The following provisions govern how all services provided by innclude Ticket Distribution and Information Technologies Inc. (“innclude”) are to be used. These services include, without limitation, the innclude.com website, mobile applications, official social-media accounts, notification systems, and other digital channels (collectively, the “Services”).

innclude is a digital platform designed to help you discover city events, create your own, and socialize with your community. This Agreement clearly defines the rights, responsibilities, and safety principles applicable both to you and to all other users of the platform.

If any of the terms below are not acceptable to you, or if you do not wish to be bound by them, you may close your account and discontinue use of the Services. However, by continuing to access or use any part of the Services — including via our mobile app, website, or third-party integrations — you acknowledge and agree to be bound by this Agreement.

From time to time, innclude may amend these Terms as required by service improvements or legal obligations. Any changes will be published promptly on our website and mobile application, and you will be informed through the contact information you have provided to us (such as e-mail or SMS).

Your continued use of the Services after such amendments enter into force shall constitute your acceptance of the revised Terms.

This Agreement forms an integral whole together with the Community Guidelines, Privacy Policy / KVKK Disclosure, Cookie Policy, and, where applicable, the Distance Sales Terms.
These accompanying documents explain how your personal data are processed and define acceptable standards of conduct within the platform. All of them are easily accessible through our mobile application or website.

Article.2 Parties and Communication

This User Agreement (“Agreement”) is concluded between innclude Ticket Distribution and Information Technologies Inc. (“innclude”), acting as the service provider, and the individual user (“User”) who registers on the innclude platform and uses the Services for personal and non-commercial purposes.

innclude operates, manages, and maintains the website, mobile applications, and all other digital channels through which its Services are provided, ensuring that user experience remains secure, uninterrupted, and compliant with applicable legislation.

By accepting this Agreement and beginning to use the Services, the User acknowledges and agrees to be bound by all of its terms and conditions as of the date of first use.

Official contact details of innclude:
Company Name: innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş.
Mersis No: 0478121800000001
Address: Fenerbahçe Mah., İğrip Sok. No: 13/1, 34726 Kadıköy – Istanbul, Türkiye
E-mail: [email protected]
Data Controller: innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş.

innclude may contact the User via the above channels for purposes such as maintaining the Services, providing updates, fulfilling legal obligations, or communicating matters related to this Agreement, in accordance with applicable laws.

Likewise, the User may reach innclude directly regarding any inquiries or requests related to the Services or this Agreement by sending an e-mail to [email protected].

innclude reserves the right, in accordance with the laws of the Republic of Turkey, to transfer its Services to another legal entity or continue its operations through its affiliates or subsidiaries. In such an event, Users will be duly notified, and any User who does not wish to continue may close their account and terminate this Agreement without penalty.

Article.3 innclude User System

innclude is a digital platform that allows users to discover events in their city, create their own, and socialize with their community.
All registration, access, and usage processes are governed by specific rules to ensure user security and the smooth operation of the Services.

User registration on innclude is available only through the mobile application. During registration, the User is asked to provide only a mobile phone number, and verification is completed via SMS authentication (OTP).
Each User is automatically assigned a unique innclude ID, which serves purely as a technical identifier. This ID is not visible to the User, cannot be transferred, and may not be used for any commercial purpose.

Upon completing registration, each User obtains a public profile visible to all other innclude users. The User acknowledges that all information shared in their profile belongs to them and accepts full responsibility for keeping this information accurate, current, and truthful.
All usernames within innclude are unique and cannot be used by more than one person. Users may update their profile information at any time while their account remains active.

Once the application is in use, the User may create private or public events involving contacts stored in their mobile address book.
Users who do not grant contact access can still use the platform; however, they will not be able to view friends, create contact-based events, or participate in such events.

innclude does not share users’ phone numbers with any third parties. However, innclude cannot be held responsible for any personal disputes or damages that may arise between Users who can mutually view each other via contact synchronization.
A phone number is considered personal data, and innclude uses it solely for authentication and service delivery purposes.

innclude bears no liability for any personal communications, exchanges, or conflicts that may occur between Users who gain access to private events created by others.

innclude may inform its Users about events, campaigns, brand collaborations, and new services available in their city.
Such notifications may be delivered through in-app notifications, SMS, e-mail, or other communication channels shared by the User with innclude.
By completing registration, the User is deemed to have consented to receive these communications. The User may change notification preferences or opt out at any time via Profile Settings > Notification Preferences.

When an event is created, certain details such as the event’s address, location, date, or similar information may be shared to enable service delivery.
Such sharing is strictly limited to other Users participating in the event, potential brand sponsors, or business partners who hold verified organizer accounts.
innclude cannot be held responsible for any disputes or damages that may arise between Users, brands, or organizers following such information sharing.

innclude may generate demographic reports or statistical insights based on anonymized data, without disclosing any personal user information.
These analyses may be used internally or shared with third parties for service improvement or analytical purposes, provided that they do not violate user privacy.
All such activities are fully compliant with the innclude Privacy Policy and the KVKK (Turkish Personal Data Protection Law) and do not constitute any form of personal data breach.

To enhance the user experience, ensure secure operations, and keep Users informed about their activities, innclude may send notifications in two distinct categories:

1. Mandatory Service Notifications:
   These include transactional or technical messages required for service delivery, such as ticket confirmations, event approvals, payment details, QR codes, security alerts, or account updates.
   As these notifications are essential to the performance of the service, they are sent without the need for additional consent.
   
   

2. Informational and Marketing Communications:
   With the User’s explicit consent obtained during registration via the mobile app, innclude may send event recommendations, special campaigns, promotions, newsletters, or similar updates tailored to the User’s interests.
   The User may withdraw this consent at any time via the Notification Preferences menu in their profile or through the unsubscribe link included in each message.

Article.4 Account Eligibility

To create an account and use the Services on innclude, you must be at least 18 years of age.
By completing the registration process, you represent and warrant that you are 18 years old or older.

If it is later determined that this declaration is untrue, innclude reserves the right to suspend or terminate your account and restrict your access to the Services without prior notice.

The User acknowledges that their personal account is exclusively for their own use and agrees not to transfer, lease, lend, or use it for any commercial or third-party purpose.
It is strictly prohibited to create an account on behalf of another person or to reopen a previously closed account using a different phone number.

The User is solely responsible for the accuracy of the information displayed in their profile, as well as for all content shared and interactions made through their account.

In cases where the User acts contrary to the Terms of Use, the Community Guidelines, or any other policies determined by innclude, the User’s account may be temporarily suspended or permanently terminated.

The User hereby acknowledges and agrees in advance that they cannot claim any rights, refunds, or compensation resulting from the suspension or termination of their account.

Article.5 Service Modifications and Implementation

innclude may regularly implement updates and improvements on the platform to continuously enhance the user experience, strengthen system security, and improve overall service quality.

Within this scope, innclude may introduce new features or temporarily or permanently deactivate certain functionalities that are no longer used or have become technically obsolete.
Such changes may be made without prior notice, provided that they do not materially affect users’ fundamental rights or core Services.

However, in cases involving the termination of the entire service, changes to the scope of paid features, temporary suspension of access, or the emergence of security risks, all Users will be notified in advance of the effective date.

innclude shall not be held liable for any direct or indirect damages that may result from temporary access interruptions, technical malfunctions, or failures of third-party service providers during maintenance or development processes.
This includes, but is not limited to, incidents caused by force majeure, energy or communication outages, infrastructure or server failures, natural disasters, regulatory actions, or other circumstances beyond innclude’s reasonable control.

innclude protects user data and content through reasonable administrative and technical security measures.
However, in the event of system failures, connection issues, or user-related errors resulting in data loss, Users acknowledge and agree that they are solely responsible for backing up and preserving their own content.

All such updates and modifications are intended to ensure that the Services remain secure, up-to-date, and sustainable.
While working to improve the platform continuously, innclude strives to keep Users informed and to minimize any potential disruptions.

Article.6 User Responsibilities

• The User agrees to use all Services provided through the innclude mobile application and website solely for personal purposes and in full compliance with this Agreement, the Community Guidelines, and the Privacy Policy.

• The User is solely responsible for all actions performed through their account — including events created, visuals, texts, locations, descriptions, comments, and any other content shared on the platform.

• The User acknowledges that all content, designs, software, trademarks, logos, symbols, texts, and visuals available on the innclude platform are the intellectual property of innclude Ticket Distribution and Information Technologies Inc.
  These materials may not be reproduced, copied, distributed, altered, sold, or used for any commercial purpose without prior written consent from innclude.

• The name “innclude,” its logo, or any part of its visual identity may not be used in event visuals, posters, media publications, or any printed or digital materials without innclude’s written approval.
  The User may not make or imply any statement suggesting that innclude endorses, approves, or is affiliated with them unless explicitly authorized.

• The User shall not use their account or the platform for illegal, misleading, inappropriate, or unethical purposes or in violation of the Community Guidelines.
  To protect system integrity and user safety, innclude reserves the right to technically monitor, log, and intervene in all user activities when deemed necessary.

• A personal account may not be used for commercial activity.
  Users who wish to act on behalf of a brand, venue, agency, or public institution must create a Business Account and accept the applicable Business Agreement and Distance Sales Agreement.

• innclude does not guarantee the accuracy of information, visuals, descriptions, addresses, locations, or guest lists included in user-generated content and cannot be held responsible for any damages arising from inaccurate or misleading information.

• The User undertakes to preserve the technical integrity of the platform.
  Any attempt to interfere with the system using bots, scripts, indexing tools, proxies, or other methods; modify the interface; access the database; develop third-party applications; or conduct cyberattacks is strictly prohibited.
  In such cases, innclude reserves the right to immediately terminate the account and pursue legal action.

• The User may not sell tickets through their personal account but may include links to legitimate third-party ticket sales in event descriptions.

• innclude may send QR codes to users for event entry control purposes.
  The User agrees not to copy, sell, transfer, or misuse any QR code or ticket assigned to them.
  Any misuse will result in permanent account termination and denial of entry to the event.

• innclude acts solely as an intermediary platform in ticket sales.
  Responsibility for the occurrence, postponement, cancellation, content, or quality of events rests entirely with the event organizer.
  innclude cannot be held liable for any damages resulting from the actions or omissions of organizers or third parties.

• All users, whether registered or not, who purchase tickets via the innclude website or mobile application are subject to this Agreement.
  The User is responsible for the accuracy of their name, surname, e-mail, and phone number submitted during purchase.

• Tickets purchased through innclude are personal and non-transferable.
  Tickets or QR codes may not be sold, transferred, or shared with third parties. Such actions will render the ticket invalid, and no refund rights shall apply.

• innclude may, through its Business Account services, send SMS or e-mail notifications and QR codes to invitees on behalf of organizers.
  The content and accuracy of such messages are the responsibility of the respective organizer.
  Individuals who receive such messages without prior consent may report the issue to [email protected].

• The User acknowledges that certain app or website features may require access to their contacts, location, or photo library, and that granting such permissions is entirely voluntary.
  Refusing these permissions may limit access to some features but does not affect general platform use.

• The User understands that their registered phone number is linked to their account identity.
  If the number changes, the User must use the “Change Phone Number” feature within the application or website.
  innclude cannot be held responsible for data loss resulting from a number change.

