Personal Data provided by the Employees to the Employer when they start work and during their employment, and the destruction methods and distribution of responsibilities after the employee leaves the company. In addition, the provisions of this Policy will also apply to the storage, protection, transfer, deletion, destruction, anonymization and destruction of Personal Data belonging to third parties other than the Company’s employees.
In line with the importance it attaches to the protection of personal data, Essance determines the basic principles regarding the compliance of the activities carried out in the Company with the regulations in the Law through the Policy, and what Essance must do within this scope will be determined.
Policy Guidelines
The company must adopt the following basic principles to ensure and maintain compliance with personal data protection legislation:
Processing Personal Data in accordance with the law and rules of honesty,
Processing Personal Data in a purpose-related, limited and proportionate manner,Preserving Personal Data for the period stipulated in the relevant legislation or necessary for the purpose for which they are processed:
By determining whether a certain period of time is foreseen in the relevant legislation for the storage of Personal Data, it is ensured that the processed Personal Data is stored only for the period of time foreseen in the relevant legislation or for the period required for the purpose of processing Personal Data if no period is foreseen in the relevant legislation, in accordance with Article 138 of the Turkish Penal Code and Articles 4 and 7 of the Law.
If the purpose of processing Personal Data has ended; if the relevant legislation and the retention periods determined by the company have also expired; Personal Data may only be stored for the duration of the statute of limitations prescribed by law in order to constitute evidence in possible legal disputes or to assert the relevant right related to Personal Data or to establish a defense. Personal Data whose purpose of use has ended and whose legal retention period has expired is deleted, destroyed or anonymized by Essance in accordance with the Law.
Ensuring the security of Personal Data,
Ensuring that Personal Data is processed in accordance with the law and preventing unlawful access to personal data, the Company taking the relevant administrative and technical measures and conducting the necessary inspections,
Complying with the obligation to register and notify the data controllers,
Complying with the obligation to inform the data owner,
Complying with the obligation to ensure the security of Personal Data,
Complying with the obligation to fulfill the decisions made by the Board
Personal Data and Storage Process
Under this section, Personal Data processed by Essance will be classified according to their sources and their storage conditions will be explained. Essance’s primary rule in processing Personal Data and Special Personal Data is to obtain the Explicit Consent of the relevant person in accordance with the Law. As far as possible, this consent will be obtained in writing and recorded in the Company’s system.
Essance may process personal data with the explicit consent of the personal data owner or without explicit consent in the cases stipulated in Article 5 of the Law and listed below:
It is mandatory for the Company to fulfill its legal obligations. The personal data has been made public by the owner of the data.
The data processing is mandatory for the establishment, exercise or protection of a right.
The data processing is mandatory for the legitimate interests of our Company, provided that it does not harm the fundamental rights and freedoms of the personal data owner.
Personal Data of Employess
Essance processes the Personal Data of job candidates and employees within its own organization or within its subsidiaries in accordance with the Law and the Regulation.
Personal Data Received from Business Partners, Customers, Suppliers
Essance processes the name, surname, Turkish Republic identity number, tax number, address, telephone, e-mail, vehicle license plate and similar Personal Data of its business partners, suppliers and customers or their natural person representatives and/or employees due to its daily commercial relations. This Personal Data is processed in a limited way for the establishment or execution of contracts made with the relevant business partners. In this way, the arrangements for the processing of Personal Data are determined by the contracts made with the relevant business partners. Therefore, the primary source of arrangements for their processing are contracts. Personal Data must be provided by the relevant data owner in person. The Company informs the relevant data owner about why they need to obtain this information, possible sources and methods of accessing the Personal Data, as well as the consequences that may occur if the relevant data owner refuses to provide Personal Data in writing.
As a rule, this Personal Data is processed by the unit/department related to the subject of the relevant contract.
Transfer of Personal Data
Transfer of Personal DataThe addressees of personal data are limited to persons who are authorized to know the Personal Data according to their duties. As a rule, the Personal Data listed under Article 2 may be transferred in accordance with a court order or requests from official authorities. Apart from this, the transfer of the Personal Data in question is possible to the extent permitted by the contracts made with the relevant natural persons. In addition, Essance shares this data with third parties after the Personal Data is Anonymized.
