Back to Home

GDPR Disclosure Statement

Last Updated: 27.08.2025

1. Data Controller

In accordance with the General Data Protection Regulation (GDPR), your personal data will be processed by Diji.Tech Information Technologies Inc. as the data controller within the scope explained below.

This disclosure statement has been prepared in accordance with GDPR requirements for transparency and accountability.

2. Identity of the Data Controller

Data Controller:

Diji.Tech Information Technologies Inc.
Tantavi Mah. Estergon Cd. Suryapı Exen Istanbul Residence F/Block F:19 D:231 Umraniye / Istanbul
Phone: +90 (850) 346 68 40
Email: [email protected]

3. Personal Data Processed

Categories of personal data processed by our company:

  • Identity Information: Name, surname, national ID number, passport number
  • Contact Information: Phone, email, address information
  • Transaction Security: IP address, log records, user transaction records
  • Legal Transaction: Invoice, contract information
  • Visual and Audio: Profile photo (optional)

4. Purposes of Processing Personal Data

Your personal data is processed for the following purposes:

  • Providing corporate travel management services
  • Conducting contract processes
  • Fulfilling legal obligations
  • Increasing customer satisfaction
  • Security and risk management
  • Statistical analysis and reporting

5. Transfer of Personal Data

Your personal data, limited to the purposes stated above:

  • Third party service providers
  • Our business partners and suppliers
  • Legal authorities and official institutions
  • Banks and financial institutions
  • Legal, audit and consulting firms

6. Method and Legal Basis for Collection

Your personal data is collected under GDPR Article 6:

  • Your explicit consent
  • Performance of a contract
  • Legal obligation
  • Legitimate interests

7. Data Subject Rights

Your rights under GDPR Articles 15-22:

Your Rights:

  • Right to information: Learn whether your personal data is being processed
  • Right of access: Request access to your processed personal data
  • Rectification: Request correction of incomplete or incorrect data
  • Erasure: Request deletion under conditions specified in GDPR
  • Restriction: Request restriction of processing
  • Data portability: Request transfer of systematically processed data to another controller
  • Right to object: Object to processing resulting in adverse effects through automated systems
  • Automated decision-making: Object to decisions made by automated systems
  • Right to complaint: File a complaint with data protection authorities

8. Data Security

Necessary technical and administrative measures have been taken for the security of your personal data:

  • SSL certificate and encryption
  • Access authorizations
  • Log records and monitoring
  • Regular security tests

9. Data Retention Period

Your personal data will be retained for the periods specified in relevant legislation and required by processing purposes. Following the expiration of the retention period, your personal data will be securely deleted, destroyed or anonymized.

Contact

Data Protection Officer

Diji.Tech Bilişim Teknolojileri A.Ş.

Address: Tantavi Mah. Estergon Cd. Suryapı Exen İstanbul Residence
F/Blok K:19 D:231 Ümraniye / İstanbul

Email: [email protected]
Phone: 0 (850) 346 68 40

Corporate Travel Management System - B2B Travel Platform | Kurumsal Pro