• If content created by the User violates the Community Guidelines, Privacy Policy, or this Agreement, such content may be edited, suspended, or permanently removed by innclude moderators.
  Users encountering inappropriate content are obligated to report it through the “Report” feature.

• innclude may, with the User’s consent, request access to the user’s contacts, location, photo albums, or similar information solely to ensure service functionality.
  These permissions are granted voluntarily and may be revoked at any time.

• The User agrees not to record, share, or misuse other users’ content, comments, or private communications within events they organize or attend.
  Such actions constitute both a violation of this Agreement and a breach of personal data protection laws.

• innclude may use user-generated content — excluding personal data — in its advertising, promotional, or marketing materials.
  The User agrees that such content may be shared on innclude’s official social media accounts and promotional platforms.

• The User waives any right to claim compensation from innclude in cases where their content is used or shared by third parties without authorization.

• innclude is not responsible for the accuracy of addresses, locations, or other information displayed on the platform.
  The User is solely responsible for any safety, physical harm, or similar risks encountered during event participation.

• innclude accepts no liability for damages arising from other participants taking screenshots, recording, or sharing content from private events.
  The User acknowledges that innclude may host 18+ events and that innclude bears no responsibility if such content is viewed incorrectly or without authorization.

• The User may not make any claims regarding popularity scores, ranking systems, or similar algorithmic evaluations displayed within the platform.

Article.7 innclude's Obligations

• innclude continuously improves its Services to provide users with a safe, seamless, and innovative experience.
  In doing so, innclude may temporarily or permanently suspend, update, restructure, or introduce paid features to all or parts of the platform.
  Users will be informed of such changes whenever reasonably possible; however, innclude cannot be held liable for any indirect losses that may arise from service suspension, modification, or discontinuation.

• If innclude detects any extraordinary circumstance affecting user security or financial transactions, it reserves the right to temporarily suspend or disable online payment systems.
  These actions are taken solely to protect the system and users, and innclude bears no liability for interruptions or losses that may occur during these precautionary processes.

• innclude may temporarily or permanently suspend or close accounts engaged in spam, advertising abuse, fraud, misuse, or activities that endanger system security.
  If a User’s actions violate this Agreement, the Community Guidelines, or applicable laws, innclude may terminate all access — including Premium Membership — without refund or compensation.

• innclude reserves the right to modify, hide, edit, add, restrict visibility, or completely remove any content, events, or visuals on the platform at any time, without prior notice.
  These actions are performed to preserve platform integrity and user safety.

• innclude exercises the highest degree of care in ensuring technical security, data privacy, and user experience.
  However, it cannot be held responsible for losses or interruptions caused by technical malfunctions, third-party service failures, force majeure events, or internet infrastructure issues beyond its reasonable control.

• innclude reserves the right to periodically back up or delete data on its systems when necessary, without any liability for data loss that may result from such operations.

• innclude retains ownership and all intellectual property rights to any information, designs, software, visuals, documents, or graphic materials it develops or lawfully acquires.
  Unauthorized use, reproduction, or distribution of these materials is strictly prohibited, and innclude reserves the right to pursue all legal remedies in case of infringement.

• innclude’s QR Code technology is a unique system created specifically for each event, designed to refresh periodically for security.
  If innclude determines that a QR Code has been misused or accessed without authorization, it reserves the right to suspend, restrict, or permanently terminate the related user’s access.

• innclude may use public event visuals, promotional videos, or content — excluding any personal data — as advertising or promotional material in digital media, outdoor spaces, or social platforms.
  By using the Services, the User grants prior consent for the use of such public event materials for promotional purposes.

• innclude does not use private (hidden or invitation-only) events for promotional or advertising purposes.
  Access to such events is strictly limited to the inviting users and their guests.
  However, pursuant to applicable national laws, innclude may disclose relevant user or event information only to competent authorities upon an official judicial or law enforcement request.

• innclude is not liable for any damages arising from event content, location, date changes, or errors caused by organizers.
  The organizer or business account holder is solely responsible for the accuracy of the information they provide.

• innclude is not responsible for the content, accuracy, or security of links, e-mails, or third-party ticketing sites shared by business accounts.
  Users are responsible for performing their own security checks before accessing such links.

• Within its Services, innclude may display advertisements or promotions belonging to its affiliates or business partners.
  The content and accuracy of such advertisements remain the responsibility of the respective advertisers.

• If the Services are misused or if illegal activities occur, innclude may report the matter to judicial or law enforcement authorities under the applicable laws of the relevant country.
  innclude may submit evidence to such authorities and reserves the right to seek damages through legal means for any harm suffered.

• innclude commits to continuously improving its Services, maintaining system integrity, protecting user privacy, and upholding community standards.
  While doing so, innclude exercises due care to safeguard user data and enhance platform experience, but makes no warranty regarding uninterrupted operation, error-free performance, or fitness for a particular purpose.

Article.8 Payment Terms

innclude may offer certain features and privileges to its users on a paid basis under the Premium Membership program.
Premium Membership can be obtained through in-app purchases, payments made via the website, or via future digital payment solutions such as the innclude Wallet and other similar systems.

Payments are processed depending on the platform used — by credit/debit card, mobile payment, Google Play, App Store, or via innclude’s authorized payment service providers.
Once you confirm a purchase, your Premium features are activated immediately, and the related service is considered fully performed at the time of confirmation.

Premium Membership remains valid for the duration of the subscription period.
If auto-renewal is enabled, the subscription will renew automatically at the end of the term under the same conditions, and the corresponding fee will be charged to your registered payment method.
You may disable auto-renewal at any time in your Google Play or App Store account settings.

If you cancel your subscription before the end of its active term, your Premium privileges will remain valid until the subscription expires; however, no refunds will be issued for the remaining period.
Rights and benefits obtained through Premium Membership cannot be transferred, sold, or shared with third parties.

innclude reserves the right to update its pricing, campaigns, and membership models for in-app purchases and Premium Services over time.
Any such changes will be announced in advance and will apply prospectively — existing subscriptions will not be affected retroactively.

Paid services belonging to Business Accounts (including but not limited to advertising, SMS, ticketing, bulk invitations, wallet transactions, etc.) are processed independently from Premium Membership, through innclude Business systems and secured by 3D Secure infrastructure.
These payments are governed by the terms outlined in the Business Agreement.

innclude may cooperate with reliable third-party payment providers for the processing of payments.
innclude is not responsible for delays, interruptions, or technical issues caused by such third-party systems or service disruptions beyond its control.

By completing a payment transaction, the User acknowledges and accepts:

• The applicable terms and conditions of the relevant platform (Google Play, App Store, website, etc.), and

• The specific terms governing innclude’s Premium Services.
  
  

Refund or withdrawal requests are subject to the refund policies of the respective third-party platforms (Google Play or App Store) and must be initiated through those platforms.
For payments made directly through the innclude website, the right of withdrawal does not apply, as the digital service is performed instantly upon user confirmation.
However, refund requests arising from technical errors (such as double billing or incomplete activation) may be submitted via [email protected] and will be reviewed individually.

innclude implements all necessary technical and administrative measures to ensure the security of user data during payment processes.
Nevertheless, in cases of delays, cancellations, or duplicate charges resulting from payment system errors or user-related issues, liability rests with the respective payment service provider.

For all transactions carried out under this Article, innclude complies with applicable tax laws.
All payment documents and invoices are issued electronically and delivered to the User accordingly.

Article.9 Invoicing, Taxation, and Refund Conditions

For payments made by Users for ticket purchases, Premium Membership, or other paid services, innclude issues invoices only for its own service fee.
The invoice for the event ticket price itself is the sole responsibility of the event organizer and/or the verified business account holder.
The User is responsible for requesting an event-related invoice directly from the relevant organizer.

Invoices issued by innclude cover only the service fee (such as processing, SMS, communication, security, or system-related services) and are delivered to the User electronically (as e-invoice or e-archive) via e-mail following the completion of payment.
The User is solely responsible for the accuracy of the billing information they provide.

Each ticket transaction consists of two components:

1. Event Price – The amount belonging to the organizer. innclude acts solely as an intermediary in its collection.

2. Service Fee – The fee charged by innclude in return for providing its digital infrastructure, transaction processing, security, and communication services.

innclude functions exclusively as a technical service provider and payment intermediary in the ticket sales process.
Accordingly, in cases where an event is canceled, postponed, altered, or fails to take place due to organizer-related reasons, the refund obligation lies solely with the organizer.
Users must submit such refund requests directly to the individual or organization that organized the event.

innclude will evaluate refund requests only in the following exceptional circumstances:

• If the payment has been charged multiple times due to a system or technical error, or

• If the User completed payment, but the service could not be technically delivered.

In such cases, the User must submit a written refund request to [email protected].
Following technical verification, innclude will process the refund within 10 (ten) business days.
innclude is not responsible for delays arising from organizer or third-party systems.

All refund transactions are carried out through the original payment channel (e.g., bank, credit card, App Store, Google Play, or other licensed payment institution).
innclude does not issue direct cash refunds to user or alternative accounts.

By completing a payment, the User acknowledges that the purchased service is instantly delivered in digital form and therefore, under the Turkish Regulation on Consumer Right of Withdrawal, the right of withdrawal does not apply.
However, refunds may be processed exceptionally in the event of technical errors or system malfunctions as described above.

innclude fully complies with Turkish tax legislation in all invoicing procedures.
All service fees are displayed inclusive of VAT.
In cases where an invoice cannot be automatically issued, the User may request an electronic copy by contacting [email protected].

Article.10 Third-Party Services

innclude may provide certain parts of its Services through reliable third-party service providers, business partners, or technology infrastructure companies.
These may include payment systems, SMS and e-mail delivery services, advertising platforms, social-media tools, cloud hosting, analytics, and performance or statistical providers.

innclude exercises the highest level of care in selecting and supervising such third-party partners; however, it cannot be held liable for any direct or indirect damages resulting from technical failures, service interruptions, or content originating from these external providers.

When interacting with such third-party services, the User acknowledges that they are subject to the terms of use and privacy policies of the respective provider.

Through its website, mobile application, or notifications, innclude may display or provide access to third-party links, campaigns, promotions, or advertisements.
These links are offered solely for convenience and informational purposes.
innclude makes no representations or warranties regarding the accuracy, validity, legality, or security of the linked content, and accessing such links is entirely at the User’s own risk.

To improve system infrastructure and optimize performance during campaigns or event operations, innclude may share limited, anonymized, and non-identifiable statistical data with third-party service providers.
All such data processing is carried out in full compliance with the Turkish Personal Data Protection Law (KVKK) and the EU General Data Protection Regulation (GDPR).

innclude does not share, sell, or rent any personal data to third parties for commercial purposes without the explicit consent of the User.

innclude is not responsible for any actions, contractual breaches, or failures of third-party providers to meet their legal obligations.
Any disputes arising from the use of such services shall be resolved directly between the User and the relevant third party.

innclude reserves the right to replace, discontinue, or modify any third-party service integration at its sole discretion, in order to maintain service continuity or adopt better alternatives.
Such changes may be implemented without prior notice, provided that they do not materially affect the core functionality of the Services.