In cases where the explicit consent of the relevant person is not given, if any data is to be transferred abroad, the opinion of the relevant unit of Essance will be obtained first.
In accordance with the relevant articles of the Law, Essance transfers data domestically and internationally, provided that sufficient measures are taken within the framework of the security and confidentiality principles specified in the Law, and Personal Data may be processed and stored on the servers and electronic environments used within this scope. The nature of these transfers and the parties with whom the data is shared vary depending on the type and nature of the relationship between the data owner and Essance, the purpose of the transfer and the relevant legal basis, and these parties may generally be as follows: Direct or indirect affiliates, shareholders, contracted business partners, suppliers, customers, third parties from whom services are received, legally authorized public institutions and private persons in Turkey and abroad.
In transferring Personal Data, necessary precautions are taken to ensure that Personal Data is protected as required. Personal Data may be shared with group companies, direct/indirect domestic/international business partners, customers with whom it has agreements and provides services due to its activities, suppliers, business partners, audit companies or public institutions or organizations authorized to request such data due to a legal obligation, including but not limited to other relevant authorities, in order to carry out Company activities, ensure the business relationship between data owners and customers and/or conduct meetings for this purpose, provide services, opportunities and facilities and increase service quality.
| Personal Data List | Personal Data Recipient | Purpose of Personal Data Transfer/Cross-border Transfer |
| Personal data processed for the Individual Retirement System and Private Health Insurance | Institutions and organizations that provide health/insurance services to employees and their families, Private Pension and Insurance Companies
| For the purpose of health insurance and health services, individual retirement services |
Information regarding the salary and other wages to be paid to the employee, bank details
| Banks, Private Pension and Insurance Companies where the employee’s salary is paid
| For the purpose of salary and other payments
|
Personal Data required for business travel, meeting organization and training
| Transportation and accommodation service providers, educational services, ticketing companies/agencies
| For the purpose of purchasing air, sea and railway tickets, hotel reservations and registration to educational institutions. |
Personal Data required for the management of Labor Relations | Authorized government agencies | To comply with the requirements of applicable law |
| Data belonging to campaign participants collected in organized campaigns and data obtained within the scope of contracts made with customers. | Persons/institutions and organizations required for conducting business relations with customers and business partners | In order to carry out and finalize the campaign and to maintain business relations with customers. |
Personal Data Received from Business Partners, Suppliers and Customers | The company's business partners and customers | In order to conduct business relations with Business Partners, Suppliers and Customers |
RIGHTS AND OBLIGATIONS OF THE DATA OWNER
To ensure the protection of personal data, data owners shall have the following rights:
1) To access personal data free of charge and to obtain copies of entries containing personal data, except in cases specified by the laws of the Republic of Türkiye;
2) To remove or correct inaccurate or incomplete personal data, as well as to remove them if the data has been processed in violation of the requirements of the Labor Law;
3)To request that the Company notify the person in question if inaccurate or incomplete personal information has been transferred to any person and to make corrections to such data;
4)To apply to the court in case of any illegality or negligence committed by the company during the processing of personal data;
5)Other rights provided by the laws of the Republic of Türkiye, especially the rights specified in the Law.
Personal Data Owners must provide accurate and error-free personal data to the Company and must promptly notify the Company of any changes to personal data necessary for the management of their relations with the Company.
Obligation to Respond to Data Owner ApplicationsIn accordance with Article 13 of the Law, Essance must finalize the requests of data owners regarding their personal data as soon as possible and within 30 (thirty) days at the latest, depending on the nature of the request.Pursuant to Article 11 of the Law, personal data owners may apply to data controllers and make requests regarding the following matters:
Deletion, Destruction and Anonymization of Personal DataIf all the conditions for processing of Personal Data specified in the Law are eliminated, Personal Data will be deleted, destroyed or made anonymous by Essance ex officio or upon the request of the Personal Data owner. When the Personal Data owner applies to Essance in accordance with the Law and requests the deletion or destruction of his/her Personal Data:
Essance will delete, destroy or anonymize personal data in the first periodic destruction operation following the date on which the obligation to delete, destroy or anonymize personal data arises.
