Each year we, as CLOUDTALK ("Cloudtalk", "We", "Us" or "Host"), bring together the companies ("companies") and attendees ("attendees") from dozens of countries who operate in the cloud sector, at CLOUDTALK GLOBAL ("event"), the largest sectoral networking event in Eurasia.
As CLOUDTALK, we attach great importance to the protection of personal data of all natural persons and data subjects ("You") that we have contacted in any way while carrying out our activities. Since our event is international we are devoted to complying with the Personal Data Protection Law No. 6698 ("KVK") of Turkey, as well as the General Data Protection Regulation ("GDPR") of the EU.
This policy does not apply to third-party websites of companies and sponsors which are presented on our website as links. We cannot guarantee the reliable and secure processing of your personal data by third-party organizations. We highly encourage you to review the privacy statements of these websites before using them.
As CLOUDTALK, we take all necessary administrative and technical measures within our company for the protection and security of personal data.
CLOUDTALK aims to process the personal data of natural persons in accordance with KVK and GDPR and relevant legislative provisions in Turkey and the EU.
We state that personal data that you have submitted to our Company and/or obtained by our Company are recorded, stored, protected, reorganized, and transferred at home or abroad under the conditions stipulated by KVK, GDPR, and related legislation. We may share personal data with public organizations if required by law. It is your obligation to provide accurate and up-to-date data. We keep your submitted personal data as accurate and up-to-date as possible as a "Data Controller".
This Policy concerns all your personal data, that are processed either by automated means or non-automated means as a part of our data filing system. The data obtained from you in accordance with your consent or other lawfulness cases listed in the Law will be used for the purpose of providing you the best experience that you should get from our events, increasing the quality of the services we provide.
C. WHICH PRINCIPLES DO WE FOLLOW?
CLOUDTALK processes personal data in accordance with the procedures and principles stipulated in KVK, GDPR, and other relevant legislation (Article 4 of the KVK, Article 5 of the GDPR) :
These principles are effective for the data we collect with or without your explicit consent.
D. WHOSE DATA WE PROCESS?
We process personal data of our representatives of sponsors, customers, and participating organizations, as well as personal data of our employees, attendees, third-party service providers, and as such.
E. WHY DO WE COLLECT YOUR DATA?
We will collect your personal data for the purposes listed below:
You are required to register in order to attend and participate in our events. We store your data to avoid repeating logging in to our site, to use when you need to contact us, to allow you to take part in our networking events, for the reasons related to the execution agreements, billing, and payment, and for general evaluation of our services.
For this purpose, your IP address, name, surname, company name, company position, email address, country, and phone number will be processed. Your personal data will be processed upon your consent. For both our digital and physical activities, we require your accurate and true personal information for confirmation and security purposes. In that regard, you will not be able to attend our events if you do not give your open consent. This requirement is only binding for your registration. You are free to give or not to give your open consent for sharing your information with third parties.
We may share your personal data with other attendees, companies, and sponsors that take part in our events, as well as third-party software service providers within or without Turkey and/or European Union. Our digital events are held on the "Hubilo" Online Event Management platform ("Hubilo") which acts as a "data processor" in this case.
We carefully select third parties that we share data and establish proper measures to secure the transfer of data in accordance with the law.
As a registered user, you will be able to attend various meetings, seminars, and webinars, as well as visit stands and get in touch with your peers. As an attendee to our networking events, you are required to provide accurate and true information such as name, surname, country, company name, and company position, as well as a real profile picture.
We also collect statistics on your attendance and use of our Sites and Services as well as collect and process data shared on open and internet sources for business purposes.
For this purpose, we collect information such as your company name, job title, company position, country, meetings, and activities that you have attended. For compliance with the law, we anonymize such statistical data such that they can no longer be related to any individual and you.
You can contact our team members via email or provide your email so that we can inform you about future events, activities, and services as well as enabling you to provide your thoughts, comments, and complaints. For communication purposes, we will process your name, surname, and email address.
We design our events to allow attendees and organizations to meet their peers and enhance their networks within the Cloud sector, during and after.
We will also process your name, surname, email address, company name, and company position to provide you with messages and emails from our Gold sponsors, about their products and activities. In this case, no personal data will be shared with the Gold sponsors and we will play an intermediary role to forward you such messages, including promotions and information. You may unsubscribe from the mailing list and SMS messaging at any time you want.