Article.11 Right of Withdrawal, Cancellation, Refund, and Limitation of Liability

innclude performs all transactions instantly in digital form to ensure that Users receive fast, secure, and uninterrupted services.
Therefore, purchases such as ticket sales, Premium Membership, in-app purchases, or other digital services are deemed fully performed upon user confirmation.
By confirming a transaction, the User explicitly accepts that the service will be rendered immediately and acknowledges that, under the Turkish Regulation on the Right of Withdrawal of Consumers, they waive the right of withdrawal.

In cases of event cancellation, postponement, venue change, or schedule modification, all refund, replacement, or compensation processes are the sole responsibility of the event organizer or the verified business account.
innclude acts only as an intermediary platform and assumes no direct, indirect, or punitive liability for any changes, cancellations, or postponements initiated by the organizer.
innclude bears no legal, financial, or criminal responsibility in such circumstances.

Refund and compensation requests must be made directly to the organizer.
innclude’s refund obligations are strictly limited to its own service fees, and only apply in the following cases:

• A duplicate charge resulting from a system or technical error, or

• A completed payment where the service could not be technically delivered.

In such cases, the User must contact [email protected], and innclude will review and finalize the refund within ten (10) business days.
All refunds are processed via the original payment channel (e.g., bank, credit card, App Store, Google Play, or licensed payment institution).
innclude does not provide cash refunds or payments through alternative methods.

Even if Premium Membership or subscription-based services are canceled, the user retains access for the remainder of the active term; no refund is issued for the remaining period.
Automatic renewals can be disabled through the App Store or Google Play settings.
For payments made through these platforms, their respective refund policies shall apply.

innclude exercises the highest diligence to ensure continuity and security of its services; however, it cannot be held liable for loss of income, data, reputation, or opportunity arising from technical failures, software errors, maintenance operations, network interruptions, third-party service failures, or force majeure events.

innclude shall not be liable for data loss, delays, access issues, or financial damages resulting from technical malfunctions, infrastructure problems, force majeure, third-party service errors, or internet connectivity issues.
While innclude takes all reasonable measures to ensure service reliability, the User acknowledges that the company has no absolute control over internet infrastructure or external service providers.

The User is solely responsible for any personal, physical, or financial damages that may occur during events they organize or attend through innclude.
innclude does not assume responsibility for venue conditions, participant safety, event quality, or any risks arising from event content.

innclude is not a party to any dispute arising from incorrect information, misleading event details, fake identities, or false statements provided by users or organizers.
In such cases, all claims must be directed to the relevant individual or organization.

Under no circumstances shall innclude be liable for any indirect, incidental, special, punitive, or consequential damages, including but not limited to data loss, revenue loss, reputational harm, or unmet personal expectations.
By using the platform, the User explicitly agrees to this limitation of liability.

Article.12 Personal Data

innclude is fully committed to ensuring the highest level of security for the personal data of its users.

By accepting the Terms of Use, Privacy Policy, and Cookie Policy, the User is deemed to have explicitly consented to the processing of their personal data within the scope of these agreements.

During registration or while using the Services, the User may provide innclude with personal data such as name, surname, phone number, e-mail address, location, contact list, and device information.
The User expressly consents to the processing of such data for purposes including service delivery, security, technical support, communication, identity verification, and user experience improvement.

innclude may share personal data only to the extent necessary for the fulfillment of its Services — with business partners, subcontractors, or third-party service providers (such as payment processors, SMS/email gateways, or analytics providers).
Such sharing is limited to essential data fields required for service execution; no personal data is sold or transferred for commercial marketing purposes without explicit user consent.

innclude may operate its systems through secure servers located inside or outside Turkey.
Accordingly, the transfer of personal data abroad is carried out in full compliance with Article 9 of the Turkish Personal Data Protection Law (KVKK) and the EU General Data Protection Regulation (GDPR), with the explicit consent of the User.
By using the Services, the User is deemed to have consented to such international data transfers.

innclude and its affiliates may process anonymized user data for system security, fraud prevention, marketing analytics, statistical reporting, and service improvement.
Anonymized data consists solely of non-identifiable information and is not considered personal data.

The User is responsible for the accuracy and completeness of the information provided. innclude shall not be held liable for any damages arising from false, incomplete, or misleading information.

In accordance with Article 11 of the KVKK, the User has the following rights by applying to innclude:

• To learn whether their personal data has been processed,

• To request information if it has been processed,

• To learn the purpose of processing and whether it is used in accordance with that purpose,

• To know the third parties to whom data has been transferred,

• To request correction of incomplete or inaccurate data,

• To request deletion or destruction of data under the applicable law,

• To request that these operations be notified to third parties,

• To object to results arising from automated data analysis,

• To request compensation for damages in case of unlawful processing.

To exercise these rights, the User may submit a written request titled “Personal Data Request” to [email protected].
innclude will evaluate and respond to such requests within thirty (30) days.

innclude stores user data only for as long as required by law or for the purpose for which it was collected.
Once the retention period expires or the legal basis ceases to exist, the data is securely deleted or anonymized.

innclude implements technical, administrative, and physical security measures to protect user data.
However, it shall not be held liable for indirect damages arising from internet-related risks, force majeure events, or third-party breaches beyond its reasonable control.

innclude is not the data controller for personal data included in guest lists created by business or organizer accounts.
The responsibility for obtaining consent and managing such data rests solely with the inviting organization or business.
innclude acts solely as a data processor, limited to the technical transmission of this information (e.g., SMS, e-mail, QR code delivery) and related verification processes.

innclude bears no liability for any damages arising from the content of guest lists or the failure to obtain consent from invited individuals.

Article.13 Data Retention and Evidential Value

innclude stores all data associated with user accounts — including messages, comments, event history, payment and transaction records, system logs, and similar information — in compliance with the Privacy Policy and the Turkish Personal Data Protection Law (KVKK).

Such data is retained solely for the following purposes:

• Performance of this User Agreement,

• Continuity of Services,

• Resolution of potential disputes,

• Fulfillment of legal obligations.

innclude applies appropriate technical and administrative measures to ensure the confidentiality and integrity of user data.
Access to such data is restricted to authorized personnel and limited strictly to their duties; data is not shared with unauthorized third parties under any circumstances.

Pursuant to the laws of the Republic of Türkiye, innclude may disclose user data — only within the legal framework and to the extent necessary — to courts, prosecutors, the Information and Communication Technologies Authority (BTK), the Personal Data Protection Authority (KVKK), or other competent public authorities when officially requested.
Outside these cases, no personal information or contact details are shared with third parties without the explicit consent of the User.

When a User closes their account or ceases using the Services, innclude may retain relevant data for the duration prescribed by applicable legislation.
This retention period is determined so that the data may serve as evidence in potential disputes, audits, or legal obligations.
At the end of the retention period, all data is securely anonymized or destroyed.

Data recorded within innclude’s systems constitutes legally valid evidence in any dispute that may arise between the parties.
The User acknowledges that digital records within innclude’s infrastructure — including transaction logs, notification records, payment confirmations, and similar data — are considered official evidence and shall be deemed valid unless proven otherwise.

innclude stores user data in compliance with international security standards such as ISO/IEC 27001.
Nevertheless, innclude cannot be held liable for indirect damages resulting from force majeure, third-party breaches, cyberattacks, or issues related to internet infrastructure that are beyond its reasonable control.

Unless legally required to retain them, innclude anonymizes or securely deletes all data upon the expiration of the retention period.

During event entry verification, innclude shares only the QR code validation result (“valid/invalid”) with authorized parties.
Access to QR code verification data is strictly limited to authorized representatives of the relevant organizer or business account and remains valid only for the duration of the event.
innclude shall not be held liable for any misuse, unauthorized access, or disclosure of such information by third parties.

Article.14 Entry into Force

This User Agreement enters into force the moment the User accesses the innclude website, downloads the mobile application, creates an account, or uses any of the Services offered by innclude.

By accessing the platform or using the Services, the User is deemed to have read, understood, and accepted all provisions and conditions contained in this Agreement.

innclude reserves the right to amend or update this Agreement in accordance with applicable legislation, technological developments, or changes in its service structure.
All updates are published on innclude.com with a clearly stated version number and effective date, and/or communicated to Users through notifications within the mobile application.

By continuing to use the Services after the publication of such changes, the User is deemed to have accepted the updated terms and conditions.
If the User does not agree with the revised terms, they may terminate their account and cease using the Services.

innclude endeavors to notify Users of contractual updates in advance whenever possible; however, it reserves the right to implement urgent legal or technical amendments without prior notice when necessary.

This Agreement remains in effect for an indefinite duration between the parties.
If the User closes their account or if innclude terminates the Service, this Agreement becomes invalid only for that specific account, without affecting any outstanding rights or obligations that have already arisen.

Article.15 Termination

The User may terminate this Agreement unilaterally at any time by closing their account through the innclude mobile application or website.
Once the account is closed, the User’s right to access the platform and use the Services immediately ends; however, any obligations, payments, or liabilities accrued prior to the termination date shall remain in effect.

innclude reserves the right to suspend, restrict, or immediately terminate a user’s account in any of the following circumstances:

• If the User violates any provisions of this Agreement, the Community Guidelines, or the Privacy Policy,

• If the User engages in actions that threaten innclude’s infrastructure, brand reputation, or the safety of other users,

• If the User provides false, incomplete, or misleading information,

• If the User engages in or facilitates fraud, forgery, unauthorized access, or similar illegal activities,

• If the User misuses or compromises innclude’s technical infrastructure or system security.

In the event of termination, Users who have purchased Premium Memberships, tickets, or other paid services may continue to use their acquired rights until the termination date; however, no refunds will be provided for any remaining time or service fees.

Following termination, innclude may permanently delete or anonymize the relevant account to ensure system security and protect user privacy.
Termination takes effect upon either the User’s explicit request or innclude’s formal notification, as applicable.

Users are responsible for backing up any data (such as tickets, attended events, past transactions, or invoice information) stored on their accounts before initiating termination.
innclude shall not be held liable for any data loss occurring after account deletion.

After termination, innclude may:

• Retain user data for the period required by applicable law,

• Share such data with judicial or administrative authorities when legally necessary,

• Use anonymized system records for statistical or analytical purposes.

Termination does not nullify or affect rights or receivables already accrued between the parties.
Both parties remain mutually responsible for all obligations and liabilities arising before termination.

If innclude decides to discontinue the platform or modify its service model, it will provide reasonable prior notice to all Users.
In such cases, innclude will take the necessary steps to protect the Users’ existing rights and ensure an orderly transition.

Article.16 Governing Law and Dispute Resolution

This Agreement shall be governed by and construed in accordance with the laws of the Republic of Türkiye.

In the event of any dispute arising from or in connection with this Agreement, the parties shall first seek to resolve the matter amicably and in good faith.

The parties acknowledge and agree that innclude’s records, digital logs, and electronic data shall constitute valid and binding evidence in any dispute resolution process.

If an amicable resolution cannot be reached, the Courts and Enforcement Offices of İstanbul (Anadolu) shall have exclusive jurisdiction to settle all disputes arising from this Agreement.

The parties further agree that electronic communications, e-mails, and digital records shall be deemed valid and admissible written evidence under applicable procedural laws.

These provisions also apply to foreign users and organizers; subject to international private law principles, Turkish courts shall have exclusive jurisdiction over all disputes.

Article.17 Intellectual Property Rights and Brand Usage

The innclude brand, logo, trade name, website, software code, mobile applications, design elements, content structure, databases, texts, images, icons, and all related digital assets are the exclusive property of innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş.