Technical and Administrative Measures
The technical and administrative measures taken to securely store personal data and prevent unlawful processing and access are as follows:
Personnel with sufficient expertise are employedIn order to ensure compliance with the KVKK, application rules are determined on a business unit basis, and the necessary administrative measures to ensure their continuity are provided through in-company procedures and training.Software and hardware including virus protection systems and firewalls are installed.
It is essential that personal data be deleted, destroyed or destroyed using methods appropriate to the recording medium, and the deletion, destruction and destruction techniques that can be used are as follows:
Physical destruction
The effective date of this Policy is [ ].[ ].2018, and if the entire Policy or certain articles are renewed, the effective date of the Policy will be updated.
This Application Form has been prepared by Essance İstanbul İletişim Danışmanlığı Ltd. Şti. (“Essance” or “Company”), acting as the data controller, in order to promptly, effectively and comprehensively evaluate and resolve the applications made by you, the data owners, pursuant to Articles 11 and 13 of the Personal Data Protection Law No. 6698 (“LPPD”).
Pursuant to Articles 11 and 13 of the LPPD, data owners without an APPLICATION may submit their requests regarding the implementation of the LPPD to our Company, which acts as the data controller, in writing by filling out this form or by other methods determined by the Board:
You can send a signed copy of this data owner application form to [•] Istanbul, Turkey by applying in person,You can send a signed copy of this data owner application form to [•] Istanbul, Turkey by registered mail with return receipt requested,You can send a signed copy of this data owner application form to bilgi_kvkk@essance-istanbul.com by e-mail with an electronic signature,
INFORMATION ABOUT THE DATA OWNERIn accordance with the relevant article of the KVKK, we kindly request that you fill in the following information completely so that we can get to know you and our Company can conduct the necessary research, evaluation and analysis regarding your application:
Name ve Surname* |
|
T.C ID Number* |
|
Address* |
|
Telephone* |
|
Email* |
|
*Mandatory Fields
The personal data you have provided to us above is collected for the purpose of evaluating, finalizing and contacting you regarding this form, and is not subject to data processing for other purposes.
Please indicate in the space below whether the current relationship with our company is still ongoing by selecting the appropriate option regarding your relationship with our company.
Client
|
|
Employee Candidate
|
|
Visitors
Employees of Institutions We Collaborate With |
|
Business Partner
|
|
Client |
|
Campaign participant |
|
Third Parties
|
|
Other Please specify: ______________________________________________________
|
|
As a data owner, please tick the relevant box in the list below for the situation/situations you would like to be informed about within the scope of Articles 11 and 13 of the KVKK.
| Subject of Request | Your choice |
I would like to learn whether my personal data is being processed within the company. (PDPL Article 11/1 (a)) |
| |
If my personal data is being processed, I request information about this data processing activity. (PDPL Article 11/1 (b)) |
| |
If my personal data is being processed, I want to know the purpose of this data processing and whether it is being used in accordance with the purpose of processing. (PDPL Article 11/1 (c)) |
| |
| I request information about whether my personal data is transferred to third parties domestically and/or abroad, and if so, about third parties. (PDPL Art. 11/1 (ç) ) |
| |
I request correction of my personal data that is processed incompletely or incorrectly by the company/third parties to whom my personal data is transferred.
Write the personal data you want to be corrected in the "Your Choice" field and send documents showing correct and complementary information as attachments. (Photocopy of identity card, residence, etc.)
