All services provided in our store belong to our company Fenomen Air Sports registered at Istiklal Mahallesi Mehmet Altinışık Sokak No:1 Serdivan/Sakarya and operated by our company.

Our company may collect personal data for various purposes. Below, how and in what manner the collected personal data is collected and how and in what manner this data is protected are specified.

Some personal information (such as name-surname, company information, telephone, address or e-mail addresses) of the members (such as name-surname, company information, telephone, address or e-mail addresses) is collected by our Store due to the nature of the business by filling out various forms and surveys on our Membership or Store.

Our company may send campaign information, information about new products, promotional offers to its customers and members in some periods. Our members can make all kinds of choices about whether or not to receive such information when they become a member, then they can change this selection in the account information section after logging in, or they can make a notification via the link in the notification message they receive.

During the approval process carried out on our store or by e-mail, personal information transmitted to our store electronically by our members will not be disclosed to third parties except for the purposes and scope specified in the “User Agreement” we have made with our Members.

In order to identify problems with the system and to quickly resolve problems or disputes that may arise regarding the service provided, our company records and uses the IP address of its members. IP addresses may also be used to identify users in a general way and to collect comprehensive demographic information.

Our company may use the requested information for direct marketing purposes by itself or its collaborators outside the purposes and scope specified in the Membership Agreement. Personal information may also be used to contact the user if necessary. Information requested by our company or information provided by the user or information about the transactions made through our Store; It can be used by our company and its collaborators for various statistical evaluations, database creation and market research without disclosing the identity of our members, outside the purposes and scope specified in the “Membership Agreement”.

Our company undertakes to keep confidential information strictly private and confidential, to consider it as a confidentiality obligation, and to take all necessary measures and due diligence to ensure and maintain confidentiality, to prevent all or any part of the confidential information from entering the public domain or unauthorized use or disclosure to a third party.

CREDIT CARD SECURITY

Our company prioritizes the security of credit card holders who shop on our shopping sites. Your credit card information is not stored in our system in any way.

When you enter the transactions process, there are two things to pay attention to to understand that you are on a secure site. One of them is a key or lock icon at the bottom line of your browser. This means you are on a secure website and all your information is encrypted and protected. This information will only be used in connection with the sales transaction process and in accordance with your instructions. Information about the credit card used during shopping is encrypted with 128 bit SSL (Secure Sockets Layer) protocol independently from our shopping sites and sent to the relevant bank for questioning. If the availability of the card is confirmed, the shopping will continue. Since no information about the card can be viewed and recorded by us, third parties are prevented from obtaining this information under any circumstances.

The reliability of the payment / invoice / delivery address information of orders placed online by credit card is checked by our company against Credit Card Fraud. Therefore, customers ordering from our shopping sites for the first time must first confirm the accuracy of their financial and address/telephone information in order for their orders to reach the supply and delivery stage. If necessary, the credit card holder customer or the relevant bank is contacted to check this information.

Only you can access and change all the information you provide when you become a member. If you keep your member login information secure, it is not possible for others to access and change information about you. For this purpose, during membership transactions, we act within the 128-bit SSL securityarea. It is an international encryption standard that cannot be broken.

Internet shopping sites with an information hotline or customer service and clear address and telephone information are more preferred nowadays. In this way, you can get detailed information about all the issues you have in mind, and you can get healthier information about the reliability of the company that provides online shopping services.

Note: We recommend that you pay attention to the open address and telephone number of the company on internet shopping sites. If you are going to shop, write down all the phone / address information of the store where you buy the product before you shop. If you don’t trust them, confirm by phone before shopping. All information about our company and the location of our company are stated on all our online shopping sites.

MAIL ORDER CREDIT CARD INFORMATION SECURITY

Your identity and credit card information that you will send to us by credit card mail-order method will be kept by our company according to the principle of confidentiality. This information is kept for 60 days against possible credit card withdrawal disputes with the bank and then destroyed. If any amount other than the cost of the mail-order form approved by you, which you will send to us in return for the price of the products you order, is charged to your card, you can naturally object to the bank and prevent the payment of this amount, so it does not pose a risk.

THIRD PARTY WEBSITES AND APPLICATIONS

Our store may link to other sites within the website. Our company does not bear any responsibility for the privacy practices and content of the sites accessed through these links. The advertisements published on our company’s site are distributed to our users through our advertising business partners. The Privacy Policy Principles in this agreement relate only to the use of our Store and do not cover third party websites.

