GDPR Disclosure

Last Updated: Dec 14, 2025

In accordance with the General Data Protection Regulation ("GDPR"), we would like to inform you about the processing of your personal data.

1. Data Controller

Data Controller: Umruk IT
Address: [Company Address]
Email: [Email Address]
Phone: [Phone Number]

2. Processed Personal Data

The following information may be processed within the scope of your personal data:

  • Identity Information: Name, surname, ID number
  • Contact Information: Email address, phone number, address
  • Customer Transaction Information: Service requests, order information
  • Financial Information: Invoice information, payment information
  • Transaction Security Information: IP address, log records

3. Purposes of Processing Personal Data

Your personal data is processed for the following purposes:

  • Providing and improving our services
  • Managing customer relationships
  • Fulfilling legal obligations
  • Conducting communication activities
  • Security and fraud prevention
  • Marketing and promotional activities (with explicit consent)

4. Legal Basis for Processing Personal Data

Your personal data is processed based on the following legal grounds specified in Articles 5 and 6 of GDPR:

  • Your explicit consent
  • Being directly related to the establishment or performance of a contract
  • Fulfilling legal obligations
  • Fulfilling legal obligations
  • Our legitimate interests

5. Transfer of Personal Data

Your personal data may be transferred to the following persons and organizations to achieve the purposes stated above:

  • Our business partners
  • Our service providers (hosting, email services)
  • Public institutions and organizations due to legal obligations
  • Authorized private law legal entities

6. Method of Collecting Personal Data

Your personal data is collected through the following methods:

  • Forms on our website
  • Email communication
  • Phone calls
  • Cookies and similar technologies
  • Automatic methods (log records)

7. Your Rights Under GDPR

Under Article 15-22 of GDPR, you have the following rights:

  • Right to access your personal data
  • Right to rectification
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Right to withdraw consent

8. Right to Complain

To exercise your rights under GDPR, you can submit your requests:

  • In writing: To [Company Address]
  • By email: To [Email Address]
  • To the Supervisory Authority: You can file complaints with your local data protection authority

9. Data Security

Technical and administrative measures are taken for the security of your personal data:

  • SSL encryption
  • Secure servers
  • Access controls
  • Regular security audits

10. Contact

You can contact us with questions about your rights under GDPR and the processing of your personal data.