Effective as from 21 March, 2023.

 

1. Introduction

 

     This privacy policy provides information regarding the privacy of your data processed by the website ("The Site") operated by Diam&Tech Ltd. ("The Company" or "We"). This policy constituting the General Data Protection Regulation of the European Union (GDPR), the California Consumer Privacy Act (CCPA) in the United States and Articles 20 and 22 of the Constitution of the Republic of Turkey and the Personal Data Protection Law No. 6698 (PPDL), includes laws and regulations.

 

2. Information About The Company

 

Name: Diam&Tech Ltd.
Entered in the Commercial Register and the Register of Non-Profit Legal Entities at the Registration Agency with UIC /unique ID code No./204762427

 

3. Grounds For Collecting, Processing And Storing of Personal Data

 

     The Company processes (including but not limited to collection and storage) your personal data solely in connection with its activity and in accordance with the requirements of applicable legislation.

 

     We process your personal data based on at least one of the following grounds:

  • User's consent to processing personal data;
  • The processing of personal data is necessary for executing the contractual obligations of the Company to the User;
  • The processing of personal data is necessary to take steps at the request of the User before concluding a contract;
  • The processing of personal data is necessary to comply with the Company's legal obligations;
  • The processing of personal data is necessary for the purposes of the legitimate interests of the Company to carry out its activity.

 

     With regard to your personal data as Users of our services, which we provide on our own behalf and at our own expense (for example: creating a website), we act in our capacity as an administrator of your personal data. On the other hand, with regard to the personal data of third parties processed by you in connection with your use of services provided by us, we act as a processor of the personal data.

 

     In the cases according to the second sentence of the previous paragraph, we act solely on the instruction of the relevant User as a user of the service and only to the extent that we can have control over the personal data that the User processes. In such as case, as the case may be, we have no control over the content and data that the User as a user of the service chooses to upload to the service (including whether and what personal data is uploaded) and accordingly we are not responsible for the personal data that the User processes.

 

4. Purposes For Collecting, Processing And Storing Personal Data

 

     We collect, process and store personal data of Users in connection with the implementation of the services provided by us and communication in connection with the use of the Internet page, as well as for the following purposes:

  • Communication and provision of services to users
  • Site management and development
  • Implementation of advertising and marketing activities
  • Compliance with laws and regulations
  • Site usage analysis and user experience improvement

 

5. Personal Data

 

     Data collected on the Site may be as follows:

  • Your name, phone number, address, email address or other contact information.
  • The devices you use to visit the site and their IP addresses.
  • The pages you visit; the time those pages were viewed and site interactions.
  • Data collected by tools such as Google Analytics, Hotjar, which are used for analysing your information regarding user registration, unregistered use, the pages you visit and the characteristics of the devices used.
  • Other data that may be necessary in certain cases or related to the provision of services to Users by us, including necessary for the performance of contractual obligations that Users voluntarily decide to share with us, and on the basis of performance of a contractual obligation or compliance with our legal obligation.

 

     We do not process, or collect from Users, special categories of personal data (for example: data revealing racial or ethnic origin, political views, genetic or biometric data, as well as data about the sex life and sexual orientation of the data subject).

 

     We do not make decisions based solely on automatic data processing, including profiling.

 

     We do not process personal data of persons under the age of 14, except based on the consent of their parent who exercises parental rights or their guardian.

 

6. Period of Storage of Personal Data

 

     We store the personal data of Users for a period not longer than necessary to complete the relevant purpose of processing or the legally established period, when applicable.

 

     The storage period also depends on the duration of the legal relationship between us and the relevant User, as well as on the purposes for which the personal data is processed. After the expiry of the above periods, we take the necessary care to delete and/or destroy your relevant personal data without undue delay.

 

7. Access To Personal Data And Transmission of Personal Data To Third Parties

 

     Users' personal data that we process may be accessible to our employees, representatives/partners (these services may be provided by payment processors, cloud service providers, analytics service providers, SMS senders) who need them to complete legal ns and/or contractual obligations.

 

     Based on applicable law or at the request of public authorities, all or part of your personal data may also be made available to public authorities. Data may be shared to protect and secure the rights of the company or users.

 

8. Your Rights

 

     You have the following rights regarding the processing of your personal data:

  • Right to be informed – you have the right to request information about whether we are processing your personal data, as well as to obtain access to and a copy of such your personal data; in the event that you request more than one copy of such personal data of yours, you may be liable to pay an appropriate fee for each additional copy;
  • Access right - you have the right to request that your personal data be corrected if you believe that it is inaccurate or incomplete. We will make such corrections without undue delay;
  • Right to rectification - you have the right to request that your personal data be rectified if you believe that it is inaccurate or incomplete.
  • Right to erasure - under certain circumstances (for example, upon withdrawal of consent to the processing of certain of your personal data, you may request that the data we process be deleted from our records. In certain cases, we may refuse to delete such personal data of yours (if the processing of personal data is necessary to comply with a specific legal obligation or to establish, exercise or defend legal claims).
  • Right to request restriction of processing – right to request restriction of the way your personal data is processed without the data being deleted.
  • Right to data portability - when your personal data is processed in an automated manner, you may request that these be transmitted to you in a structured, widely used and machine-readable format, as well as transferred to another personal data controller, if it is technically feasible;
  • Right to objection – you can make an objection to the processing of your personal data for certain purposes, in which case we will stop using the personal data for the specific purpose, unless we have overriding legitimate grounds for doing so.
  • Rights in reference to automated decision-making and profiling (where applicable)

     Users can exercise the above rights by contacting us by email at: legal@diamandtech.com

 

     In the event that you consider that your personal data is not being processed lawfully or that any of your rights related to the protection of personal data have been violated, you have the right to lodge a complaint with the competent supervisory authority for the protection of personal data.

 

9. Data Storage

 

     We store your personal data in electronic form on our own servers, located in the territory of the Republic of Bulgaria, with a high level of information security.

 

     We may disclose your personal data:

  • 1. In the event that we sell or buy any business or assets, where we may need to disclose your personal data to the seller/buyer.
  • 2. If our business is bought by a third party, where the personal data of all our customers will be part of the assets we transfer to the buyer. These transfers will be subject to the terms of confidentiality and protection of your personal data and the terms of confidentiality will be preserved and valid.

 

10. Data Security

 

     The company takes appropriate measures to ensure the security of the collected data. The latest technological security solutions are used, such as website security and methods used in legal services.

 

11. Contact Us

 

     If you have any questions or concerns about the Policy, please contact us by sending an email to the following email address: legal@diamandtech.com

 

     This privacy policy will be reviewed regularly to ensure compliance with company requirements. Changes to this policy are effective when posted on the Site.

 

 

 

     By using our products or services, and/or by accepting these rules, (such as in the course of registering for any of our products or services), you consent to the collection and use of personal data as described in these rules.