Last Update Date: 23.02.2025
Data Controller
NK Research Education Consultancy Industry and Trade Limited Company (“NK Research” or “Company”)
As NK Research, within the scope of our activities arising from the Personal Data Protection Law No. 6698 (“KVKK”) and the relevant legislation and legal regulations, we have prepared this Personal Data Processing Information Notice (“Information Notice”) in order to inform data subjects about the processing, storage, and transfer of their personal data.
Additionally, detailed information regarding the cookies and SDKs used when you visit our website, mobile site, and/or mobile application is provided in our Cookie Policy. The personal data processed through these means is explained in this Information Notice.
This Information Notice becomes effective as of its publication date by NK Research. NK Research may amend the Information Notice at any time if necessary. Any changes become valid immediately upon publication at:
https://academetrica.com/en/personal-data-pr…tion-declaration/
Customers
On NK Research’s website www.academetrica.com or our mobile application (“Platform”), you may purchase services and training by creating a membership account or by choosing the “continue without membership” option. Unlike the non-member option, the membership option is designed for users who want a personalized service based on their habits, shopping history, and reviews.
When receiving services without creating a membership account, the following data may be processed: identity (name, surname, and if necessary, Turkish ID number), contact (billing and delivery addresses, mobile phone number, email address), financial (encrypted credit card information), customer transaction (invoice details, order information, product details, shipment details, authorized service details), transaction security (IP address, website entry/exit logs, traffic data). These are processed for carrying out finance and accounting activities, executing and supervising business activities, customer relationship management, internal audit and investigation, fulfilling obligations to authorities, product/service sales processes, and ensuring legal compliance. Legal grounds: Article 5/2(a) “explicitly prescribed by law,” 5/2(c) “necessary for the establishment or performance of a contract,” and 5/2(ç) “necessary to fulfill the data controller’s legal obligation.”
Data may be transferred to: affiliates, product sellers, cargo companies, banks and payment institutions, SMS/email service partners, suppliers, authorized service providers, financial institutions (if supplier financing is used), authorized public institutions, and technology infrastructure providers.
During membership processes, the following data may be processed: identity (name, surname, birthdate, Turkish ID number, gender), contact, financial, customer transaction, transaction security, and visual/audio records (photos added to reviews). These are processed for legal compliance, finance and accounting, communication, business processes, sales, customer relations, customer satisfaction, marketing and analytics, advertising, personalized user experience, contract processes, strategic planning, and product/service marketing. Legal grounds: Article 5/2(c) and 5/2(f).
Data may be transferred to: affiliates, product sellers, cargo companies, banks and payment institutions, SMS/email service partners, suppliers, authorized service providers, financial institutions (if supplier financing is used), public authorities, and technology infrastructure providers. For international transfers, data may be transferred abroad with explicit consent under standard contractual clauses.
When purchasing products or services on the Platform, the same categories of data and transfers listed above apply.
During online training, audio and video recordings may be collected if cameras or microphones are used. These are processed to improve training efficiency, gather feedback, and develop materials. Data may be transferred to training platforms, business partners, infrastructure providers, and authorized institutions.
When submitting complaints or support requests, the following data may be processed: identity, contact, financial, customer transaction, and audio records. For members, date of birth, encrypted card data, and purchase history may also be processed. These are processed for legal compliance, finance, communication, after-sales support, customer relations, and complaint tracking. Data may be transferred to affiliates, SMS/email service partners, suppliers/authorized service providers, public authorities, and infrastructure providers.
During legal processes, identity, contact, financial, customer transaction, transaction security, and legal process data (court documents, notices, correspondence) may be processed. These are processed for legal compliance, managing legal claims, and informing authorities. Data may be transferred to public authorities and infrastructure providers.
When saving credit card information, saving a card is optional and requires explicit consent. Identity and encrypted card details are processed for finance, operations, customer satisfaction, and storage. Data is stored securely in PCI DSS-compliant systems.
During user experience studies, identity, contact, and membership data may be processed based on legitimate interest to contact you. Responses, complaints, and audio/visual data may be processed based on explicit consent for improving services and processes. Data may be transferred to public authorities, affiliates, business partners, and overseas infrastructure providers with explicit consent.
During profile creation, identity, contact, customer transaction, and photo data may be processed for loyalty activities, customer relations, customer satisfaction, communication, marketing analysis, and product/service marketing. Processing is based on explicit consent. If you choose to make information public in your profile, such data is considered publicly disclosed and may be accessed by third parties. Publicly disclosed data falls under KVKK 28/2(b). You may remove it at any time, although older content may remain indexed by other platforms.
When communicating about purchased products/services or promotions, identity, contact, and customer transaction data may be processed for communication, legal compliance, operations, and after-sales support under Article 5/2(c) and (ç). If you give marketing consent, identity and contact data may be used for sending commercial electronic messages under ETK Article 6 and KVKK explicit consent requirements.
Storage and Deletion
NK Research has a Data Retention and Destruction Policy. If the law specifies a retention period, data is kept for at least that period. An additional 6–12 months may be added for potential disputes or delayed authority requests. If no period is specified, data is kept for up to 10 years after the end of the legal relationship. When processing conditions no longer apply, data is deleted, destroyed, or anonymized at the next periodic destruction, or within 6 months. Upon your request, deletion occurs within 30 days unless retention is legally required.
Your Rights
Under KVKK, you have the right to: learn whether data is processed; request information; learn processing purposes; know third-party transfers; request correction; request deletion or destruction; request notification of corrections/deletions to third parties; object to automated decisions; seek compensation for unlawful processing.
Applications
You may submit requests regarding your data by: sending a signed form with ID copy to Kavacık Subayevleri Mah. Sandalcı Cad. 56/3 Keçiören/Ankara; applying in person with valid ID; sending via KEP with electronic or mobile signature; or emailing from your registered email address to bilgi@nkanalitik.com. Applications must include: name, surname, signature (if written), Turkish ID or passport number, address, email, phone, fax (if any), and a clear explanation of the request with supporting documents.