Privacy Notice Regarding the Processing of Personal Data - TEB Yatırım PRIME

• Identity (Name, surname)
• Customer Transactions (Customer account number, Central Registry Agency registration number, order/instruction information, number of transactions)
• Finance (IBAN number, customer bank account number)
• Transaction Security (User log records, IP address information, website/mobile application entry and exit information, device ID information, username and password)

• Ensuring that you can execute and monitor your investment transactions through your investment account,
• Assigning you a username and password to enable your access to the platforms,
• Ensuring the management of your investment portfolio,
• The execution of withholding tax procedures relating to your earnings,
• Making correction entries for errors occurring in daily transactions,
• The assessment and finalization of your limit requests,
• Ensuring that you can view your investment portfolio,
• Transferring dividend payments to your accounts,

Processing of personal data of the parties of a contract is necessary, provided that it is directly related to the establishment or performance of the contract.

• Identity (Name, surname),
• Customer Transactions (Customer account number, Central Registry Agency registration number, order/instruction information, number of transactions)
• Finance (IBAN number, customer bank account number)
• Transaction Security (User log records, IP address information, website/mobile application entry and exit information, device ID information, username and password)

• Conducting communication activities
• Receiving and resolving your requests, complaints and suggestions,
• In the event of an error arising from TEB Yatırım, paying compensation for damages,
• Conducting reporting activities,
• In exceptional circumstances (systemic problems), authorized employees opening a backup terminal to manually enter your transactions into the systems,
• Sending monthly account statements to you,
• Conducting internal control/audit activities,
• The examination and auditing of our business activities,
• Conducting work aimed at developing and improving your experience with our services

Processing of data is necessary for the legitimate interests pursued by the data controller, provided that this processing shall not violate the fundamental rights and freedoms of the data subject.

• Identity (Name, surname),
• Customer Transactions (Customer account number, Central Registry Agency registration number, order/instruction information, number of transactions)
• Finance (IBAN number, customer bank account number)
• Transaction Security (User log records, IP address information, website/mobile application entry and exit information, device ID information, username and password)
• Other (details regarding the suspicious transaction)
• Legal Proceedings (Information contained in the lawsuit/enforcement file in the event of a potential dispute, correspondence with the authorized institutions or organizations )

• Where authorized institutions or organizations (Capital Markets Board (“CMB”), the Investor Compensation Centre (“ICC”), the Turkish Capital Markets Association (“TCMA”), Borsa Istanbul A.Ş. (“BIST”), Istanbul Takas ve Saklama Bankası A.Ş. (“Takasbank”) and the Merkezi Kayıt Kuruluşu A.Ş. (“MKK”), The Banking Regulation and Supervision Agency (“BRSA”), The Central Bank of the Republic of Turkey (“CBRT”), The Ministry of Trade, The Financial Crimes Investigation Board (“MASAK”), The Revenue Administration (“GİB”), The Union of Chambers and Commodity Exchanges of Turkey (“TOBB”)) request information from our Company or where we are required to notify such institutions, fulfilling our legal obligations (e.g. reporting suspicious transactions to MASAK, reporting suspicious transactions related to information abuse or market fraud to the Capital Markets Board),

It is necessary for compliance with a legal obligation to which the data controller is subject.

• The protection and exercise of our rights and the conduct of legal proceedings in the event of a potential dispute

Data processing being necessity for establishing, exercising, or protecting a legal right

Where authorized institutions or organizations (Capital Markets Board (“CMB”), the Investor Compensation Centre (“ICC”), the Turkish Capital Markets Association (“TCMA”), Borsa Istanbul A.Ş. (“BIST”), Istanbul Takas ve Saklama Bankası A.Ş. (“Takasbank”) and the  Central Registry Agency (“CRA”), The Banking Regulation and Supervision Agency (“BRSA”), The Central Bank of the Republic of Turkey (“CBRT”), The Ministry of Trade, The Financial Crimes Investigation Board (“MASAK”), The Revenue Administration (“GİB”), The Union of Chambers and Commodity Exchanges of Turkey (“TOBB”), The Risk Centre of the Turkish Banks Association (“TBB”) and similar organisations) request information from our Company or where we are required to notify such institutions, sharing for the purpose of fulfilling our legal obligations,