Legal

GDPR Notice

Information notice under the EU General Data Protection Regulation (Regulation (EU) 2016/679).

Last updated: 2026-07-06

01. Data Controller

Devrim Tunçer acts as a data controller within the meaning of GDPR art. 4(7).

Data Controller: Devrim Tunçer (natural person / sole proprietor).

Address: Kestel Mahallesi, Üniversite Caddesi No: 86/3, Alanya / Antalya, Türkiye

Registered e-delivery (KEP): devrim.tuncer@hs01.kep.tr

E-mail: devrim@donedynamics.com

Web: https://donedynamics.com

Tax office / number: Alanya Vergi Dairesi — 8670898531

Data Protection Officer (DPO): not designated; all data protection requests are addressed directly to the controller.

02. Data Minimisation Statement

Done Dynamics' public website is a marketing presence. It performs measurement and — subject to your explicit consent — advertising measurement, disclosed transparently below.

The personal data processed through the website is limited to:

1. Strictly necessary cookies — session, security, language and your consent choice.

2. Analytics (consent-based) — Google Analytics 4; tags are loaded server-side (first-party) via Cloudflare Zaraz. Events (page views, phone/WhatsApp/email/map clicks, form submissions) may be exported at event level to Google BigQuery.

3. Advertising (explicit consent) — with your consent, Google Ads conversion measurement, remarketing and Customer Match are enabled. Ad personalization respects your choice; if you decline, ads are not personalized and advertising cookies do not run.

4. Contact channel content — the content of any e-mail or phone message, processed to answer your request; statutory retention under Turkish tax law (VUK art. 253) applies where invoices are issued.

We do not sell your personal data to third parties for marketing. Analytics and advertising are carried out only with your explicit consent and can be withdrawn at any time.

03. Categories of Data (Art. 30)

Contact content (e-mail/phone messages voluntarily sent by the visitor).

Online identifiers (strictly necessary cookies and, with consent, Google Analytics identifiers with anonymised IP).

Contract/transaction data where an invoice is issued.

04. Legal Bases (Art. 6)

(a) Consent — strictly limited to non-essential analytics cookies.

(b) Performance of a contract — responding to enquiries.

(c) Legal obligation — invoice/accounting retention.

(f) Legitimate interest — site security.

05. International Transfers (Chapter V)

For transfers outside the EU/EEA we rely on appropriate safeguards such as Standard Contractual Clauses (SCC) or Commission adequacy decisions.

06. Data Subject Rights (Art. 15-22)

Right of access, rectification, erasure (right to be forgotten), restriction, portability, objection and not to be subject to automated decision-making.

07. Right to Complain (Art. 77)

You have the right to lodge a complaint with the supervisory authority in your country. EU DPA list: edpb.europa.eu.

08. Breach Notification (Art. 33-34)

Personal data breaches are reported to the competent authority within 72 hours, and to affected individuals where the risk is high.

09. Contact

All GDPR-related requests: devrim@donedynamics.com