Privacy Policy

PRIVACY NOTICE 

Boden Attorney Partnership (“Boden”) on behalf of the South Eastern Europe Arbitration Conference (“SEEA”) organisation is committed to protecting your privacy and ensuring transparency in how we handle your personal data. This Privacy Policy explains the types of personal data we collect, why and how we collect it, how we use and share it, and your rights regarding your personal data under the Turkish Personal Data Protection Law No. 6698 (“KVKK”).

SEEA takes appropriate technical and organizational measures to safeguard your personal data, including encrypted storage, access restrictions, and secure data transfer methods.

Methods and Types of Collecting Personal Data

Depending on your relationship with SEEA, your personal information may be obtained directly from you, from our suppliers and from generally accessible sources. The types of personal data we may obtain through these sources are summarized below:

Identity: Name, surname

Contact: Data types such as phone number, postal address, email address and contact details

Registration: Data types such as subscription requests, webinar and conference registration information

Service: Types of data received such as billing details, payment history and feedback information

Risk management: Document types such as official information or other identity documents, AML/CTF screening records

Purposes and Legal Basis for Processing Your Personal Data

SEEA may process your personal data based on the personal data processing conditions specified in Article 5 of the KVKK within the framework of the following purposes.

Identity, contact, registration, services and device data:

Registering you or your organization; Providing and managing services or other solutions in accordance with SEEA’s instructions; Managing invoicing and payment transactions; Providing information on event updates; For compliance procedures (including, for example, anti-money laundering and anti-financing of terrorism regulations, trade sanctions and embargo laws) and to comply with our legal obligations regarding record retention (including Law No. 5651 and tax regulations)

Identity, contact, registration, client services and device data:

Managing our business activities, including analysing and improving our services and communication with our Clients, monitoring compliance with our policies and standards; managing our business relationships with our Clients and managing invoicing and payment transactions.

Identity, contact, registration, client services and device data:

To ensure the security and effectiveness of our website and information technology systems; to protect the security of our technical infrastructure and communication in order to prevent and detect security threats, frauds or other criminal or malicious activities; provided that it does not harm the fundamental rights and freedoms of the person concerned, it is based on the legal reason that data processing is mandatory for the legitimate interests of the data controller.

Identity, contact and registration data:

Providing information on legal updates

Identity, contact, registration, client services and device data:

For compliance procedures (including, for example, anti-money laundering and anti-financing of terrorism regulations, trade sanctions and embargo laws) and to comply with our legal obligations regarding record retention (including Law No. 5651 and tax regulations)

Recipient Parties and Purposes for Transferring Personal Data

Your personal data may be transferred in accordance with the data processing conditions determined by the Law and the rules on the transfer of personal data regulated in Article 5 of the KVKK and described in Articles 8 and 9. during the cross-border transfer of your data, we take all necessary measures to use, share and protect this data as specified in the Privacy Statement.

Recipient Parties:

Purposes for Transferring

Our partners:

  To provide you services for events and organisations and manage our relationship with you

Our suppliers and service providers include organizations providing services in various fields, such as providers of IT services, providers of account systems:

To manage our business activities

Companies providing services under anti-money laundering and counter-money laundering and terrorist financing regulations, trade sanctions and embargo laws, and companies providing similar services, such as financial institutions, credit reference agencies and regulators, with whom such personal data is shared:

Within the framework of compliance procedures

Legally authorized public bodies and legally authorized private bodies: 

In order to fulfil our obligations arising from the legislation.

Rights of Individuals Pursuant to Article 11 of the KVKK

Data subjects have the following rights under Article 11 of the KVKK:

1. To learn whether the data concerning him/her is being processed or not,

2. Request more information about the personal data processed,

3. To learn the purpose of processing personal data and whether it is used in accordance with this purpose,

4. Learn about third parties to whom data is disclosed domestically or abroad,

5. To request correction of incomplete or incorrectly processed personal data and to request notification of the transaction made within this scope to third parties,

6. To request the deletion or destruction of personal data for reasons that do not require their processing, even though they have been processed in accordance with the l aw, and to request notification of this process to third parties,

7. Challenge decisions made through automated systems,

8. To request compensation for damages incurred due to an unlawful transaction.

In case the requests regarding these rights are sent to info@seea-arbitration.com, these requests will be evaluated within thirty days. Requests are finalized free of charge in principle. However, Boden on behalf of SEEA reserves the right to demand the fee in the tariff determined by the Personal Data Protection Board. 

Your personal data will be retained only for as long as necessary to fulfil the purposes set out in this policy or to comply with legal obligations. Data that is no longer relevant or required will be securely deleted or anonymized.