EXCEPTIONAL CIRCUMSTANCES

In the limited cases specified below, our Company may disclose the information of users to third parties outside the provisions of this “Privacy Policy”. These situations are limited in number;

1. To comply with the obligations imposed by the rules of law in force and issued by the competent legal authority such as Law, Decree Law, Regulation, etc;

2. In order to fulfill the requirements of the “Membership Agreement” and other agreements concluded by our store with users and to put them into practice;

3. Requesting information about users for the purpose of conducting a duly conducted investigation or inquiry by the competent administrative or judicial authority;

4. Where it is necessary to provide information to protect the rights or safety of users.

E-MAIL SECURITY

Never include your credit card number or passwords in any e-mail you send to our store’s Customer Service regarding any of your orders. The information contained in emails may be visible to third parties. Our company cannot guarantee the security of the information transferred from your e-mails under any circumstances.

BROWSER COOKIES

Our company can obtain information about users who visit our store and users’ use of the website by using a technical communication file (Cookie). These technical communication files are small text files that a website sends to a user’s browser to be stored in main memory. The technical communication file facilitates the use of the Internet by storing status and preferences about the site.

The technical contact file helps to obtain statistical information about how many people visit the site, for what purpose, how many times a person visits the site and how long they stay on the site, and to dynamically generate advertising and content from user pages specially designed for users. The technical communication file is not designed to retrieve data or any other personal information from the main memory or from your e-mail. Most browsers are initially designed to accept the technical communication file, but users can change the settings so that the technical communication file is not received or a warning is given when the technical communication file is sent.

Our company may change the provisions of this “Privacy Policy” at any time by publishing it on the site or sending e-mail to users or publishing it on its site. If the provisions of the Privacy Policy are changed, they become effective on the date of publication.

You can send an e-mail to [email protected] for any questions and suggestions regarding our privacy policy. You can reach us from the following contact information of our company.

Company Title: Fenomen Air Sports

Address: İstiklal Mahallesi Mehmet Altınışık Sokak No:1 Serdivan/Sakarya

Email: [email protected]

Tel: +90 531 386 20 03

Clarification Text Regarding the Processing of Personal Data

Data Controller

Fenomen Travel Agency Education Air Sports Tourism Textile Import Export San. and Tic. Ltd. Sti. (“Cloudbase Travel Agency” or “PG Shop” or “Company”)

As Cloudbase Travel Agency, we have prepared this Clarification Text on the Processing of Personal Data (“Clarification Text”) in order to enlighten the data subjects regarding the processing, storage and transfer of your personal data within the framework of our activities arising from the Personal Data Protection Law No. 6698 (“KVKK”) and related legislation and legal regulations.

In addition, detailed information about the cookies and SDKs used when you visit our website, mobile site and/or mobile application is available in the Cookie Policy. Personal data processed through these are explained in this Clarification Text.

The Clarification Text shall be effective as of the date of publication by Cloudbase Travel Agency. Cloudbase Travel Agency may amend the Clarification Text at any time if necessary. The amendments to be made shall take effect immediately upon the publication of the Clarification Text on our website.

DATA CATEGORIES

1- Identity Information

Processed Personal Data:
Name – Surname, Date of Birth, Gender, Turkish ID Number

Personal Data Processing Purposes:
Execution of Finance and Accounting Affairs, Execution of Communication Activities; Execution of Company / Product / Services Loyalty Processes; Execution of Activities in Compliance with Legislation; Follow-up and Execution of Legal Affairs; Execution of Business Continuity Activities; Execution and Audit of Business Activities; Execution of Goods / Service Sales Processes; Execution of Goods / Service After Sales Support Services; Execution of Customer Relations Management Processes; Execution of Activities for Customer Satisfaction; Execution of Advertising, Campaign and Promotion Processes; Execution of Storage and Archive Activities; Execution of Contract and Membership Processes; Follow-up of Requests / Complaints; Planning and Execution of Commercial and/or Business Strategies; Carrying out the Necessary Works by Business Units to Benefit from the Products and Services Offered and Execution of Related Business Processes; Providing Information to Authorized Persons, Institutions and Organizations

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Explicitly stipulated in the law,
• Provided that it is directly related to the conclusion or performance of a contract, it is necessary to process personal data of the parties to the contract,
• It is mandatory for the data controller to fulfill its legal obligation and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds. For cases that do not fall within the scope of the above purposes, your personal data is processed based on your explicit consent, the details of which are specified in the Consent Text.

Methods of Collection of Personal Data:
The above-mentioned personal data are collected through membership forms on our website, the fields on the My Account page that can be filled in depending on your preference, your requests and applications, contracts, campaigns and third party authentication systems (e.g. Google Login, Facebook Login, etc.).

