At Meva1 Mühendislik ve İnşaat (the "Company", "Meva1") we are committed to protecting personal data belonging to our clients, business partners, employees, and website visitors. This Privacy Policy explains which personal data we process in the course of providing engineering, construction, seismic assessment, structural strengthening, urban transformation, and laboratory services, the legal bases we rely on, our retention periods, and your rights.
Data Minimisation
This website operates as a public information presence. No CRM, marketing list, customer database, lead-scoring system, or behavioural profiling is used on this site. The only personal data processed through the website is: 1. Strictly necessary cookies (session, security, language preference). 2. Google Analytics with anonymised IP, aggregated reporting only — advertising features, remarketing audiences and cross-device tracking are disabled. 3. Contact channel content — if a visitor voluntarily reaches us by e-mail or phone, only the content of that communication is processed for the purpose of responding. Engineering project data is processed separately under contract performance once a service relationship is established off-site. No other personal data is collected, profiled, sold, or shared for marketing purposes via this website.
1. Data Controller
Data controller for website operations: • Data Controller: Devrim Tunçer • Address: Kestel Mahallesi, Üniversite Caddesi No: 86/3, Alanya / Antalya, Türkiye • KEP (registered electronic mail): devrim.tuncer@hs01.kep.tr • E-mail: devrim@donedynamics.com • Web: https://donedynamics.com • Tax office / VKN: Alanya Tax Office — 8670898531 • Data Protection Officer (DPO): not designated. This site is an informational presentation of the services of Meva1 Mühendislik. The data controller for site operations (hosting, analytics, cookies, contact-form metadata) is Devrim Tunçer, as stated above. Engineering project data and customer information processed under a project contract are processed under a separate legal framework. For details under Turkish KVKK Law No. 6698, see our KVKK Privacy Notice. For EU-based data subjects, see our GDPR Notice.
2. Categories of Personal Data Processed
We process the following categories of data: • Identity: full name, national ID number (where required by contract or law), signature. • Contact: phone, email, address. • Customer transaction: quotes, orders, contracts, invoice information. • Project / proposal data: building address, floor plans, structural drawings, seismic assessment reports, material test results. • Financial: payment, banking, IBAN, and tax number data. • Visual and audio records: site photos, drone footage, occupational health and safety CCTV. • Professional and HR (employees only): diplomas, chamber registrations, social security records. • Transaction security: IP, log records, cookie data (essential + Google Analytics).
3. Purposes of Processing and Legal Bases
We process your data on the following legal bases: • Performance of a contract: preparing quotes, delivering projects, issuing invoices. • Compliance with legal obligations: Turkish Commercial Code, Tax Procedure Law, Occupational Health and Safety Law No. 6331, Zoning Law, Ministry of Environment, Urbanisation and Climate Change regulations. • Legitimate interests: improving service quality, site safety, defending against legal claims, business development. • Explicit consent: marketing communications, optional reference sharing.
4. Retention Periods
Your data is retained for the minimum periods required by applicable legislation: • Project and contract records: 10 years after project completion (Turkish Commercial Code Art. 82, Code of Obligations Art. 146 limitation period). • Tax and invoice records: 5 years (Tax Procedure Law Art. 253). • Work accident and occupational health & safety records: 50 years (Law No. 6331). • Employee personnel file: 10 years after termination. • Contact form records: a maximum of 2 years. • On-site CCTV: a maximum of 30 days. At the end of the retention period the data is deleted, destroyed, or anonymised.
5. Recipients and Disclosure
Your data may be shared only with the following parties for limited purposes: • Under legal obligations: the Ministry of Environment, Urbanisation and Climate Change; municipalities; building inspection bodies; the Social Security Institution; tax offices; courts. • Business partners: authorised consultants, law firms, certified public accountants, independent auditors, building materials laboratory test partners. • Subcontractors: contractors bound by confidentiality obligations. We never sell or transfer your data to third parties for marketing purposes.
6. International Transfers
Parts of our website and email infrastructure are operated by international service providers (e.g., Cloudflare, Google Workspace, Google Analytics). Such transfers are carried out under KVKK Art. 9 and GDPR Chapter V on the basis of adequate safeguards and Standard Contractual Clauses.
7. Data Security
We apply reasonable administrative and technical measures to protect personal data: access control, password policy, log records, up-to-date software stack, trained personnel, and granular authorisation. Nevertheless, we cannot guarantee that internet-based communications are 100% secure.
8. Your Rights
Under KVKK Art. 11 and GDPR Art. 15-22, you have the right to access, rectification, erasure, restriction of processing, portability, objection, and the right not to be subject to automated decisions. To exercise these rights, contact info@meva1muhendislik.com. We will respond within 30 days at the latest.
9. Right to Lodge a Complaint
In Turkey, you may lodge a complaint with the Personal Data Protection Authority (KVKK). If you are based in the EU, you may lodge a complaint with the supervisory authority of your country of residence.
10. Updates
This Privacy Policy may be revised in response to legislative changes or service updates. Material changes will be announced on our website.