Executive summary
Personal data is processed for defined and legitimate purposes such as communication, service delivery, security, contractual operations and legal compliance.
Technical logs and cookies may be used in a limited manner to keep the website secure, stable and measurable.
Personal data is not shared with third parties unless it is required for service delivery, legal obligations or authorized business operations.
1. Scope and controller
BM İleri Yazılım Teknolojileri LTD. ŞTİ., operating under the BM Advanced Technics brand, acts as the data controller for the processing activities described in this policy.
This policy applies to website visitors, prospective customers, customers, suppliers and any person who contacts us through forms, email, phone or digital meeting channels.
2. Categories of personal data
The categories of data processed depend on your interaction with us. We may process identity, contact, request, contractual and transaction security data where necessary.
For quotation, project and support processes, we may also process company details, project scope, technical requirements and correspondence records.
- Name, surname, company and role information
- Email address, phone number and communication preferences
- Message content, project needs, quotation and meeting notes
- IP address, device, browser, timestamps and security logs
3. Purposes and legal grounds
Personal data is processed to respond to requests, prepare quotations, plan and deliver services, establish and perform contracts, maintain information security and comply with legal obligations.
The legal grounds may include contract formation or performance, legitimate interests, compliance with legal obligations and consent where consent is required by applicable law.
4. Cookies, logs and analytics
The website may use strictly necessary or limited functional cookies for security, session integrity, performance measurement and basic usage analytics.
Where analytics or marketing cookies are used, we provide appropriate preference controls when required by applicable law.
5. Sharing and service providers
Personal data may be shared with authorized service providers only to the extent required for hosting, email, security, backup, accounting, legal advisory, project management or similar business operations.
If an international transfer is required, appropriate safeguards under KVKK, GDPR or other applicable data protection rules are assessed and applied.
6. Retention
Personal data is retained for as long as necessary for the relevant processing purpose and for statutory limitation, evidence and retention periods.
When retention is no longer required, data is securely deleted, destroyed or anonymized.
7. Security
We apply technical and organizational measures such as access control, authorization, secure connections, backups and logging to protect personal data.
Systems and suppliers are reviewed to reduce risks of unauthorized access, loss, misuse or unauthorized disclosure.
8. Your rights
Depending on the applicable law, you may have the right to request access, correction, deletion, restriction, objection, information about transfers and other rights regarding your personal data.
You can submit requests to info@bmadvancedtechnics.com. Requests are evaluated according to their nature and within applicable legal deadlines.
9. Updates
This policy may be updated to reflect changes in our services, systems or legal requirements. The current version becomes effective when published on our website.