Illumination

1 - Parties

This Membership Agreement ("Agreement") is made between Respanet Information Technologies Trade Limited Company ("Company"), located at Deliktaş Mahallesi 1989 SK NO: 54/A Denizli / Pamukkale, with tax ID number 6250895879, and the individual or legal entity ("Member") using the services ("Services") offered under the brand ("Respanet") via the website ("Site"). The Agreement is concluded to define terms and conditions of usage.

By accepting the provisions of this Membership Agreement, the parties undertake to act in accordance with the terms set forth below.

2 - Definitions

2.1 Agreement: The Service Agreement and its annexes executed between the parties, defining their rights and obligations.

2.2 Company: Respanet Information Technologies Trade Limited Company, located at Deliktaş Mahallesi 1989 SK NO: 54/A Denizli / Pamukkale, with tax ID number 6250895879.

2.3 Respanet: The brand under which the Company provides its Services.

2.4 Site: The website operated under the Respanet brand at https://respanet.com.tr.

2.5 Services: All services provided under the Respanet brand and via the Site.

2.6 Member: The natural or legal person registered to benefit from the Services under the Respanet brand.

2.7 Law: The Republic of Turkey’s Personal Data Protection Law No. 6698, which defines the rights and obligations of the parties.

3 - General Information

At Respanet, we place great importance on the protection of your personal and sensitive data. Accordingly, as the Data Controller, our Company processes your personal data in accordance with Law No. 6698 (“Law”) by recording, storing, updating, transferring, and/or classifying it for the purposes stated below, with all necessary care to protect your data.

In this context, our Company acts in compliance with the Law and relevant regulations, particularly regarding the confidentiality of private life. We take all necessary technical and administrative measures to prevent unlawful processing, unauthorized access, and to ensure data security.

4 - Legal Nature and Scope

Under Article 10, “Data Controller’s Obligation to Inform,” of the Law, individuals whose personal data is processed must be informed at the time of obtaining consent. Within the scope of this Law, “Personal Data” means any information relating to an identified or identifiable natural person. “Sensitive Personal Data” includes data concerning race, ethnicity, political opinion, philosophical belief, religion, appearance, association membership, health, sexual life, criminal convictions and security measures, biometric and genetic data. The explanations in this Notice regarding your Personal Data also cover Sensitive Personal Data.

According to Article 3(1)(ı), Respanet is considered a "Data Controller." Accordingly, data subjects must be informed about the identity of the data controller, the processing purposes, recipients, legal grounds, and their rights such as correction, erasure, or anonymization as stipulated in Article 11.

As the Data Controller, Respanet informs data subjects that it processes personal data within the limits and conditions allowed by law via this Notice and Article 10 of Law No. 6698.

This text also clarifies that Respanet may act as a "data processor" or "sub-processor" in the context of its services, but this Notice does not cover processing activities performed in a processor capacity.

4 - Data Controller and Representative

According to Article 3(1)(ı) of the Law, the Data Controller is defined as the natural or legal person who determines the purposes and means of processing personal data and is responsible for establishing and managing the data register system. Accordingly, the Data Controller is:

Name: Respanet Information Technologies Trade Limited Company
Address: Deliktaş Mahallesi 1989 SK NO: 54/A Denizli / Pamukkale
Email: hukuk@respanet.com.tr
Phone: +90 258 220 2870

5 - Data Processor

Under Article 3(1)(ğ) of the Law, a “Data Processor” is defined as the natural or legal person processing personal data on behalf of the data controller based on the authority given. Those who perform delegated processing duties on behalf of both the controller and processor are considered “sub-processors.”

6 - Categories of Processed Personal Data

Our Company processes the following categories of personal data:

• Name,
• Surname,
• Date of Birth,
• Gender,
• Email,
• Phone Number,
• Address,
• Turkish ID Number,
• IP Address,
• Details of Services,
• Financial Information and Details,
• Support Request Texts,
• Customer Service Call Recordings.

