This Privacy Policy explains how ISSD Bilişim Elektronik Eğt. San. ve Tic. A.Ş. (“ISSD”, “we”, “us”) collects, uses, discloses and protects personal data through the issd.com.tr website and the ISSD mobile applications (together, the “Services”). ISSD acts as the data controller and processes personal data in accordance with Law No. 6698 on the Protection of Personal Data (“KVKK”) and applicable data protection legislation.
1. WHO WE ARE
Data controller: ISSD Bilişim Elektronik Eğt. San. ve Tic. A.Ş.
Address: METU Technopark, Üniversiteler Mah., Çankaya / Ankara, Türkiye
Contact: info@issd.com.tr · +90 (312) 210 00 15
2. INFORMATION WE COLLECT
Depending on how you use the Services, we may collect the following categories of data:
- Account and identity data: name, surname, corporate user name and role assigned by your organization.
- Contact data: e-mail address, phone number and the content of messages you send us (e.g. via the “Contact” form or in-app support).
- Operational / work-order data: tasks, work orders, comments, activity records and inventory records you create or update while using the application.
- Location data: where you grant permission, the device's geographic location is used to tag the position of field assets and work performed. Location is collected only while the relevant feature is in use.
- Camera and photo/media data: where you grant permission, photos and videos you capture or select are attached to tasks and inventory records. The app requests media access only at the moment you choose to add a file.
- Device and technical data: device model, operating system version, application version, unique device identifiers, IP address and diagnostic/log data used to keep the Services secure and reliable.
The Services are intended for business/field-operations use by authorized personnel of our corporate customers and are not directed to children.
3. HOW WE USE YOUR INFORMATION
We process personal data for the following purposes:
- To provide, operate and maintain the Services and enable you to use their features (task management, inventory management, media upload, notifications);
- To authenticate users and manage access, roles and permissions;
- To record and geo-tag field operations and asset locations you submit;
- To respond to your requests, questions and support enquiries;
- To secure the Services, prevent misuse and troubleshoot technical problems;
- To fulfil our legal obligations and comply with requests from competent authorities.
4. LEGAL BASIS FOR PROCESSING
We process your personal data on the legal bases set out in Articles 5 and 6 of the KVKK, in particular: where processing is necessary for the performance of a contract; where it is necessary for compliance with a legal obligation; where it is necessary for our legitimate interests, provided your fundamental rights and freedoms are not overridden; and, where required, on the basis of your explicit consent (for example, for device permissions such as camera and location, which you can grant or withdraw at any time through your device settings).
5. DEVICE PERMISSIONS
The mobile application may request the following permissions. Each is optional and used only for the stated purpose; you may deny or later revoke any permission from your device settings, though some features may then be unavailable:
- Camera: to capture photos/videos to attach to tasks and inventory records.
- Photos / media (photo picker): to let you select existing photos to upload. Access is limited to the items you choose through the system photo picker.
- Location: to record the geographic position of field assets and work while the relevant feature is in use.
- Notifications: to inform you about task assignments and updates (only when enabled).
6. SHARING AND TRANSFER OF DATA
We do not sell your personal data. We may share it, within the framework of Articles 8 and 9 of the KVKK, with:
- Your organization: the corporate customer on whose behalf you use the Services, which administers your account and the operational data you create;
- Service providers / processors: hosting, infrastructure and technical support providers acting on our behalf under confidentiality obligations;
- Competent authorities: courts, enforcement offices and public institutions where required to fulfil a legal obligation.
7. DATA RETENTION
We retain personal data only for as long as necessary to provide the Services and to fulfil the purposes described above, or for the period required by applicable legislation. When data is no longer required, it is deleted, destroyed or anonymized in accordance with the KVKK.
8. DATA SECURITY
We take appropriate technical and administrative measures — including access controls, encryption of data in transit and secure storage of authentication credentials — to protect personal data against unlawful access, loss or disclosure.
9. YOUR RIGHTS
Under Article 11 of the KVKK, you have the right to: learn whether your personal data is processed; request information about the processing; learn the purpose of processing and whether the data is used accordingly; know the third parties to whom data is transferred; request correction of incomplete or inaccurate data; request deletion or destruction of your data; request that such corrections/deletions be notified to third parties; object to results produced solely by automated analysis; and claim compensation for damage arising from unlawful processing.
To exercise these rights, please contact us at info@issd.com.tr. Your request will be concluded free of charge within thirty days at the latest, in accordance with the KVKK and the Communiqué on the Procedures and Principles of Application to the Data Controller.
10. CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time to reflect changes to the Services or legal requirements. The current version is always available at this page, and the “Last updated” date above indicates when it was last revised.
11. CONTACT
For any questions about this Privacy Policy or your personal data, contact ISSD at info@issd.com.tr or +90 (312) 210 00 15.