2- Contact Information

Processed Personal Data:
E-Mail Address, Billing & Delivery Addresses, Cell Phone Number

Personal Data Processing Purposes:
Execution of Finance and Accounting Affairs; Execution of Communication Activities; Execution of Business Activities; Execution of Company / Product / Services Loyalty Processes; Follow-up and Execution of Legal Affairs; Execution of Goods / Services Sales Processes; Execution of Goods / Services After Sales Support Services; Execution of Customer Relations Management Processes; Execution of Activities for Customer Satisfaction; Execution of Marketing Analysis Studies; Execution of Advertising, Campaign and Promotion Processes; Follow-up of Demands / Complaints; Execution of Marketing Processes of Products / Services; Execution of Storage and Archive Processes; Providing Information to Authorized Persons, Institutions and Organizations

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Explicitly stipulated in the law,
• Provided that it is directly related to the conclusion or performance of a contract, it is necessary to process personal data of the parties to the contract,
• It is mandatory for the data controller to fulfill its legal obligation and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds. For cases that do not fall within the scope of the above purposes, your personal data is processed based on your explicit consent, the details of which are specified in the Consent Text.

Methods of Collection of Personal Data:
The above-mentioned personal data are collected through the membership pages on our website, contracts, My Account page, the fields on the content of our website that can be filled in depending on your preference, your requests and applications, contracts, campaigns and third party authentication systems (e.g. Google Login, Facebook Login, etc.).

3- Legal Action Information

Processed Personal Data:
In case of dispute, information in the case file, notices, information in correspondence with judicial and administrative authorities

Personal Data Processing Purposes:
Follow-up and Execution of Legal Affairs; Execution and Audit of Business Activities; Providing Information to Authorized Persons, Institutions and Organizations; Execution of Activities in Compliance with the Legislation; Execution of Storage and Archive Activities; Execution of Risk Management Processes; Execution of Contract Processes; Follow-up of Requests / Complaints; Ensuring the Security of Data Controller Operations

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• It is mandatory for the data controller to fulfill its legal obligation,
• Data processing is mandatory for the establishment, exercise or protection of a right; and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds.

Methods of Collection of Personal Data:
The personal data mentioned above are collected through official letters from judicial and administrative authorities and other printed / electronic documents.

4- Customer Transaction Information

Processed Personal Data:
Invoice Information, Request Information, Order Information, Customer Comments

Personal Data Processing Purposes:
Execution of Supply Chain Management Processes; Execution and Supervision of Business Activities; Providing Information to Authorized Persons, Institutions and Organizations; Execution of Activities in Compliance with Legislation; Execution of Finance and Accounting Affairs; Execution of Storage and Archive Activities; Execution of Contract Processes; Execution of Goods / Service Sales Processes; Execution of Goods / Services After Sales Support Services; Execution of Customer Relationship Management Processes; Execution of Activities for Customer Satisfaction; Execution of Marketing Analysis Studies; Execution of Advertising, Campaign and Promotion Processes; Follow-up of Demands / Complaints, Execution of Marketing Processes of Products / Services

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Explicitly stipulated in the law,
• Provided that it is directly related to the conclusion or performance of a contract, it is necessary to process personal data of the parties to the contract,
• It is mandatory for the data controller to fulfill its legal obligation and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds. For cases that do not fall within the scope of the above purposes, your personal data is processed based on your explicit consent, the details of which are specified in the Consent Text.

Methods of Collection of Personal Data:
The above-mentioned personal data are collected through printed/electronic forms, call center records, e-mails and SAP programs.

5- Transaction Security Information

Processed Personal Data:
IP Address Information, Website Login and Logout Information, Username Information, Password Information, Traffic Data (Connection Time / Duration etc.)

Personal Data Processing Purposes:
Execution of Information Security Processes; Execution of Audit / Ethical Activities; Execution and Supervision of Business Activities; Execution of Storage and Archive Activities; Ensuring the Security of Data Controller Operations; Providing Information to Authorized Persons, Institutions and Organizations; Execution of Activities in Compliance with Legislation; Follow-up and Execution of Legal Affairs; Execution of Goods / Service Sales Processes; Follow-up of Requests / Complaints

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Explicitly stipulated in the law,
• It is mandatory for the data controller to fulfill its legal obligation and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds. For cases that do not fall within the scope of the above purposes, your personal data is processed based on your explicit consent, the details of which are specified in the Consent Text.

Methods of Collection of Personal Data:
The above-mentioned personal data are collected through information security systems and electronic devices.

6- Finance Information

Processed Personal Data:
Encrypted Credit Card Information, Bank Account / IBAN Number Information

Personal Data Processing Purposes:
Execution of Activities in Compliance with the Legislation; Follow-up and Execution of Legal Affairs; Execution of Finance and Accounting Affairs; Execution of Return Processes; Execution and Audit of Business Activities; Execution of Goods / Service Sales Processes; Execution of Storage and Archive Activities; Execution of Risk Management Processes; Execution of Contract Processes; Providing Information to Authorized Persons, Institutions and Organizations

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Provided that it is directly related to the conclusion or performance of a contract, it is necessary to process personal data of the parties to the contract; and
• It is mandatory for the data controller to fulfill its legal obligation

are processed on the basis of legal grounds.