(PDPL Article 11/1 (d) ) |
| |
Although my personal data has been processed in accordance with the law and other relevant legal provisions, I believe that the reasons requiring processing have been eliminated and within this framework, I request that my personal data; a) be deleted. b) be made anonymous. (PDPL Article 11/1 (e) |
| |
I want my personal data (Request No. 5), which I believe to be processed incompletely and incorrectly, to be corrected by the third parties to whom it was transferred. Please write the personal data you want to be corrected in the “Your Choice” field and send the documents showing the correct and complementary information as attachments. (Photocopy of identity card, residence, etc.) (PDPL Art. 11/1 (f)
|
| |
Although my personal data has been processed in accordance with the law and other relevant legal provisions, I believe that the reasons requiring processing have been eliminated (Request No. 6) and within this framework, I request the following from the third parties to whom my personal data has been transferred; a) I request deletion. b) I request anonymization. (PDPL Art. 11/1 (f)) |
| |
I believe that my personal data processed by your company is being analyzed exclusively through automated systems and that this analysis has resulted in a result that is against me. I object to this result. Please write the analysis result that you think is against you in the “Your Choice” field and send the documents supporting your objection as an attachment. (PDPL Art. 11/1 (g) |
| |
I believe that my personal data processed by your company is being analyzed exclusively through automated systems and that this analysis has resulted in a result that is against me. I object to this result. Please state the reason for this request and the result of the situation regarding your request for information, and please include the supporting information and documents regarding these issues in the Form appendix.
|
| |
I have suffered damages due to the unlawful processing of my personal data. I request compensation for this damage. Write the subject of the unlawful violation in the “Your Choice” field and send supporting documents as attachments. (Court decision, Board decision, Documents showing the amount of material damage, etc.) (PDPL Art. 11/1 (h) |
|
In applications to be made by third parties on behalf of the data owner, a notarized power of attorney must be sent to us along with this form, and in applications to be made on behalf of children under custody/guardianship, a copy of the documents proving the custody/guardianship relationship must be sent to us along with this form.
In order to ensure the security of your personal data, Essance may contact you within seven (7) days from the date your application for information reaches Essance to confirm that you are the data owner and may request certain information and documents from you in this regard. In this context, the information and documents you have provided to us will be destroyed immediately after confirmation that you are the data owner.
If the requested information and documents are incomplete, the information and documents must be completed and sent to us upon our request. The thirty (30) day period specified in Article 13/2 of the KVKK for the completion of the request will be suspended until the information and documents are fully sent to us.
In accordance with Article 13 of the Personal Data Protection Law, our Company will evaluate the application requests made by personal data owners and finalize them within 30 (thirty) days at the latest, as stipulated within the scope of the Personal Data Protection Law. Although it is essential that no fee is charged for the requests, Essance reserves the right to charge a fee based on the fee schedule determined by the Personal Data Protection Board.
Our company may accept the application or reject it by explaining the reason for the reasons listed below and may notify the relevant person in writing or electronically. The application of the personal data owner may be rejected in the following cases:
Obstructing the rights and freedoms of other peopleThe information is publicly available informationCompromising the privacy of othersOne of the following situations that are not covered by the Personal Data Protection Law is present:
Please indicate your preference for receiving a response from our Company regarding your application:
Your Choice of How Our Company Will Be Aware of Your Response | Your Choice |
I want to receive it in person. (If receiving it by proxy, a notarized power of attorney or authorization document must be presented.)
|
|
I want it sent to my email address. |
|
In accordance with Article 14 of the Personal Data Protection Law, if the personal data owner’s application is rejected, the response given is found insufficient or the application is not responded to in a timely manner, the personal data owner may file a complaint with the Personal Data Protection Board within thirty days from the date of learning the response of the data controller and, in any case, within sixty days from the date of application.
It will not be possible to complain to the Board without applying to our company.
Our company may request additional information from the relevant data owner and may ask questions to the personal data owner regarding his/her application in order to clarify the issues included in the personal data owner’s application.
