Skip to content Skip to footer
Atik Metal

Privacy Policy

Close

Personal Data Protection and Processing Clarification Text for Atik Metal

Introduction and Scope

This Privacy Policy details how ATİK METAL (“the Company,” “we,” “us,” or “our”) manages and protects your personal data. As a manufacturer of high-quality gray and ductile iron components serving OEMs and system integrators across Europe, we are committed to respecting your privacy and safeguarding your information. This policy governs data collected through our business communications, contracts, website, and while you visit our facility. By engaging with us, you consent to the data practices described herein, which adhere to the Turkish Law on the Protection of Personal Data (KVKK) and the General Data Protection Regulation (GDPR).

Data Controller and Contact Information

The Data Controller responsible for your personal data is ATİK METAL, located at Atatürk Organize Sanayi Bölgesi (AOSB), 10037 Sok. No:6, 35620 Çiğli / İzmir, Türkiye.

You can direct any questions or requests regarding your personal data to us via email at info@atikmetal.com.tr.

Information We Collect

We collect data necessary to conduct our operations, fulfill contracts, and maintain security. This information falls into several categories:

  • Identity & Professional Data: Your name, surname, job title, and the name of the organization you represent (for customers, suppliers, and business partners).

  • Contact Data: Business email address, professional phone numbers, and work addresses.

  • Financial Data: Bank account or payment details, used solely for transaction and contract fulfillment purposes.

  • Security & Technical Data: CCTV footage from our facility entrance and common areas in İzmir, IP addresses, and website usage data collected via cookies.

How We Collect Your Information

We collect your data through various channels:

  • Directly from You: When you enter a contract, correspond with our teams via email or telephone, or submit inquiries for design and manufacturing services.

  • Through Business Documents: Data contained within purchase orders, technical specifications, and legal agreements.

  • Automatically: Via CCTV cameras when you visit our premises, or through the use of website cookies to improve your browsing experience.

Purposes and Legal Basis for Processing

We process your personal data based on the following legal grounds and for the specified purposes:

  • Contractual Necessity: We use your data to execute and perform the contract for integrated services—from concept design to casting, machining, and assembly—and to manage payments and deliveries (GDPR Article 6(1)(b)).

  • Legal Compliance: We process data to comply with local and international legal obligations, including tax reporting, customs documentation, and responding to lawful requests from public authorities.

  • Legitimate Interests: We process data to ensure the physical security of our plant and the IT security of our systems, to conduct internal reporting, and to improve our products and services, provided that your interests and rights are protected.

Data Disclosure and International Transfer

We do not sell your personal data. We disclose it only as necessary to run our business and fulfill our commitments:

  • Third-Party Service Providers: We share necessary data with trusted partners, such as logistics and shipping companies for component delivery, IT service providers, and professional advisors (auditors, legal counsel).

  • Authorities: We may disclose data when legally required by governmental authorities or courts.

  • International Transfers: Given our focus on serving OEMs and system integrators across Europe, data transfers to countries outside of Turkey (e.g., in the EEA) are necessary for contract fulfillment and technical collaboration. We ensure all international transfers meet the strict requirements of the GDPR and KVKK by implementing appropriate safeguards.

Your Rights

You have specific rights regarding your personal data, which you may exercise at any time:

  1. Right to Access: You can ask for confirmation as to whether we are processing your data and request a copy of it.

  2. Right to Rectification: You can ask us to correct or complete any personal data that you believe is inaccurate or incomplete.

  3. Right to Erasure (‘Right to be Forgotten’): You can ask us to delete your personal data when it is no longer necessary for the purposes for which it was collected, subject to legal retention periods.

  4. Right to Restrict Processing: You can request that we limit the way we use your data in certain circumstances.

  5. Right to Object: You can object to the processing of your data where the legal basis is our legitimate interests.

  6. Right to Data Portability: You can request to receive your data in a structured, commonly used, and machine-readable format.

Data Security and Retention

We employ industry-standard technical and administrative measures to protect your personal data from accidental loss, misuse, unauthorized access, or destruction. We maintain security systems, access controls, and encryption where appropriate.

We retain your personal data only for as long as needed to fulfill the purposes set out in this policy and to satisfy any legal, accounting, or reporting requirements. Once data is no longer required, we ensure its secure deletion or anonymization.

Policy Updates

We may update this Privacy Policy periodically to reflect changes in our operations or regulatory requirements. We will notify you of any significant changes by posting the updated policy on our website.