We may also send you SMS messages and emails about upcoming events, new services, and other related topics as a company.
On each of these occasions you are free not to give your consent for promotional and informational messaging and emailing, and also opt-out even if you had given your consent in the past. In case you are concerned, you can object at any time against promotional communication using the cancellation link provided within emails, block such emails, or inform us by contacting us. In such a case, we will also inform relevant parties to cease their promotional and informational activities directed to you.
We use general advertisements about Sites, Platforms, and our Service. We do not collect personal data for advertisement purposes.
Personal data may be processed without prior approval if the processing is clearly stated in the relevant legislation or for the fulfillment of a legal obligation determined by the legislation. The type and scope of data processing must be necessary for the legally permitted data processing activity and comply with the relevant legal provisions.
If a contractual relationship is established with attendees and companies, the personal data collected can be used without the consent of the customer. However, this use takes place for the purpose of better execution of the agreement and the requirements of the service and it is updated by contacting the customers when necessary.
CLOUDTALK ensures the privacy and protection of its employees' data.
Cases That Do Not Require Explicİt Consent:
The personal data of our employees can be processed in the following situations and in other situations stipulated by law, without the approval and explicit consent of the employee.
Legal Obligations: Employee's explicit consent is not applied for personal data processed in order to fulfill the obligations specified in the Labor Law, Occupational Health and Safety Law, and similar laws that regulate the business relationship between CLOUDTALK and its employees.
Transactions for the Benefit of Employees: CLOUDTALK can process personal data without obtaining approval for transactions for the benefit of company employees such as private health insurance. CLOUDTALK can also process employee data for disputes arising from business relationships.
Data Processed by Automated Systems We may organize lotteries among some of our attendees. In that case, your personal data may be processed by automated systems to decide the winners.
Assigned Devices and Services
The company assigns computers, phones, e-mail, and other devices, services, and applications to its employees only to be used for business purposes. The employee cannot use any of the tools that the company has allocated to it for private purposes and communication. The company has the right to control and examine all data on these types of equipment. The employee undertakes that he/she will not have any other data or information other than work on the computer, telephones, or other tools allocated to him/her from the moment he/she starts work.
Our Site and Services are not designed for use under the age of 18. For this reason, CLOUDTALK does not process data for people under the age of 18.
E. WHO DO WE SHARE YOUR DATA WITH?
CLOUDTALK shares the personal data under its responsibility in the context of business efficiency, execution and integration of basic services, business continuity, the fulfillment of legal obligations, online event management, and similar business requirements.
CLOUDTALK shares data as a result of its use of SaaS (Software as a Service) applications, email, server, social media, and similar service providers. Such service providers provide services in the status of data processors or sub-data processors according to the nature of the service and job. CLOUDTALK carries out the necessary checks and ensures the necessary legal commitments to ensure that such organizations and services from which it receives service as a data controller also fulfill the obligations specified under the KVK and GDPR. In this context,
CLOUDTALK will share your personal data with public institutions and with regard to business, transactions, and lawsuits concerning judicial processes with judicial authorities in order to fulfill its obligations as required by the law.
We share your data with diamond sponsors, and allow all attendees to see and observe the personal of other participants with a commitment to data confidentiality and obliging third parties to take needed measures to ensure data security.
CLOUDTALK has the authority to transfer personal data abroad within the conditions determined by KVK and GDPR, in accordance with the other conditions in the Law and depending on the explicit consent of the person.
Our digital events are held by using technology provided by Hubilo, a brilliant and capable event management SaaS application, whose servers are located in India. And our headquarters are in Turkey.
In that regard as an EU resident, we process your personal data in Turkey, the USA, and India. All three countries are not regarded as countries with adequate protection in line with GDPR. And therefore we need your explicit consent for the transfer of your data to these countries.
And as Turkish citizens, we process your personal data in India and the USA, which again are not regarded as countries with adequate protection in line with KVK. Therefore we need your explicit consent for the transfer of your data to these two countries.
CLOUDTALK elaborates to take relevant measures stipulated by the law, for data transfers made to countries that are not yet authorized to have an adequate level of protection yet. CLOUDTALK transfers personal data to its international suppliers only within the limits of the purpose of the services provided to carry out its commercial activities.