Pursuant to Article 28 of the PDP Law, the following cases are excluded from the scope of the PDP Law, and therefore personal data owners will not be able to assert their right to appeal:
Processing of personal data by making them anonymous with official statistics for purposes such as research, planning and statistics.Processing of personal data for artistic, historical, literary or scientific purposes or within the scope of freedom of expression, provided that it does not violate national defense, national security, public safety, public order, economic security, privacy or personal rights or does not constitute a crime.Processing of personal data within the scope of preventive, protective and intelligence activities carried out by public institutions and organizations authorized by law to ensure national defense, national security, public safety, public order, economic security, privacy of private life or personal rights, provided that it does not violate national defense, national security, public safety, public order or economic security, processing for artistic, historical, literary or scientific purposes or within the scope of freedom of expression.In accordance with Article 28, paragraph 2 of the Personal Data Protection Law, except for the right to demand compensation for damages, it is not possible to assert rights in the following cases:The processing of personal data is necessary to protect the economic and financial interests of the State in relation to budgetary, tax and financial matters.
I kindly request that my application for information, which I have made in accordance with the KVKK, be evaluated and finalized within the framework of the request/demands I have stated above, and I hereby accept, declare and undertake that the information and documents I have provided to you in this application are accurate, up-to-date and belong to me.
Personal Data Owner (Applicant):
Signature:
Name and Surname:
As Essance Istanbul Communication Consultancy Ltd. Co. (“Essance” or “Company”), within the scope of Article 10 of the Personal Data Protection Law No. 6698 (“KVKK”), we would like to inform you about our personal data processing activities.
Data Controller and Representative
s per the KVKK, Essance, in its capacity as the data controller, may process, record, store, classify, update your personal data, and disclose or transfer them to third parties within the scope of the purposes set forth below, and within the limits of the law and rules of honesty.
Purpose of Processing Your Personal Data
Your personal data is processed in accordance with the fundamental principles provided under the KVKK and for the purposes of ensuring the execution of our business activities, managing human resources processes, fulfilling requests from relevant persons, maintaining technical processes, ensuring the commercial security of our Company, and managing our operations. Your personal data is securely stored for a period appropriate to the processing purpose, either physically or electronically.
Detailed information regarding the processing purposes of your personal data can be found in the Essance Personal Data Processing and Retention Policy available at essance-istanbul.com.tr.
Transfer of Your Personal Data
Your processed personal data may be shared with our business partners, shareholders, companies operating as agents/brokers, program partner institutions and organizations we cooperate with, service providers, domestic and international partners, customers, authorized public institutions and organizations, private individuals, and firms providing support services, strictly limited to the purposes outlined above and within the scope of the KVKK.
Method and Legal Basis for Collecting Your Personal Data
Your personal data is collected by Essance through various channels based on the lawful reasons mentioned above, in order to conduct our commercial activities and improve our services. Your data may be processed with your explicit consent under Article 4(2) of the KVKK or without explicit consent under the circumstances stipulated in Articles 5(2) and 6(3).
If you submit your requests regarding your rights in question in writing, together with documents identifying you as personal data owners, and your written petition containing your explanations regarding the right you wish to exercise, to our Company’s address Levent Mahallesi, Sülün Sokak, No:18 Levent İstanbul, Turkey, in person or by registered mail, your request will be evaluated by Essance and finalized within 30 (thirty) days at the latest, as stipulated within the scope of the KVKK. Although it is essential that no fee is charged for the requests, Essance reserves the right to charge a fee based on the fee schedule determined by the Personal Data Protection Board.
Without prejudice to the cases stipulated in Article 28 titled “Exceptions” of the KVKK, your rights within the framework of Article 11 of the KVKK; By applying to our Company, your personal data;
a)To learn whether your personal data is processed,
b)To request information if your personal data has been processed,
c)To learn the purpose of processing and whether it is used appropriately,
ç) To know the third parties to whom your personal data has been transferred domestically or internationally,
d)To request correction of incomplete or inaccurate personal data,
e) Request the deletion or destruction of your personal data within the framework of the conditions stipulated in the article of KVKK,
f) To request that the third parties to whom your personal data has been transferred be notified of the operations carried out in accordance with clauses (d) and (e) above,
g) To object to a result that is detrimental to you due to the analysis of your personal data exclusively by automated systems,
ğ) If you suffer damage due to the unlawful processing of your personal data, you have the right to demand compensation for the damage.