These assets are protected under the Turkish Law on Intellectual and Artistic Works (Fikir ve Sanat Eserleri Kanunu), the Turkish Commercial Code, and the Industrial Property Law, as well as applicable international intellectual property treaties.

Without prior written authorization from innclude, none of these assets — in whole or in part — may be copied, reproduced, distributed, modified, published, used for commercial purposes, or transferred to third parties in any form.

The innclude brand and logo may only be used under the following conditions:

• By registered business accounts or organizers on the innclude platform,

• Within event posters, sponsorship materials, digital campaigns, or promotional content,

• And strictly in accordance with innclude’s official brand guidelines or written approval.

Any use of the innclude brand or logo outside these conditions, or in a misleading or damaging manner, shall constitute a violation of trademark and brand rights.
In such cases, innclude reserves the right to initiate legal action, demand cessation of unauthorized use, and seek compensation for material and moral damages from the responsible parties.

innclude may publish an official Brand Usage Guide to ensure that its logo and brand are used correctly, consistently, and aesthetically in all partnership, campaign, and sponsorship materials.
All Users and business accounts are obliged to comply with this guide when using innclude’s trademarks or visual assets.

Article.1 Purpose and Scope

This Privacy Policy (“Policy”) has been prepared by innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş. (“innclude”) to clearly explain how we protect your privacy and how we process your personal data.

For us, trust is more than just a word — it’s the foundation of everything we build across our platform.
That’s why we handle your personal data in full compliance with both Turkish legislation and international privacy standards.

This Policy applies to all digital services provided by innclude, including but not limited to:
the innclude.com website, mobile applications, event ticketing infrastructure, organizer panel, email and notification systems, social media accounts, and any other online channels operated by innclude.

This Privacy Policy is an integral part of the Terms of Use.
By using innclude, you acknowledge and agree to both this Policy and the Terms of Use.

Our goal is to explain transparently what information we collect, why we collect it, how long we store it, and with whom and under what conditions we share it.
We use your data solely to provide the service, keep you informed, ensure security, and improve your overall experience — never for any other purpose.

You can always access the most up-to-date version of this Policy at innclude.com/en/legal#terms-of-use.
If we make any changes, we’ll notify you through in-app messages, email, or SMS.

Article.2 Definitions

In this section, we’d like to briefly and clearly explain a few key concepts you’ll often see throughout this Privacy Policy — so you’ll never have any doubts about what information we collect or how it’s processed.

innclude refers to innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş., the company responsible for the processing and protection of your personal data as the Data Controller.

User, meaning you, refers to any individual who uses our website, mobile application, or other digital services — including anyone who purchases tickets, creates events, joins as an invitee, or interacts with the platform in any way.

Personal Data means any information that directly or indirectly identifies you — such as your name, surname, phone number, email address, location, IP address, device information, QR code, or ticket history.

Business Account / Organizer refers to corporate users who create events, manage guest lists, or sell tickets through innclude.
In certain cases, these accounts act as Data Processors, meaning they process your personal data only on behalf of and under the instruction of innclude.

Explicit Consent means your freely given and informed approval regarding a specific matter.
You grant this consent when you use the application, register an account, or check consent boxes during your interactions with our services.

Anonymization means altering your personal data in such a way that it can no longer identify you.
We apply this method for purposes such as security, analytics, and reporting.

In short:
We don’t secretly collect, sell, or share your information without permission.
At innclude, we are always transparent about what we collect and why we collect it.
For us, privacy isn’t just a legal requirement — it’s a commitment built on trust.

Article.3 Data We Collect and How We Use it

At innclude, we collect certain information to provide you with a safer, faster, and more personalized experience.
We always stay within legal boundaries and only gather the data that is truly necessary.

We can summarize the data we collect under five main categories:

1. Account Information: When you sign up, you share your name, surname, phone number, and optionally your email address. We use this information to create and verify your account, associate you with events, and contact you when necessary.

2. Event and Participation Data: When you create, join, or purchase tickets for an event, details such as the event name, date, location, ticket type, QR code, and payment information are recorded. This data is necessary to provide ticket access, event entry, organizer notifications, and proper handling of refunds or cancellations.

3. Technical Data: When using the app or website, your device model, operating system, IP address, browser type, location data (if permitted), and in-app activity logs may be automatically collected. This information helps us ensure system security, detect errors, and enhance user experience.

4. Contacts, Invitations, and Social Interactions: If you grant access to your contacts, you can connect with them, create private or public events, and send invitations. This access is entirely based on your consent — if you choose not to grant permission, you can still use the app, but these features will be unavailable.

5. Communication and Notification Data: You may receive emails, SMS messages, or push notifications about event reminders, promotions, and system updates. These notifications are divided into two categories:

• Mandatory notifications — essential for the service to function, such as security alerts or transaction confirmations.

• Optional notifications — such as event suggestions, campaigns, or announcements, which you can disable at any time.

We use the data we collect for the following purposes:

• To verify your identity and secure your account,

• To enable you to create, join, or purchase tickets for events,

• To manage payments and invoicing processes,

• To ensure security and prevent fraud,

• To analyze technical errors and improve system stability,

• To personalize your experience (e.g., show events relevant to your city),

• To fulfill our legal obligations,

• And, with your explicit consent, to inform you about campaigns or new features.

We never use your personal data for purposes other than those stated, nor do we sell or share it with third parties.
Your information is used solely for service delivery and security.

In short, innclude collects the minimum data necessary and provides maximum protection.
You’re always in control — you can update what data you share and what notifications you receive at any time.

Additionally, for technical and security purposes, innclude automatically collects certain technical data such as:
IP address, device model, operating system version, app crash logs, advertising identifiers (IDFA/GAID), QR code usage records, and login date–time information.

To ensure full functionality, the app may also request permissions for contacts, location, camera, or photo gallery access — all of which are activated only with your consent and can be withdrawn at any time through your device settings.

This data is never used for commercial purposes and is processed solely for system security, error analysis, and performance improvement.

Article.4 Legal Grounds and Conditions for Data Processing

At innclude, we process your personal data only for clear, legitimate, and lawful purposes.
Each piece of data is stored only as long as necessary to provide our services and ensure system security.

The legal bases we rely on when processing your data are as follows:

1. Necessity for the performance of a contract:
When you create an innclude account, purchase a ticket, or join an event, we process certain data as required to fulfill our digital agreement with you.
For example, generating your QR code, sending your ticket, or issuing your invoice fall under this category.

2. Compliance with legal obligations:
We are required by law to retain certain information for tax, accounting, invoicing, auditing, or official authority purposes.
Such data is shared only with authorized institutions within the framework of legal obligations.

3. Explicit consent:
Certain processing activities require your explicit consent.
For instance, we can only send you event recommendations or promotional notifications if you’ve selected “I want to receive notifications.”
You can withdraw this consent anytime through your profile settings.

4. Legitimate interests:
We may process your data to improve our services, prevent fraud, ensure system security, or enhance user experience.
In such cases, we always conduct a balancing test to ensure that our legitimate interests do not override your fundamental rights or privacy.

5. Necessity for the establishment, exercise, or defense of legal claims:
In the event of a dispute, we may retain certain data to protect our rights, detect fraudulent activity, or provide evidence in legal proceedings.

6. Data anonymization:
At times, we may anonymize your data so that it can no longer identify you.
Such anonymized data is used solely for statistics, analytics, or system performance measurements and is not considered personal data.

While processing your information, we strictly adhere to the following principles:

• Data minimization: We collect only what’s necessary.

• Transparency: We clearly inform you about what we do with your data.

• Accuracy and timeliness: We keep your data up to date and correct.

• Storage limitation: We never retain data longer than necessary.

We process your information never secretly, always lawfully.
We do not collect, share, or retain any data arbitrarily.
Your trust is not just a requirement — it’s our responsibility.

Article.5 Data Retention and Security

At innclude, we retain your personal data only for as long as necessary.
This duration is determined by the need to provide our services, fulfill legal obligations, and protect our rights in case of potential disputes.

The retention period varies depending on the purpose of processing:

• Account information is stored as long as your account remains active. Once you delete your account and all mandatory legal periods expire, it is securely deleted or anonymized.

• Ticket, payment, and invoice data are retained for 10 years, in compliance with tax and accounting regulations.

• Event, QR code, and participation data are kept for up to 2 years after the event ends, then anonymized.

• Technical log data (such as IP address, transaction time, session records) are stored for 1 year in accordance with Turkish Law No. 5651.

• Notification preferences, consent forms, and opt-in records are stored for 3 years from the last date of processing.

To protect your data, we apply a combination of technical and administrative safeguards, including:

• Encrypted data storage on secure servers,

• Restricted access limited only to authorized personnel,
  Use of SSL/TLS encryption, firewalls, access logs, and regular penetration testing,

• Data transfers to third parties conducted only via secure communication channels (HTTPS, VPN, SFTP, etc.),

• Continuous staff training on KVKK (Turkish Data Protection Law) compliance and privacy principles.

While data security is our top priority, we remind users that they also share responsibility for protecting their own accounts.
We recommend not sharing your verification codes, passwords, or device access with others, avoiding logins from untrusted devices, and contacting us immediately if you notice any suspicious activity.

When the retention period ends or the purpose of processing is no longer valid, all personal data is deleted, anonymized, or securely destroyed in accordance with the innclude Personal Data Retention and Destruction Policy.

Article.6 Data Sharing and Transfers (Domestic and International)

At innclude, we share personal data only to provide our services, ensure system security, meet legal obligations, and improve user experience.
Data sharing is never arbitrary — it is always limited, necessary, and controlled.

We may share your data with the following parties:

1. Business Partners and Service Providers:
Trusted companies we work with to operate core systems such as ticketing infrastructure, payment gateways, SMS/email delivery, cloud storage, security platforms, and analytics services.
These partners receive only the information strictly necessary to perform their services.

2. Organizers and Business Accounts:
If you purchase a ticket, the event organizer or business account may access certain data — solely to verify your participation, generate a QR code, or send event-related information.
Organizers are required to use the data shared with them only for these purposes and in accordance with applicable privacy laws.

3. Legal Authorities:
If required by law, data may be shared with courts, public prosecutors, or regulatory bodies such as the Information and Communication Technologies Authority (BTK) or the Personal Data Protection Authority (KVKK) — strictly limited to what is necessary for compliance.

4. Affiliates and Subsidiaries:
We may share limited data within innclude’s corporate group to enhance service quality, strengthen operational efficiency, or ensure technical continuity.

innclude’s systems operate on secure servers located both in Turkey and abroad.
Therefore, your personal data may be transferred internationally when necessary.
Such transfers are carried out in full compliance with Article 9 of the Turkish Personal Data Protection Law (KVKK) and Articles 45–49 of the EU General Data Protection Regulation (GDPR), ensuring appropriate safeguards and obtaining your explicit consent when required.

Examples of international data transfer scenarios include:

• Cloud servers hosted within EU countries,
  SMS, email, or notification services using global infrastructures,

• Use of international marketing, analytics, or statistical tools.

innclude never sells, rents, or commercially shares your personal data under any circumstances.
All data transfers are covered by confidentiality agreements, requiring partners to use the data only for the specified purposes and to maintain strict confidentiality.

innclude implements all technical and administrative measures necessary to ensure secure data transfer — including encrypted connections (HTTPS, VPN, SFTP), data encryption, and access control protocols to prevent unauthorized use or disclosure.