F. WHAT ARE YOUR RIGHTS AS A DATA SUBJECT?
CLOUDTALK acknowledges that the data subject has the right to give his/her explicit consent before and to determine the fate of his data during and after processing of his/her data under the KVK and/or GDPR.
The data subject has the rights listed below according to Article 11 of the KVK and Article 15 etc. of the GDPR. In order to facilitate the exercise of these rights, an application form is also prepared by CLOUDTALK and presented to you on your web page.
Data subjects whose personal data are processed,
if they are citizens of the Republic of Turkey or they are in Turkey during the data processing have the following rights within the scope of the KVK,
Data subjects in the European Union at the time of processing have the following rights under the GDPR.
As CLOUDTALK, we respect these rights as the data controller without prejudice to our rights and exceptions arising from KVK Law and GDPR.
However, data subjects do not have any sort right of rights related to anonymized data within the Company. CLOUDTALK may share personal data in accordance with the business and contractual relationship with the relevant institutions and organizations for the purpose of a judicial duty or state authority to exercise its legal powers.
G. YOUR REQUESTS AND APPLICATIONS
Data subjects will be able to submit their requests to the company, regarding their rights mentioned above by completing the application form, which they can obtain from our Site, signing it with a wet signature, and sending it with a registered letter with return receipt mail and with identity card photocopy (for the identity card, with a front copy only). Your applications will be answered as soon as possible according to the content of your application or within 30 days at the latest after reaching us. You must make your applications by registered letter with return receipt mail. Only the information that belongs to you will be provided. Any application about your spouse, relative, friends, or any third person will not be accepted.
You can be sure that we will try to meet your requests, applications such as access, deletion, update, phasing out, and correction, to the extent permitted by law and business requirements. If we are unable to fulfill your request, we will notify you about the reason. We would like to state that the copies of your data that you request to delete, correct and update may remain on the publication for a while after the request, as required by technical conditions.
Those who want to apply within the scope of KVK and in Turkish may make their applications by using the application forms at (http://CLOUDTALK.io/kvk/basvuru.html). Those who want to apply within the scope of GDPR and in English may make their applications by using the application forms on the Sites (http://CLOUDTALK.io/gdpr/request.html).
CLOUDTALK may request further information and documents from the applicants when necessary.
As a data controller who processes your personal data, we take care to answer all your questions and requests regarding the processing of your personal data in a timely and duly manner.
CLOUDTALK will take care to meet your acceptable and possible requests to allow you to access and correct your personal data that you have transferred to us, where permitted by law. However, we reserve the right to use your other personal data for the purposes of verifying your identity or for other security and support measures when we consider it necessary. Regarding the personal data we collect about you, you can request access, correction, suspension, or phasing out of data.
You may request the transfer of your Personal Data to third parties. However, this transfer can be carried out within the existing technical capabilities of CLOUDTALK and within the time required by the working conditions. The data of the concerned parties are not given to third parties by our company in the cases mentioned above or without their approval and consent.
CLOUDTALK protects the personal data it processes in accordance with the KVK, GDPR, and related legal legislation for the periods stipulated in the relevant legislation or required by the processing purpose.
When the legally required periods expire, the judicial processes are completed or other requirements disappear, these data can be deleted spontaneously or upon the request of the person concerned, can be destroyed or anonymized, or after reviewing the GDPR requirement, the processing can be continued provided that the necessary conditions are met again or data can be archived.
H. SECURITY OF YOUR DATA
All necessary technical and administrative measures are taken to protect the personal data collected by the CLOUDTALK and to prevent unauthorized access and prevent our customers and potential customers from being suffered in accordance with KVK and GDPR.
CLOUDTALK takes all possible technical measures relevant and possible. Security measures are constantly being renewed and developed. In order to reduce misuse and unauthorized access to personal data, we store the data in a separate system after receiving it, we use secure connections (Secure Sockets Layer of SSL) to encrypt all information between you and our website when entering your personal data.
CLOUDTALK acknowledges that when it is notified that there is any infringement related to personal data, it should notify relevant Boards in Turkey and the EU from the date this situation was learned, without delay and within 72 hours at the latest. It minimizes the damage of the concerned and compensates for the damage. When it is understood that the personal data have been intercepted by unauthorized persons, it immediately informs relevant Boards.
You can apply for the notification of infringements according to the procedures stated on our corporate website. Click for Application and Information Request Form
I. VALIDITY AND UPDATES OF POLICY