This Privacy Notice explains how Invokat Fikri Mülkiyet Hizmetleri Ltd. Şti. (“Invokat IPS”) collects, uses, shares, and processes personal data (as defined below) in the context of the intellectual property services it provides.

1. Collection of Personal Data

Your personal data may be collected through automated means (e.g., servers, electronic devices) or non-automated means (e.g., physical document archives included in a data recording system). The types of personal data collected include:

• Identification and Contact Information: Name, phone number, mailing address, email address, and other contact details.
• Sensitive Data: In limited circumstances, we process sensitive data only when legally required or necessary for specific services (e.g., association membership information).
• Registration Data: Subscription details for newsletters, events, conferences, webinars, and seminars, including visual and audio data.
• Client Service Data: Information related to services provided to clients, including invoicing details, payment history, and client feedback regarding their customers, employees, or relevant persons.
• Informative Data: Details regarding participation in events, conferences, webinars, and seminars.
• Compliance Data: Official identification details, passport information, dates of birth, and other identity verification details.
• Job Application Data: Data submitted online or physically in relation to job applications.
• Device Data: IP addresses, unique device identifiers (UDID), and other information related to the usage of our website.

We collect personal data from multiple sources, including directly from you, our clients, suppliers, public authorities, and publicly available sources.

2. Processing of Personal Data

Personal data is processed for the following purposes and based on the following legal grounds:

• Providing Intellectual Property Services: Identification, registration, client service, and device data are processed to fulfill contractual obligations and comply with applicable legal regulations.
• Managing Business Operations & Client Relations: Executing customer agreements, handling invoicing processes, and carrying out necessary service-related operations.
• Enhancing Website User Experience: Analyzing and improving website functionality to optimize the user experience.
• Ensuring Security & Fraud Prevention: Processing personal data to detect and prevent cyber threats, fraud, and unauthorized use.
• Legal Updates & Information Sharing: Conducting information activities such as newsletter subscriptions and event invitations.
• Compliance & Legal Obligations: Ensuring compliance with identity verification, anti-money laundering, and fraud prevention regulations.
• Recruitment Processes: Evaluating job applications and managing hiring procedures.
• Processing Sensitive Data: Only processed when required by applicable law or when necessary for specific services.

3. Sharing & Transfer of Personal Data

Personal data may be shared with the following categories of recipients:

• Business Partners: Shared with global business partners to provide services and manage client relationships.
• Suppliers & Service Providers: Shared with third-party service providers such as IT infrastructure providers, customer relationship management systems, and event organizers.
• Financial Institutions: Shared with banks and financial institutions for invoicing and payment processing.
• Corporate Transactions: May be transferred in cases of mergers, acquisitions, or corporate restructuring.
• Legal Obligations: Disclosed in compliance with court orders, regulatory requests, or legal requirements.
• International Data Transfers: As our communication servers are located outside Turkey, personal data provided via our website or email may be transferred abroad in accordance with the Turkish Law No. 6698 on Personal Data Protection.

For further details on data transfers, please contact us.

4. Security of Personal Data

Invokat IPS takes necessary technical and administrative measures to:

• Prevent unlawful processing of personal data,
• Prevent unauthorized access,
• Ensure data integrity and security.

To maintain the accuracy of your information, please inform us of any changes. Upon request, we will update, correct, or delete your personal data.

5. Your Rights as a Data Subject

Under applicable data protection laws, you have the right to:

• Confirm whether your personal data is being processed,
• Request access to information regarding processing activities,
• Learn the purpose of processing and whether it is being used accordingly,
• Identify third parties to whom your data is transferred,
• Request rectification or deletion of inaccurate data,
• Request the deletion of your data if the reasons for processing no longer exist,
• Object to automated processing decisions that impact you,
• Seek compensation for damages resulting from unlawful processing.

Requests regarding your personal data will be processed as soon as possible, and no later than 30 days.

6. Additional Information

• Third-Party Websites: This Privacy Notice applies only to our website. We are not responsible for the privacy policies of third-party websites linked on our platform.
• Privacy Notice Updates: Our Privacy Notice may be updated periodically. Any updates will be announced on our website.

For further information on this Privacy Notice and your rights, please contact us.