Article.7 Situations Requiring Explicit Consent

At innclude, we process your personal data strictly within the framework of lawful grounds.
Some data are essential for establishing or performing a contract, meaning no additional consent is required for those.
However, certain processing activities that are not legally mandatory can only take place with your explicit consent.

The situations that require your explicit consent include:

1. Marketing, Campaigns, and Promotional Communication:
innclude may send you personalized event suggestions, promotions, brand collaborations, newsletters, or discount announcements.
These communications can be delivered via SMS, email, push notifications, or in-app messages, and will only be sent if you have provided your consent.

2. Location Data Usage:
We may use your location information to show events happening in your city or nearby.
This permission is entirely under your control — you can enable or disable it at any time through your mobile device settings.

3. Contact List Access:
To help you see your friends on innclude or create invitation-only events, we may request access to your phone’s contact list.
If you choose not to grant access, the application will continue to function, but these features will be disabled.

4. Usage Analytics and Personalized Experience:
innclude may analyze anonymous usage trends to improve service quality and provide a better experience.
These analyses are conducted using non-identifiable, aggregated data and do not include your personal information.

5. International Data Transfers:
Since some of our service infrastructures are hosted abroad, we may request your consent to transfer your data to secure servers outside Türkiye, under appropriate privacy agreements and safeguards.

Your consent is always voluntary — refusing to give it will not prevent you from using core services.
You may withdraw your consent at any time through Profile → Settings → Notifications & Permissions, or by contacting us directly.
Withdrawal of consent will apply only to future processing and will not affect the lawfulness of any past data processing performed based on your prior consent.

innclude securely stores all consent records in written, electronic, or digital form.
These records are considered legally valid evidence and may only be shared with competent authorities when required by law.

Article.8 Cookies and Similar Technologies

At innclude, we use cookies and similar technologies on our website and mobile application to provide you with the best experience, speed up your interactions, and remember your preferences.
Cookies are small data files stored on your device (phone, tablet, computer, etc.) when you visit a website or app.
They allow the system to recognize you, remember your login information, and personalize content to your preferences.

The main types of cookies used by innclude are:

1. Essential Cookies:
These cookies are required for the platform to function properly.
They enable basic operations such as logging in, completing secure payments, or purchasing tickets.
Without them, certain parts of the service may not function correctly.

2. Performance and Analytics Cookies:
These cookies help us understand which pages are visited most and which features are most frequently used.
This information allows us to continuously improve our website and application.
All data collected through these cookies are anonymous and do not identify you personally.

3. Personalization Cookies:
These cookies tailor your experience based on your language, city, or previous event preferences — so you don’t have to reconfigure your settings every time you log in.

4. Advertising and Marketing Cookies:
These are activated only with your consent.
They help us show you relevant events, promotions, or campaigns based on your interests.
They may also assist us in measuring the effectiveness of advertising through anonymized data shared with trusted partners.

innclude does not collect personal data directly through cookies;
we only analyze browsing behaviors, and all such data are processed in anonymized form and stored on secure servers.

You are always in control of your cookie preferences.
You can delete, reject, or customize which types of cookies are allowed through your web browser or mobile app settings.
However, disabling some cookies may affect the proper functioning of certain features on the website or app.

innclude never shares, sells, or uses cookie-based data for unauthorized marketing purposes.
All cookie management processes are carried out in accordance with the innclude Cookie Policy.
You can find detailed information about how cookies are used and managed on our website under the “Cookie Policy” section.

Article.9 Data Security and Protection Measures

At innclude, we protect your personal data according to the highest security standards — not only as a legal obligation but as a commitment to you and our entire community.
Your personal information is safeguarded against unauthorized access, loss, misuse, alteration, or disclosure while being processed for the purposes defined in our Privacy Policy.
To ensure this, we implement multi-layered technical and administrative security measures across all systems.

Here are some of the key precautions applied within innclude’s infrastructure:

1. Data Encryption:
All user data — including registration, login, password, and payment information — is encrypted during transmission using TLS/SSL protocols, and stored in encrypted form on secure servers.

2. Access Controls:
Only authorized and trained personnel can access user data.
Each access right is strictly limited by role and subject to regular audits.

3. Secure Server Infrastructure:
innclude’s systems are hosted in professionally managed data centers located both in Türkiye and abroad, all certified to international standards such as ISO 27001, SOC 2, or equivalent.

4. Regular Audits and Penetration Tests:
Our systems undergo periodic security testing by independent cybersecurity experts.
Any vulnerabilities identified are promptly remediated to ensure ongoing system integrity.

5. Logging and Monitoring:
All access and system activities are continuously logged.
These records serve as legal evidence in the event of a suspected breach and help protect both users and the platform.

6. Backup and Disaster Recovery:
User data is regularly backed up and stored securely as part of our disaster-recovery and business-continuity plans, ensuring minimal disruption in extraordinary circumstances.

innclude also requires all third-party service providers it collaborates with to maintain the same level of security diligence.
Every agreement includes explicit confidentiality and data-protection commitments.

That said, no digital system is entirely risk-free.
If a potential data breach occurs, innclude will:

• Notify you as quickly as possible,

• Take immediate action to minimize potential impact, and

• Report the incident to the Turkish Personal Data Protection Authority (KVKK) within the legally required timeframe.

At innclude, data security is our top priority — because your trust is the most valuable part of our community.

Article.10 Data Retention and Deletion

At innclude, we retain your personal data only for as long as necessary to provide our services, fulfill legal obligations, and resolve potential disputes.
The retention period may vary depending on the type of data, applicable legal requirements, and the purpose of processing.

For example:

• Ticket purchases, payment, and billing records are stored for a minimum of 10 years in accordance with tax and commercial regulations.

• Account details, profile data, and user activity records are kept for as long as your account remains active.

• Event history, participation records, and QR code data are preserved for 2 years after the event concludes, serving as legal evidence for service completion.

After these periods expire, all data are either securely anonymized or permanently deleted.
Anonymization means removing all identifying elements so that the remaining data can only be used for statistical or analytical purposes.

If you close or delete your account, innclude will continue to store your data securely until the mandatory legal retention periods have expired.
During this time, the data remain accessible only for the following purposes:

• Fulfilling legal obligations,

• Serving as evidence in potential disputes or audits, and

• Ensuring system integrity and security.

No data are kept in the system beyond their retention period or once their purpose of processing no longer exists.
Deletion and anonymization are carried out in compliance with international security standards and verified through system logs.

If you wish to learn how long your data are retained or request deletion, you can email us at [email protected] with the subject line “Data Deletion Request.”
Your request will be reviewed and processed within 30 days, in accordance with legal requirements.

At innclude, we act with complete transparency in every stage of data retention and disposal — safeguarding both your privacy and the security of our system.

Article.11 Data Sharing with Third Parties

At innclude, we never sell, rent, or share your personal data for commercial gain or without your explicit consent.
We share data only when necessary to provide our services, ensuring it is done securely and under strict contractual safeguards.

Data may be shared exclusively with the following categories of parties:

1. Technical Service Providers:
These are trusted partners that provide essential infrastructure for our platform, including cloud hosting, server management, cybersecurity, SMS and email delivery, and payment processing systems.
Data shared with them is strictly limited to what is technically required for the service to function.

2. Business Partners and Affiliates:
We may share anonymized or limited information with our affiliates and partners for purposes such as event promotion, campaign management, or improving user experience.
No data that can directly identify you is included in these transfers.

3. Legally Authorized Institutions:
If required by law, data may be shared with courts, prosecutors, the Information and Communication Technologies Authority (BTK), the Personal Data Protection Authority (KVKK), or other regulatory bodies — but only to the extent necessary to comply with legal obligations.

4. Event Organizers and Business Accounts:
When you purchase a ticket or attend an event, certain limited information (e.g., name, email, QR code) may need to be shared with the event organizer or business account to facilitate participation.
Such sharing is strictly for service fulfillment, and organizers are required to protect this data under their own privacy obligations.

innclude signs Data Processing Agreements (DPAs) with all third parties involved in data handling.
These contracts legally ensure that any shared data is:

• Used only for the stated purpose,

• Stored securely, and

• Not transferred to any other party without authorization.

If data must be transferred abroad, such transfers comply with Article 9 of the Turkish KVKK Law and Articles 44–46 of the GDPR.
They are made only to countries on the “safe country list” or to entities that provide sufficient data protection guarantees, and always with the user’s explicit consent.

innclude carefully selects all data partners and requires them to maintain protection standards equal to or stronger than ours.

However, innclude is not responsible for the accuracy or processing methods of personal data collected and managed by organizer or business accounts.
These entities act as independent data controllers, responsible for ensuring compliance with privacy laws.
innclude’s role in such cases is limited solely to providing the technical infrastructure that enables secure data transmission.

Article.12 User Rights

At innclude, we believe that you should have full control over your personal data.
That’s why we make it easy for you to exercise all your rights under applicable data protection laws — clearly, transparently, and without unnecessary obstacles.

Under the Turkish Personal Data Protection Law No. 6698 (KVKK) and the EU General Data Protection Regulation (GDPR), you have the following rights:

1. Right to Information:
You can request to know whether your personal data is being processed, for what purposes it is used, and with whom it is shared.

2. Right of Access:
You can request access to your personal data held by innclude and ask for a copy of this data.

3. Right to Rectification:
If any of your data is incomplete or inaccurate, you can ask us to correct or update it.

4. Right to Erasure (“Right to be Forgotten”):
You can request the deletion of your personal data when the processing purpose no longer exists or when the legal retention period has expired.

5. Right to Data Portability:
You can request your data in a structured, commonly used, and machine-readable format, and, if technically possible, ask us to transfer it to another data controller.

6. Right to Object:
You may object to your personal data being used for automated decision-making or profiling purposes.

7. Right to Restrict Processing:
You may request that your data be processed only under specific conditions or for a limited period of time.

8. Right to Withdraw Consent:
If you previously gave consent (for example, for marketing or notifications), you may withdraw it at any time.
Once withdrawn, we will immediately stop using your data for that purpose.

9. Right to Compensation:
If your data is processed unlawfully and you suffer damage as a result, you have the right to seek compensation under applicable law.

To exercise any of these rights, you can contact us at [email protected] with the subject line “Personal Data Request.”
Your request will be processed within 30 days after verifying your identity.

innclude carefully reviews all submissions and responds in writing or electronically, in accordance with legal requirements.
For security reasons, some requests — such as accessing another person’s data or deleting financial records subject to retention laws — may be lawfully rejected.

In such cases, you will receive a written explanation of the reason for refusal.
innclude may also request identity verification before processing your request, which will be done using the contact details associated with your user account.

All verified and eligible requests will be fulfilled no later than 30 (thirty) days from the date of submission.

innclude reserves the right to decline requests that are technically infeasible, infringe on other users’ rights and freedoms, or conflict with legal obligations — always providing you with a clear and reasoned response.

Article.13 Cookies and Similar Technologies

At innclude, we use cookies and similar technologies to make your experience more enjoyable, faster, and personalized.
These technologies don’t identify you personally — they simply help the platform work better for you.

