GATE27 KÜLTÜR SANAT TURİZM VE DIŞ TİCARET A.Ş Personal Data Processing Clarification Text

Definition of Data Controller and Collected Personal Data

GATE27 KÜLTÜR SANAT TURİZM VE DIŞ TİCARET A.Ş (“GATE 27”) processes the personal data of the participants and artists participating in the workshops and residence programs, automatically (Filling out the forms on the website of Gate27) or non-automatically (Filling and signing ready forms during registration for the residency program at Gate27 facilities), as a data controller. The natural person whose data is processed is defined as the data subject in this text.

Collected Personal Data

Any data relating to an identified or identifiable natural person is a personal data. 

Data Categories and Legal Reason for Data Processing

Non-Sensitive Personal Data

Personal identifying information: Name, Surname, ID number, ID Card photocopy, passport number, passport photocopy. Legal reason for data processing: Necessary for the establishment or fulfilment of a contract, necessary for the establishment or exercise of a right. 

The Guest’s name, surname, affiliation, and duration of stay at GATE 27 premises, the Guest’s project name. Legal reason for data processing: Explicit Consent of the Person.

Correspondence: It is information such as address, mobile phone, e-mail, home phone number that enables written, verbal and vocal communication with the person. Legal Ground for Data Processing: Necessary for the establishment or performance of a contract; necessary for the establishment, protection or exercise of a right.

Photos and Video (Visual and Auditory Recording) Visual recordings of the natural person recorded with the security camera system in Gate 27 campus during the workshops. Legal Ground for Data Processing – Being compulsory for the establishment, use or protection of a right

Visual recordings of the natural person recorded for GATE 27’s promotional visuals. Legal reason for data processing: Explicit Consent of the Person.

Sensitive Personal Data

PCR tests results information – PCR test results of the person’s Covid-19 disease, Legal Ground for Data Processing: Explicit Consent of the Person

Private Health Insurance Policy Copies – Insurance policies in which the person is beneficiary, if any. Legal Reason: Explicit Consent of the Person

Health information provided by the Health Condition Declaration Form (ie. allergies; phobia; medication; infectious disease; COVID vaccination status; medical condition). Legal Reason: Explicit Consent of the Person.

Data Processing Purposes

GATE 27 processes the personal data of the Guests staying/working at GATE 27 premises for the following purposes: 

• Execution of company’s commercial activities
• Promotion of the company’s products and services 
• Ensuring business continuity of the company
• Event Management
• Follow-up and effective resolution of requests and complaints
• Providing fringe benefits to contract parties
• Accommodation; health services and security for Guests staying on GATE 27 premises within the scope of the project
• Managing and overcoming emergency situations

Transfer of Personal Data

Transfer Purpose

GATE 27 transfers the personal data of data subjects to domestic suppliers in order to resolve requests and complaints and resolve legal problems. Such transfers are made to the extent that is necessary to achieve the abovementioned purposes.

GATE 27 transfers the personal data of data subjects to foreign servers in order to publish promotional visuals on digital platforms.

Rights of Data Subjects

The rights of Data Subjects arising from Law No. 6698 (Personal Data Protection Law) are as follows:

1. Learning whether personal data is processed or not,
2. If personal data has been processed, requesting information about it,
3. Learning the purpose of processing personal data and whether they are used per its purpose,
4. To know the third parties to whom personal data is transferred in the country or abroad,
5. Requesting correction of personal data in case of incomplete or incorrect processing,
6. Requesting the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the Law No. 6698 (Personal Data Protection Law),
7. Requesting notification of the transactions made according to subparagraphs (d) and (e) to third parties to whom personal data has been transferred,
8. Objecting to the emergence of a result against the person himself by analyzing the processed data exclusively through automated systems,
9. Requesting the compensation of the damage in case of loss due to unlawful processing of personal data.

To exercise these rights, you can send a request to info@gate-27.com from your e-mail address that you have previously shared with GATE 27, or by sending a written application to Yeniköy Mh. Türkbostan Sokak, No:27, Sarıyer/Istanbul, Turkiye address. Name, surname, TR ID number/passport number, address suitable for notification, telephone and fax number should be included on the request to ensure the authority of the person claiming the right. Requests will be answered within 30 days.