7 - Purposes of Processing Personal Data

Your personal data is processed for the following purposes, in accordance with the principles of the Law:

• To inform you about Respanet Services and help you benefit from them,
• To improve the quality of services, enhance customer satisfaction and loyalty by customizing and improving services based on needs and preferences, and to manage marketing, sales, and post-sales processes,
• To notify you about services nearing expiration,
• To assist you in protecting, managing, and transferring your digital assets and related rights,
• To ensure the highest level of personal and commercial data security through appropriate infrastructure and technical/administrative measures,
• To allow you to perform online transactions for our services,
• To enable you to use and manage our online services,
• To authenticate user identities and manage them,
• To properly plan and execute our commercial partnerships and strategies,
• To develop company strategies and maintain corporate operations aligned with strategic plans and objectives,
• To carry out our business processes through relevant units,
• To ensure legal, commercial, and physical security for our company and partners, and to share information with public authorities when legally required for public safety,
• To procure, allocate, renew, or update services from foreign suppliers when required (such as domain registration, SSL issuance, server provisioning, license issuance/renewal/updates),
• To develop web and online services, respond to user requests and complaints, fix errors, and ensure compliance with the Privacy Policy under highest security, commercial, and legal standards.

These personal data are processed in accordance with Articles 5 and 6 of the Law for the aforementioned purposes.

7 - Principles of Processing Personal Data

At Respanet, we adopt the following principles for personal data processing:

• Processing data lawfully and fairly,
• Ensuring data accuracy and currency,
• Processing data for specific, explicit, and legitimate purposes,
• Ensuring data is relevant, limited, and proportionate to intended purposes,
• Retaining personal data only as long as required by relevant legislation or purposes.

8 - Recipients and Purpose of Transfer

Your personal data collected and processed in accordance with the Law may be transferred, under confidentiality agreements and for specified purposes, to:

• Authorized partners and payment/collection intermediaries,
• Domestic and international solution partners, data processors, and sub-processors,
• Legal counsel for legal proceedings,
• Public institutions and organizations for legal obligations.

9 - Methods and Legal Grounds for Collection

Your personal data may vary depending on our services and commercial activities. It may be collected, updated, and processed automatically or manually via customer service, website, panel, social media, mobile apps, and similar channels, in accordance with Articles 4, 5, and 6 of the Law.

These data are obtained to provide services lawfully and fulfill contractual and legal obligations. They may be processed and transferred legally under Articles 5 and 6 and for stated purposes.

10 - Data Subject Rights

As a data subject, you may submit requests to our Company using the methods specified in this Notice regarding your rights under Article 11 of the Law. These requests will be concluded free of charge within thirty days, depending on their nature. However, a fee may apply in cases stipulated by the Personal Data Protection Board. By law, only the data subject or a legal guardian may file requests for minors or dependents.

You are entitled to the following rights:

• Learn whether your personal data has been processed,
• Request information if data has been processed,
• Learn the purpose of processing and its compliance,
• Know third parties to whom data has been transferred,
• Request correction and notification to recipients if data is incomplete or incorrect,
• Request deletion or anonymization when legal grounds no longer exist and notification to recipients,
• Object to results arising from automated analysis,
• Claim compensation for damage due to unlawful data processing.

11 - Request Submission

In accordance with Article 13(1), you may submit requests under Article 11 via your registered KEP address or previously provided email address to [----]. You may also submit your request in writing in person, via notary, or by registered mail.

Your request must include:

• Your name, surname, and signature if the request is in writing,
• Your Turkish ID number or, if foreign, nationality and passport/residence permit number,
• Your address for notifications,
• Your email, phone, and fax numbers (if any),
• Information and documents regarding your request.

12 - Data Security

Respanet takes all necessary technical and administrative measures to protect personal data and prevent unauthorized access. This includes ensuring software compliance with standards, careful selection of third parties, and strict adherence to our Privacy Policy within the Company.

The main measures include:

• Encryption: Data is securely stored using encryption methods.
• Access Controls: Only authorized personnel can access your data.
• Data Masking: Applied to protect the confidentiality of personal data.

13 - Final Provision

The stamp duty embedded in this Agreement shall be borne by the Member. This Agreement consists of 13 main articles and subheadings and has been read and understood by the parties. It may be executed electronically or physically, both with equal validity. Respanet reserves the right to add, remove, or amend articles or subheadings when deemed necessary. The Member irrevocably declares that they accept these changes and that the revised terms will take effect on the date of publication on Respanet’s website.