Cookies are small data files stored on your device when you visit our website or use our mobile app.
They allow us to remember your preferences, keep your session active, show you events you’re most interested in, and gather general usage statistics to improve our services.

Some of the main types of cookies used on innclude include:

Essential Cookies:
These cookies are necessary for the platform to function securely and properly.
For example, they help maintain your session or ensure that payment transactions are processed safely.

Performance and Analytics Cookies:
These help us understand which sections of innclude are used most, which pages encounter technical issues, and how we can improve our service.
This data does not identify you personally — it’s used only to enhance the overall user experience.

Personalization Cookies:
These allow us to offer event recommendations based on your interests — such as showing you concerts or activities in the cities you most frequently attend events in.

Marketing and Campaign Cookies:
These are used to remind you of special offers or campaigns run by innclude or our partners.
Such cookies are activated only with your explicit consent.

In our mobile application, we also use SDKs (Software Development Kits) that function similarly to cookies.
They help us monitor app performance, detect crashes, and improve the user experience.

Your privacy control always comes first.
You can manage your cookie and tracking preferences anytime:

• On our website, through the “Cookie Settings” panel,

• Or in the mobile app under Profile > Settings > Privacy & Notifications, where you can disable advertising and tracking permissions.

Our Cookie Policy may be updated from time to time.
If new types of cookies are introduced or existing categories are modified, we will notify you both via the app and on our website.

Article.14 International Data Transfer

At innclude, we are committed to keeping your data secure at all times.
In some cases, the services or infrastructures we use may operate through servers located outside of Türkiye.
Even in such cases, we guarantee that your data is protected under the same strict security standards.

Some parts of our services — such as:

• Cloud computing infrastructure,

• Payment systems,

• Email delivery services,

• Analytics and performance tools,
  are provided through international technology providers, typically based in the European Union (EU) or the United States (US).

Whenever personal data is transferred abroad, innclude fully complies with both the Turkish Personal Data Protection Law (KVKK) and the EU General Data Protection Regulation (GDPR).

Your data may be transferred abroad only under the following conditions:

1. The destination country has been officially recognized as a “safe country” by the Turkish Personal Data Protection Authority (KVKK),

2. The receiving organization provides a written guarantee ensuring adequate protection of personal data,

3. Or you have explicitly consented to the transfer.

All international data transfers are carried out in accordance with the principles of confidentiality, integrity, and access control.
The data transferred is always limited to the minimum necessary for providing the relevant service.

innclude signs Data Processing Agreements (DPAs) with all foreign service providers or partners involved in data processing.
These agreements legally ensure that your data will be used only for the specified purposes, kept secure, and never shared with third parties without authorization.

Article.15 Notification in Case of a Data Breach

At innclude, we make every effort to protect your data with the highest security standards.
However, no digital system can ever be completely risk-free — and that’s why, in the event of a potential data breach, we act with full transparency and responsibility.

A data breach refers to any situation in which personal data is accessed, disclosed, altered, deleted, or lost by unauthorized parties.

If such an incident occurs, innclude follows a clear and structured response plan:

1. Incident Identification:
As soon as a breach is detected, we assess its scope, impact, and the categories of affected data, identifying potential risks and vulnerabilities.

2. User Notification:
If your data has been affected, you will be notified as quickly as possible via email, SMS, or in-app notification.
This notice will clearly explain when and how the breach occurred, what type of data was affected, and what actions are being taken.

3. Notification to Authorities:
In accordance with Article 12(5) of the Turkish Personal Data Protection Law (KVKK), innclude reports the incident to the Turkish Data Protection Authority (KVKK) within 72 hours of detection.
For international users, we also notify the relevant European data protection authorities under Article 33 of the GDPR, when applicable.

4. Preventive and Corrective Actions:
We immediately review and reinforce our technical and administrative safeguards, update security protocols, and conduct external audits if necessary — ensuring that similar incidents do not occur again.

Throughout this process, innclude maintains open communication with affected users, addressing any questions or concerns directly.
Our goal is to minimize risks, restore trust, and re-establish full security as quickly as possible.

If you suspect or are informed of a data breach involving your information, you can contact us at [email protected] to obtain further details about the incident and our response actions.

Article.16 Effective Date and Amendments

This Privacy Policy enters into force on the date of its publication.
At innclude, we may update this document from time to time to reflect technological advancements, legal requirements, or changes in our services.

Every change we make is communicated openly and transparently.
The updated version is published on innclude.com and announced through in-app notifications.
The latest revision date is always clearly stated at the top of the page.

If a significant change occurs — for example, regarding how your data is processed or who it is shared with — we will notify you directly via email, SMS, or in-app message.

By continuing to use our services after such updates, you are deemed to have accepted the revised Privacy Policy.
If you do not agree with the new terms, you may close your account or contact us to discontinue using the services.

Article.17 Contact and Data Controller Information

If you have any questions, requests, or suggestions regarding this Privacy Policy or the processing of your personal data, you can contact us directly.
As the data controller, innclude evaluates all requests within the legal timeframe and provides you with a clear and understandable response.

Data Controller:
innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş.
Mersis No: 0478121800000001
Address: Fenerbahçe Mah. İğrip Sok. No:13/1, 34726 Kadıköy – İstanbul, Türkiye
E-mail: [email protected]

You can submit your personal data requests using one of the following methods:

• By e-mail: Send your request to [email protected]

• By written application: Send a letter titled “Personal Data Request” to the company address above.

All applications are processed within 30 (thirty) days, in accordance with Article 13 of the Turkish Personal Data Protection Law (KVKK).
Requests are generally handled free of charge; however, if the process requires additional costs, a fee may be charged in accordance with the KVKK Regulation on Application Procedures and Principles.

Article.18 Children's Privacy and Age Limit

innclude services are intended only for individuals aged 18 and over.
Persons under 18 are not permitted to register for the app or website, share personal information, or use the platform.

innclude does not knowingly collect, store, or process personal data of users under 18.
If we become aware that an account belongs to someone under 18, the account will be immediately closed and any stored data will be securely deleted.

If you suspect a user is under 18, or believe your child’s information has been shared in error, please notify us right away at [email protected].

Introduction

What is a cookie?

What cookies are used?

a) First-party cookies

b) Third-party cookies

c) Permanent and session data

d) Pixel tags

Why We Use Cookies

Managing Cookies

Google™ Cookies

Google Analytics

Social Cookies

Contact Us

innclude Business Kullanım Koşulları ve Kullanıcı Sözleşmesi

Bu Sözleşme, innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş. (“innclude”) tarafından işletilen web sitesi, mobil uygulamalar ve innclude Business Paneli üzerinden hizmet alan işletme hesapları (organizatör, ajans, promoter, sanatçı, marka, mekan veya benzeri ticari kullanıcılar — birlikte “İşletme Hesabı Sahibi”) ile innclude arasında elektronik ortamda kurulmuştur.

Bu sözleşme, innclude Business sisteminin kullanımına ilişkin tüm hak, yükümlülük ve sorumlulukları düzenler.

İşletme Hesabı oluşturulması, panel erişimi veya platform üzerinden etkinlik oluşturulması bu sözleşmenin kabulü anlamına gelir.

İşbu Sözleşme; Kullanıcı Sözleşmesi (B2C), Gizlilik Politikası, Çerez Politikası, Veri İşleme Protokolü (DPA) ve Hizmet Seviyesi/Paket Koşulları (SLA) ile birlikte bir bütün teşkil eder.

Çelişki halinde öncelik sırası:

(i) DPA/SLA,

(ii) işbu Sözleşme (B2B),

(iii) Gizlilik Politikası,

(iv) Kullanıcı Sözleşmesi ve Çerez Politikası’dır.

İşletme Hesabı’na erişim ve onay:

• İlk kayıt aşamasında işletme hesabı, yetkili kişi tarafından telefon numarası ve OTP (tek kullanımlık şifre) doğrulaması ile oluşturulur.
• OTP ile doğrulama işlemi, bu Sözleşme’nin elektronik onayı yerine geçer.
• Daha sonraki oturumlarda giriş, işletme tarafından belirlenen kalıcı parola aracılığıyla yapılır.
• innclude, güvenlik ve doğrulama amacıyla gerektiğinde yeniden OTP isteyebilir.
• Yetkisiz erişim veya alt kullanıcılar tarafından yapılan her işlemden İşletme Hesabı Sahibi münhasıran sorumludur.

MADDE 1 – TANIMLAR

Bu Sözleşme’de geçen terimler aşağıdaki anlamları ifade eder:

• innclude: innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş., MERSİS No: 0478121800000001.
• Platform: www.innclude.com web sitesi, innclude mobil uygulamaları ve innclude Business Paneli.
• İşletme Hesabı Sahibi: innclude Business hesabını oluşturan ve platformu ticari amaçla kullanan gerçek veya tüzel kişi (örneğin organizatör, ajans, promoter, sanatçı, marka, mekân).
• Alt Kullanıcı / Yetkili Kullanıcı: İşletme Hesabı Sahibi tarafından Business Paneli üzerinden tanımlanan ve belirli yetkilerle sisteme erişen kişi. Alt Kullanıcılar, İşletme Hesabı Sahibi’nin çalışanı, temsilcisi veya iş ortağı olabilir.
• Etkinlik Yetkilisi: Belirli bir etkinliğe, yalnızca o etkinliğin yönetimi veya operasyonu süresince erişim yetkisi verilen kişi. Bu yetki etkinlik süresiyle sınırlıdır ve otomatik olarak sona erer.
• Kapı Görevlisi / Operasyon Kullanıcısı: Katılımcı giriş kontrollerini, QR okutma ve guest list doğrulama işlemlerini yapan, yalnızca etkinlik esnasında geçici erişim yetkisine sahip kullanıcı.
• Yönetici: İşletme Hesabı Sahibi tarafından atanan, hesap silme işlemleri hariç tüm yönetim yetkilerine sahip üst düzey kullanıcı. Yönetici ataması hesap genelinde geçerlidir.
• Etkinlik / Bilet: İşletme tarafından platformda oluşturulan organizasyon ve buna ilişkin dijital erişim kaydı (QR kod, bilet numarası, guest list girişi vb.).
• Katılımcı: Etkinlik bileti satın alan veya davetli olarak katılım sağlayan son kullanıcı.
• Hizmet: innclude tarafından sunulan biletleme, cüzdan (kapalı devre), katılımcı yönetimi, veri analitiği ve raporlama, API ve webhook entegrasyonları, SMS/e-posta/push bildirim servisleri ile bunlara ilişkin destek ve altyapı hizmetlerinin tamamı.
• Komisyon / Hizmet Bedeli: innclude’un bilet satışından veya sağladığı teknik hizmetlerden tahsil ettiği oran veya sabit ücret.
• Ödeme Kuruluşu: innclude’un entegrasyon sağladığı üçüncü taraf tahsilat servisleri.
• Cüzdan: Platform içi ödemelerde kullanılan, faiz işletmeyen, nakde çevrilemeyen kapalı devre dijital bakiye sistemi.
• İşletme Mesajları (“Mesajlar”): İşletme’nin panel veya API üzerinden tetiklediği SMS, e-posta, push bildirimi ve benzeri iletiler. Bu mesajların içeriğinden doğacak tüm hukuki sorumluluk işletmeye aittir.
• Kota / Kullanım Limiti: İşletmenin paket kapsamında sahip olduğu SMS, push, e-posta veya veri haklarının aylık ya da etkinlik bazlı sınırları.
• Kişisel Veri / Katılımcı Verisi: Katılımcıya ait her türlü bilgi (ad-soyad, iletişim, işlem kayıtları, bilet bilgileri vb.) ve bu verilerin KVKK ve/veya GDPR kapsamındaki halleri.
• Veri Sorumlusu / Veri İşleyen: İşbu Sözleşme kapsamında innclude = veri sorumlusu, İşletme Hesabı Sahibi = veri işleyen sıfatına sahiptir.
• Business Tools / API: innclude’un işletmelere sunduğu entegrasyonlar, webhook’lar, raporlama ve panel araçları.
• Uygulanabilir Mevzuat: Türk Hukuku, 6698 sayılı KVKK, AB Genel Veri Koruma Tüzüğü (GDPR) ve ilgili tüketici, e-ticaret ve ödeme hizmetleri mevzuatı.