Methods of Collection of Personal Data:
The above-mentioned personal data are collected through printed and electronic forms, e-mails and requests and messages on the website.

7- Audio and Visual Recording Information

Processed Personal Data:
Call Center Voice Recordings

Personal Data Processing Purposes:
Execution of Company Product and Service Loyalty Processes; Execution of Customer Relationship Management Processes; Execution of Activities for Customer Satisfaction; Execution of Goods / Services After Sales Support Services; Execution of Storage and Archive Activities; Follow-up of Requests / Complaints; Execution of Marketing Processes of Products / Services; Execution of Customer Relationship Management Processes; Execution of Marketing Analysis Studies; Providing Information to Authorized Persons, Institutions and Organizations

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Explicitly stipulated in the law,
• It is mandatory for the data controller to fulfill its legal obligation and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds.

Methods of Collection of Personal Data:
The above-mentioned personal data are collected electronically during calls to our call center.

8- Location Information

Processed Personal Data:
Location Information

Personal Data Processing Purposes:
Execution of Customer Relationship Management Processes; Execution of Marketing Analysis Studies; Execution of Advertising / Campaign / Promotion Processes; Execution of Activities for Customer Satisfaction; Execution of Marketing Processes of Products / Services; Execution of Goods / Services Sales Processes; Execution of Goods / Services Production and Operation Processes

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency for the realization of the above-mentioned purposes in accordance with the relevant legislation and Article 5 of the KVKK, the details of which you can access from the Consent Text;

• Open Consent

is committed on the basis of legal grounds.

Methods of Collection of Personal Data:
The personal data mentioned above are collected according to your preference in the internet browser you use and in our Company’s mobile application.

TRANSFER OF PERSONAL DATA

Personal data belonging to customers shall be transferred in accordance with the provisions of the KVKK titled “Transfer of Personal Data”. Article 8 and/or “Transfer of Personal Data Abroad” Article 9 and taking the necessary technical and administrative measures, only to the extent necessary for the fulfillment of the purpose concerned;

• To our subsidiaries and affiliates limited to the purposes listed above,
• Again, within the scope of the contracts between us for the above-mentioned purposes, in accordance with the legislation (for the shipment of the product), the seller of the purchased product, (for the delivery of the product) cargo companies, (for the delivery of the product) banks (in order to receive the payment for the product) and (to provide information on delivery, etc.) to our business partners working in bulk SMS / e-mail delivery and (for after-sales services when necessary) to our suppliers and product authorized services,
• In order to fulfill our legal obligations, it can be transferred to authorized persons and official institutions in accordance with legal regulations and legislation; and
• It may be recorded in our programs and/or systems provided / made available to us by our infrastructure suppliers in the field of technology. Our servers are hosted in Falkenstein, Germany. The entire structure is end-to-end encrypted.

DATA CATEGORIES

1- Transaction Security Information

Processed Personal Data:
IP Address Information, Website Login and Logout Information, Password and Password Information Computer Screen Records, Device IMEI Number, Device MAC Address

Personal Data Processing Purposes:
Execution of Information Security Processes; Conducting Activities in Compliance with Legislation; Managing Customer Relationship Management Processes; Monitoring Requests and Complaints; Providing Information to Authorized Persons, Institutions and Organizations

Legal Grounds for Personal Data Processing
Your personal data within this scope may be collected by Cloudbase Travel Agency in order to fulfill the above-mentioned purposes as specified in the relevant legislation and Article 5 of the KVKK;

• Explicitly stipulated in the law,
• It is mandatory for the data controller to fulfill its legal obligation and
• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject

are processed on the basis of legal grounds.

Methods of Collection of Personal Data:
Your personal data mentioned above are collected through internet applications, information systems and electronic devices (telecommunication infrastructure, computers and telephones, etc.) and other documents declared by you.

TRANSFER OF PERSONAL DATA

Personal data belonging to Online Users shall be transferred in accordance with the provisions of the KVKK titled “Transfer of Personal Data”. Article 8 and/or “Transfer of Personal Data Abroad” Article 9 and taking the necessary technical and administrative measures, only to the extent necessary for the fulfillment of the purpose concerned;

• In order to fulfill our legal obligations, it can be transferred to authorized persons and official institutions in accordance with legal regulations and legislation; and
• It may be recorded in our programs and/or systems provided / made available to us by our infrastructure suppliers in the field of technology. Our servers are hosted in Falkenstein, Germany. The entire structure is end-to-end encrypted.