top of page

Clarification Text on the Protection and Processing of Personal Data

Due to your use of our website, we would like to inform you, as the data controller, about the details and purposes of collecting, storing, processing, transferring, and other activities related to some of your data within the scope of the current legislation, primarily the Personal Data Protection Law No. 6698 (KVKK).

1. General Information

According to the relevant legislation, "personal data" refers to any information related to an identified or identifiable natural person. "Sensitive personal data" includes information on individuals' race, ethnic origin, political opinions, philosophical beliefs, religion, sect or other beliefs, clothing, association, foundation or union membership, health, sexual life, criminal convictions and security measures, and biometric and genetic data. In this Clarification Text, the term "Personal Data" will be used for all types of data, regardless of whether they are of a special or general nature, and it is noted that sensitive personal data may also be included within this term as appropriate.

Similarly, while using our website, we may use cookies, web beacons, and similar applications to provide you with more effective service. You can manage cookie usage policies from your browser settings. Disabling cookie usage may limit the use of some functions on our website.

The processes of obtaining, recording, storing, preserving, changing, reorganizing, disclosing, transferring, classifying, or preventing the use of personal data collected, until the processes of deletion, destruction, or anonymization are carried out, are considered "processing of personal data" under KVKK.

By sharing your personal data that comply with the definition of personal or sensitive personal data with us ([mecralegal.com] as the Data Controller) or using our Website, we would like to state that by checking the consent box, you explicitly consent to the processing of this data as described.

2. Collection of Personal Data and Legal Reasons

While using our website, we may request you to share some personal data with us in our capacity as Data Controller. These personal data can be collected physically in oral or written form, as well as electronically. Similarly, personal data may be collected directly by us as the Data Controller or by real or legal persons processing data on behalf of the Data Controller, or as a requirement of the work and service we perform, through national/international persons and organizations we receive support from, and other third parties, including but not limited to; our website, blog messages, contact forms, job/internship and other application forms, information forms, audio and/or video recordings that can be recorded during video conferences and/or online legal consultation services, voice recordings that can be recorded during phone calls and/or teleconferences, text messages, WhatsApp, social media, and other communication channels.

These data can be obtained using electronic or internet-based tools and other means, as well as through forms, contracts, notifications, all kinds of documents and data, judicial or administrative authority decisions provided to us.

3. Purpose and Transfer of Personal Data Processing

Your personal data are processed in accordance with the applicable legislation, in a manner that is lawful, in good faith, and truthful, for specific, clear, and legitimate purposes, and in a manner that is relevant, limited, and proportionate to these purposes, and are retained for the duration necessary for the purposes for which they are processed as required by the relevant legislation.

Basic data, record data, and client service data can be used to provide legal consultancy services. These data are processed to fulfill our legal obligations under our contracts with our clients, when data processing is mandatory for our legitimate interests, when it is directly related to the establishment or performance of a contract, and when the data subject has publicly disclosed the data, provided that it does not harm the fundamental rights and freedoms of the data subject. We may contact you using the personal data you provide to [mecralegal.com] for communication purposes.

Basic data, record data, and client service data can be used to conduct our business activities. These data are processed to fulfill our legal obligations under our contracts with our clients (e.g., billing processes), when data processing is mandatory for our legitimate interests, when it is directly related to the establishment or performance of a contract, and when the data subject has publicly disclosed the data, provided that it does not harm the fundamental rights and freedoms of the data subject.

Device data can be collected to make our site more user-friendly and to obtain statistical information. Provided that it does not harm the fundamental rights and freedoms of individuals, data processing is mandatory for our legitimate interests in monitoring how our site is used to help improve its functionality and provide better service to all users.

Basic data, record data, and client service data can be used to ensure the security and efficient operation of our site. Provided that it does not harm the fundamental rights and freedoms of individuals, data processing is mandatory for our legitimate interests in monitoring the use of our site to detect and prevent fraud and abuse. Through this processing activity, we ensure that you can use our site securely for the benefit of all users.

4. Personal Data Processed on Our Website
As an inevitable result of your access to our website, the following data, defined as data logs, are automatically transferred to our internet server by your web browser and recorded in data logs:
- Login date/time
- URL of the referring website
- Pages visited
- Files downloaded
- Transmitted data volume
- Browser type and version
- Operating system
- IP address
- Domain name of your internet service provider

Additionally, as required by the service, to the extent necessary for providing you with a specific service or fulfilling our legal obligations, only to the extent provided by you, information that may be defined as sensitive personal data under the applicable legislation may be processed.

- Identity and Contact Information: Name, phone number, email address
- Client Service Data: Personal data obtained concerning clients or persons known by clients (e.g., invoice details, payment history)

5. Measures Taken to Ensure the Security of Personal Data
In accordance with the relevant article of the Personal Data Protection Law No. 6698, necessary technical and administrative measures are taken by us as the Data Controller to ensure the security of your personal data, to prevent unlawful processing and access, and to ensure their preservation.

6. Rights of the Data Subject
As a personal data owner, you can exercise the following rights by applying to Mecra Legal Consultancy as the data controller under Article 11 of the Law:


- Learning whether personal data is processed or not and requesting information if it has been processed;
- Learning the purpose of personal data processing and whether it is used for its intended purpose;
- Knowing the third parties to whom personal data is transferred domestically or abroad;
- Requesting the correction of incomplete or inaccurate personal data and requesting notification of the correction to third parties to whom personal data has been transferred;
- Requesting the deletion or destruction of personal data if the reasons for processing it no longer exist, and requesting notification of this action to third parties to whom personal data has been transferred;
- Objecting to the occurrence of a result against the person by analyzing the processed data exclusively through automated systems;
- Requesting compensation for damages if personal data is processed unlawfully.

Your requests for the exercise of the above rights or for more detailed information regarding our Clarification Text will be processed in accordance with the legislation, provided that you send them in writing with a wet signature to [Darülaceze Cd. No:33/B D:42 Şişli, Istanbul] by registered mail with return receipt requested.

If personal data owners convey their requests to Mecra Legal Consultancy as described above, the request will be concluded as soon as possible, depending on the nature of the request. If the relevant transaction incurs an additional cost, the fee in the tariff determined by the Personal Data Protection Board will be charged to you.

bottom of page