MADDE 2 – SÖZLEŞMENİN KONUSU

İşbu Sözleşme; İşletme Hesabı Sahibi’nin, innclude Platformu aracılığıyla etkinlik oluşturması, bilet satışı yapması, katılımcı verilerini yönetmesi, panel veya API üzerinden dijital iletişim (SMS, e-posta, push notification vb.) hizmetlerinden yararlanması, satış gelirlerini tahsil etmesi, hizmet paketleri kapsamında sağlanan altyapı, raporlama ve destek servislerinden faydalanması süreçlerinde tarafların karşılıklı hak, yükümlülük ve sorumluluklarını düzenler.

Bu kapsamda:

innclude, etkinlik sahiplerine biletleme, satış, ödeme, katılımcı yönetimi, raporlama ve dijital iletişim altyapısı sunar;

İşletme Hesabı Sahibi, Platform’u yalnızca kendi etkinlikleri, markaları veya yetkili olduğu organizasyonlar için kullanabilir;

İşbu Sözleşme, taraflar arasında herhangi bir ortaklık, temsilcilik, distribütörlük veya istihdam ilişkisi oluşturmaz;

Platform, yalnızca teknik altyapı sağlayıcısı rolündedir — innclude, etkinliğin içeriği, fiyatı, tarihleri, iletişimleri veya organizasyonel süreçlerinden sorumlu değildir;

Platform’un işletme tarafından kullanımı sırasında elde edilen tüm katılımcı verilerinin işlenmesi ve saklanması KVKK ve GDPR hükümlerine tabidir;

İşletme Hesabı Sahibi, bu sözleşmenin kabulüyle birlikte, Platform’un kullanımına ilişkin teknik, ticari ve yasal sorumlulukların kendisine ait olduğunu peşinen kabul eder.

MADDE 3 – INNCLUDE’UN ROLÜ VE SINIRLI SORUMLULUĞU

a. innclude, işletmelere yalnızca teknik altyapı ve aracılık hizmeti sunar.

• innclude; biletleme, katılımcı yönetimi, cüzdan, veri analitiği, API, SMS/e-posta/push bildirimleri, ödeme ve raporlama modüllerini işletmelere sağlar.
• innclude, etkinliklerin içeriği, programı, bilet fiyatı, tarih, iptal, değişiklik veya duyuru gibi organizasyonel kararlardan sorumlu değildir.

b. innclude, etkinlik sahipleri adına bilet satışına aracılık eder; satış ve tahsilat işlemleri, sözleşmeli ödeme kuruluşları üzerinden yürütülür.

• innclude, katılımcı ile işletme arasındaki hukuki ilişkide taraf değildir.
• innclude’un rolü; işlem kayıtlarının güvenli biçimde tutulması, ödemelerin yönlendirilmesi ve katılımcıya dijital bilet erişiminin sağlanmasıyla sınırlıdır.

c. İşletme tarafından gönderilen tüm içerikler, veriler, mesajlar, kampanyalar, fiyat bilgileri, görseller ve benzeri materyallerin hukuki ve cezai sorumluluğu tamamen İşletme Hesabı Sahibi’ne aittir.

• innclude, bu içerikleri yalnızca teknik gereklilik halinde görüntüleyebilir, barındırabilir veya işleyebilir.
• innclude, 5651 sayılı Kanun ve uluslararası “hosting provider” ilkeleri uyarınca yer sağlayıcı statüsündedir.
• innclude, kendisine bildirilen yasa dışı veya üçüncü kişilerin haklarını ihlal eden içerikleri kaldırma veya erişimi engelleme hakkına sahiptir.

d. innclude, sistemin kesintisiz çalışması için azami özen gösterir; ancak, internet, altyapı, ödeme ağları, üçüncü taraf servisler veya mücbir sebeplerden kaynaklanan kesintilerden dolayı herhangi bir garanti vermez.

• Sistem bakım çalışmaları, güncellemeler veya güvenlik önlemleri nedeniyle oluşan geçici kesintiler hizmet kusuru sayılmaz.
• innclude, bu tür durumlarda sorumluluk doğurmaksızın hizmeti durdurabilir veya erteleyebilir.

e. innclude’un toplam sorumluluğu, doğrudan kusurunun ispatlandığı durumlarla sınırlıdır.

• Bu hallerde innclude’un tazmin yükümlülüğü, ilgili etkinlik için işletmenin ödediği hizmet bedeli veya komisyon tutarını hiçbir şekilde aşamaz.
• Dolaylı zararlar (kâr kaybı, veri kaybı, itibar zedelenmesi vb.) için innclude’a herhangi bir sorumluluk yüklenemez.

f. innclude, sistem güvenliğini sağlamak amacıyla işletme hesaplarını, alt kullanıcı işlemlerini, cüzdan hareketlerini ve mesaj içeriklerini otomatik olarak izleme, loglama ve inceleme hakkını saklı tutar.

• Bu denetimler, yalnızca güvenlik, dolandırıcılık tespiti ve yasal yükümlülüklerin yerine getirilmesi amacıyla yapılır.
• innclude, gizlilik politikası çerçevesinde elde edilen bu verileri yalnızca ilgili amaçlarla işler.
• innclude, güvenlik, sistem bütünlüğü veya etkinlik operasyonu sırasında ortaya çıkabilecek teknik aksaklıkların giderilmesi amacıyla gerektiğinde İşletme Hesabı’na veya ilgili etkinliğe geçici olarak erişim sağlayabilir. Bu erişim yalnızca teknik destek, kriz yönetimi veya dolandırıcılık tespiti amaçlarıyla ve yetkilendirilmiş innclude personeli tarafından gerçekleştirilir. Tüm erişim işlemleri sistem tarafından loglanır, erişim sona erdiğinde hesap yetkileri eski hâline döner. Bu tür müdahaleler, innclude’un hizmet sorumluluğunu ihlal etmez; sistem güvenliği ve katılımcı haklarının korunması için alınmış önlemler olarak değerlendirilir.
• innclude, üçüncü taraf servis sağlayıcılarının (ödeme kuruluşları, SMS, altyapı firmaları vb.) hizmetlerinde yaşanabilecek kesinti, hata veya gecikmelerden dolayı, kendi makul7. kontrolü dışında kalan hallerde, doğrudan veya dolaylı zararlardan sorumlu tutulamaz.
• Bu durumlar mücbir sebep kapsamında değerlendirilir.

g. innclude, işletmelere sunulan hizmetler kapsamında üçüncü taraflarla (ödeme kuruluşu, SMS sağlayıcısı, altyapı firması vb.) çalışabilir.

• Bu hizmet sağlayıcıların eylem veya ihmallerinden doğan zararlardan innclude, kendi makul kontrolü dışındaki hallerde sorumlu tutulamaz.

MADDE 4 – İŞLETME HESABI SAHİBİNİN YÜKÜMLÜLÜKLERİ

Etkinlik İçeriği ve Telif Hakları

İşletme, oluşturduğu etkinliklerin tüm içeriğinden, doğruluğundan, izinlerinden, teliflerinden ve gerekli yasal onaylardan münhasıran sorumludur.

innclude, etkinlik içeriklerinin doğruluğunu veya hukuka uygunluğunu denetlemekle yükümlü değildir.

Katılımcı Verileri ve Veri Koruma

a. İşletme, katılımcı verilerini yalnızca etkinliğin yürütülmesi amacıyla kullanabilir; bu verileri üçüncü taraflarla paylaşamaz, satamaz veya yeniden işleyemez.

b. Katılımcı verileri KVKK ve GDPR hükümlerine uygun biçimde işlenmeli; açık rıza alınmadan pazarlama, analiz veya reklam faaliyetlerinde kullanılamaz.

c. innclude, bu verileri yalnızca sistemin işleyişi için saklar ve işler; işletmenin hatalı veya izinsiz işlemlerinden dolayı sorumlu tutulamaz.

d. Veri ihlali veya yetkisiz erişim durumunda işletme, derhâl innclude’a bildirim yapmakla yükümlüdür. 

İletişim ve Pazarlama Faaliyetleri

a. innclude altyapısı üzerinden gönderilen SMS, e-posta, push bildirimleri ve benzeri tüm iletişimlerin içeriği işletme tarafından belirlenir.

b. Bu iletiler, 6563 sayılı Elektronik Ticaretin Düzenlenmesi Hakkında Kanun, KVKK ve Ticari İletişim ve Ticari Elektronik İletiler Hakkında Yönetmelik’e uygun olmalıdır.

c. innclude, iletilerin içeriğini kontrol etmekle yükümlü değildir; yalnızca teknik iletim hizmeti sağlar.

d. Uygunsuz veya şikâyete konu mesajlardan doğabilecek her türlü idari ve cezai sorumluluk işletmeye aittir.

e. innclude, spam veya yasa dışı ileti tespiti hâlinde hizmeti geçici olarak durdurma veya hesabı askıya alma hakkını saklı tutar.

Hesap Güvenliği ve Yetkilendirme

a. İşletme, ana hesabının ve oluşturduğu Alt Kullanıcı, Yönetici, Etkinlik Yetkilisi ve Kapı Görevlisi hesaplarının tüm faaliyetlerinden sorumludur.

b. Şifrelerin, erişim anahtarlarının veya API bilgilerinin paylaşılmasından doğacak tüm sonuçlar işletmeye aittir.

c. İşletme, yetkilendirdiği kullanıcıların kimlik ve iletişim bilgilerinin doğruluğunu sağlamak, rol ve yetkileri güncel tutmakla yükümlüdür.

d. innclude, güvenlik veya sistem bütünlüğü gereği, şüpheli erişimleri askıya alma ve geçici olarak engelleme hakkına sahiptir.

Etkinlik ve Hizmet Kullanımı

a. İşletme, Platform’u yalnızca kendi markası veya yetkili olduğu organizasyonlar için kullanabilir.

b. innclude’un onayı olmaksızın üçüncü kişiler adına etkinlik oluşturulamaz, hesap devredilemez veya kiralanamaz.

c. innclude, mevzuata aykırı, yanıltıcı veya yasa dışı etkinlik tespiti hâlinde hesabı derhâl askıya alabilir.

Cüzdan ve Ödeme İşlemleri

a. innclude Cüzdan, yalnızca platform içi ödemelerde kullanılabilen kapalı devre bir sistemdir; faiz işletmez, nakde çevrilemez.

b. İşletme, cüzdan üzerinden yapılan tüm işlemlerin kaydını tutmak ve gerekmesi hâlinde katılımcıya fatura düzenlemekle yükümlüdür.

c. innclude, cüzdan bakiyesi kötüye kullanımı, sahte işlem veya dolandırıcılık girişimlerinden sorumlu değildir.

Vergi ve Faturalandırma Yükümlülükleri

a. İşletme, bilet satışları veya hizmet gelirlerine ilişkin tüm vergisel yükümlülüklerini (KDV, stopaj, gelir vb.) kendisi yerine getirmekle sorumludur.

b. innclude, yalnızca teknik tahsilat aracısıdır; vergi beyanı, fatura düzenleme ve yasal raporlama sorumluluğu işletmeye aittir.

Uyum ve Denetim İşbirliği

a. innclude, güvenlik veya yasal gereklilikler kapsamında işletme hesaplarına erişim sağlayabilir; bu erişim yalnızca teknik destek ve denetim amaçlıdır.

b. İşletme, innclude’un talebi hâlinde sistemsel incelemelerde işbirliği yapmak ve gerekli kayıtları paylaşmakla yükümlüdür.

MADDE 5 – HİZMET PAKETLERİ VE KULLANIM SINIRLARI

5.1. Paket Yapısı

innclude Business hizmetleri, temel, gelişmiş ve profesyonel düzeylerde veya eşdeğer adlarla sunulan paketler üzerinden sağlanır.

Her paket; SMS, push notification, e-posta gönderimi, katılımcı veri raporları, API erişimi, destek hizmetleri ve diğer modüller bakımından farklı hak ve limitler içerebilir.

5.2. Kota ve Limitler

a. Her pakete tanımlı olan kullanım hakları (SMS, push, e-posta gibi) aylık veya etkinlik bazında belirlenir.

b. Kota aşımı durumunda, işletmeye ek ücretlendirme uygulanır ve innclude, kota dolduğunda ilgili hizmeti geçici olarak durdurma veya sınırlama hakkına sahiptir.

c. Kullanılmayan haklar bir sonraki döneme devredilmez, iade edilmez ve nakde çevrilemez.

5.3. Paket Değişiklikleri ve Yükseltme

a. İşletme, paketini dilediği zaman yükseltebilir veya innclude’un belirlediği dönemlerde değişiklik talep edebilir.

b. Paket değişikliği, yeni paketin ücretlendirmesinin onaylanmasıyla birlikte yürürlüğe girer.

c. innclude, pazar koşulları ve teknik gelişmelere bağlı olarak paket içeriklerini, fiyat ve limitlerini güncelleme hakkını saklı tutar; bu durum önceden kullanıcıya bildirilir.

5.4. Ek Hizmetler ve Modüller

a. innclude, paket kapsamı dışında özel raporlama, ajans paneli, sponsor erişimi, food-drink

POS entegrasyonu, API geliştirmeleri gibi ek modüller sunabilir.

b. Bu modüller ayrı sözleşme ve ücretlendirme koşullarına tabi olabilir.c. İşletme, bu hizmetleri kullandığında ilgili koşulları ayrıca kabul etmiş sayılır.

5.5. Sistem Performansı ve Kullanım Politikası

a. innclude, tüm paketlerin adil kullanım politikası çerçevesinde sunulmasını garanti eder.

b. Aşırı yük, spam iletim, otomatik bot kullanımı veya sistemi zarara uğratacak davranışlar tespit edildiğinde innclude, ilgili hesabı geçici olarak kısıtlama veya askıya alma hakkına sahiptir.

c. İşletme, paket kapsamındaki hizmetleri üçüncü kişilere devredemez veya ticari amaçla satamaz.

5.6. Ücretlendirme ve Faturalandırma

a. Paket ücretleri ve ek kota bedelleri KDV dâhil innclude tarafından belirlenir ve Platform’da yayınlanır.

b. Ücretler ön ödemeli veya faturalandırma döneminde tahsil edilir.

c. innclude, ödeme yapılmaması durumunda paket hizmetlerini durdurma, hesabı askıya alma veya sözleşmeyi feshetme hakkına sahiptir.

5.7. Destek ve Servis Seviyesi

a. Her paket, belirli bir destek seviyesi ve yanıt süresi (SLA) ile birlikte sunulur.

b. innclude, önceliklendirmeyi paket düzeyine göre yapabilir ve hizmet sürekliliğini azami özenle sağlar.

5.8. Denetim ve Raporlama

innclude, paket kullanım verilerini otomatik olarak raporlar ve işletmenin panelinde görüntülenebilir hale getirir.

İşletme, bu verileri incelemek ve hatalı görmesi hâlinde 7 gün içinde innclude’a bildirmekle yükümlüdür.

MADDE 6 – ÖDEME, KOMİSYON VE FATURALANDIRMA

6.1.Komisyon ve Tahsilat

innclude, işletme adına yapılan bilet satışlarından komisyon ve işlem ücreti tahsil eder.

Komisyon oranı, hizmet bedeli ve tahsilat yöntemi Platform’da belirtilen şartlara tabidir.

6.2. Ödeme Periyotları

a. Komisyon oranı ve ödeme periyotları innclude panelinde açıkça gösterilir.

b. Ödemeler, etkinliğin tamamlanmasından veya innclude tarafından belirlenen dönemsel tahsilat tarihinden sonra gerçekleştirilir.

c. innclude, dolandırıcılık şüphesi, iade talepleri veya yasal inceleme durumlarında ödemeyi geçici olarak erteleme hakkını saklı tutar.

6.3.Tahsilat Yöntemi

a. innclude, tüm ödemeleri anlaşmalı ödeme kuruluşları aracılığıyla tahsil eder.

b. İşletme, ödeme kuruluşu sözleşmelerinden ve bu kuruluşların kesintilerinden (POS komisyonu, işlem ücreti vb.) doğan maliyetleri kabul eder.

c. innclude, tahsil edilen tutarlardan komisyon, hizmet bedeli ve yasal kesintileri düştükten sonra kalan bakiyeyi işletmeye aktarır.

6.4. Vergisel Yükümlülükler ve Uluslararası Uygulamalar

a. İşletme, yürürlükteki vergi mevzuatına göre beyan, fatura düzenleme ve vergi ödeme yükümlülüklerini kendi adına yerine getirmekle sorumludur.

b. innclude, yalnızca tahsilat aracısıdır; işletme adına vergi beyannamesi vermekle veya vergi ödemekle yükümlü değildir.

c. Ancak, işletmenin tüzel kişiliğe sahip olmaması ve bireysel (şahıs) organizatör statüsünde faaliyet göstermesi hâlinde, yasal gereklilikler doğrultusunda ilgili vergi dairesine yapılacak stopaj veya muhtelif hizmet ödemeleri innclude tarafından organizatör adına

gerçekleştirilebilir. Bu durumda, yapılan ödeme tutarları ve kesintiler dijital ortamda belgelendirilir ve organizatöre bildirilir.

d. Türkiye Cumhuriyeti sınırları dışında mukim işletmeler açısından, uygulanacak vergi türü ve kesintiler; innclude’un mukim olduğu ülkenin ve hizmetin sunulduğu ülkenin mevzuatına göre belirlenir.

innclude, gerekli durumlarda, yasal zorunluluk uyarınca tahakkuk eden vergileri (örneğin VAT, withholding veya sales tax) organizatör adına beyan veya ödeme yoluyla yerine getirebilir; bu hallerde yapılan kesintiler, işletme hesabında şeffaf şekilde gösterilir.

6.5 İade, İptal ve Kesintiler

a. Etkinliğin iptal veya ertelenmesi hâlinde, iade süreçleri organizatör tarafından yürütülür; innclude yalnızca teknik destek sağlar.

b. innclude, ödeme kuruluşlarından doğan chargeback veya ters ibraz işlemlerinde aracılık eder, ancak kullanıcıyla işletme arasındaki uyuşmazlıklardan sorumlu değildir.

c. İade edilen biletlerde, işlem ve hizmet bedelleri iade edilmez; aksi, innclude panelinde aksi belirtilmedikçe geçerlidir.

d. innclude, dolandırıcılık, kara para aklama veya yasa dışı finansal işlem şüphesi oluşması hâlinde, ilgili ödemeyi veya hesabı geçici olarak bloke etme, gerekli bilgileri ilgili otoritelere iletme ve hesabı yasal denetime açma hakkına sahiptir. Bu kapsamda yapılan işlemler gizlilik ihlali sayılmaz.

e. innclude, hizmet bedellerinin veya ödemelerin tahsilinde kullanılan üçüncü taraf ödeme sistemlerinde doğabilecek kesinti, blokaj veya dolandırıcılık işlemlerinden doğrudan sorumlu değildir. Bu haller, mücbir sebep kapsamında değerlendirilir.

6.6 Cüzdan ve Kapalı Devre İşlemler

a. innclude Cüzdan üzerinden yapılan ödemeler yalnızca platform içi işlemlerde geçerlidir.

b. Cüzdan bakiyeleri nakde çevrilemez, faiz işlemez ve dış sistemlere transfer edilemez.

c. innclude, cüzdan üzerinden yapılan işlemlere ilişkin tüm kayıtları saklar; işletme, bu verileri kendi muhasebesine ve beyanına dahil etmekle yükümlüdür.

6.7. Ücret Değişiklikleri

innclude, işlem ücretlerini, paket fiyatlarını veya komisyon oranlarını makul bildirim süresiyle güncelleme hakkını saklı tutar.

Güncellemeler, Platform’da duyuruldukları tarihten itibaren yürürlüğe girer.

6.8. Geç Ödeme ve Askıya Alma

İşletmenin ödemelerini zamanında yapmaması veya bakiye yetersizliği durumunda innclude, hizmetleri durdurma, panel erişimini sınırlandırma veya sözleşmeyi feshetme hakkına sahiptir.

MADDE 7 – VERİ KORUMA VE GİZLİLİK

7.1. Sorumluluk ve Roller

innclude, sistem genelinde işlenen veriler bakımından veri işleyen (data processor) sıfatına sahiptir;

İşletme Hesabı Sahibi ise kendi katılımcı verileri açısından veri sorumlusu (data controller) olarak hareket eder.

7.2.Veri İşleme Amaçları

Katılımcı verileri yalnızca etkinlik yönetimi, biletleme, katılımcı ilişkileri, destek süreçleri, güvenlik ve yasal yükümlülüklerin yerine getirilmesi amacıyla işlenebilir.

Bu amaçlar dışında reklam, profilleme veya üçüncü taraf paylaşımı ancak açık rıza ile mümkündür.

7.3.Veri Güvenliği Tedbirleri

innclude, güvenlik nedeniyle tüm verileri şifreli, erişimi rol bazlı ve log kayıtlarıyla denetlenebilir biçimde saklar.

Verilere erişim yalnızca yetkilendirilmiş personel ile sınırlıdır. innclude, veri merkezlerinde uluslararası güvenlik standartlarına (ISO 27001 ve eşdeğer) uygun altyapı kullanır.

7.4 Aydınlatma ve Açık Rıza

İşletme, katılımcıların kişisel verilerinin işlenmesine ilişkin açık rıza metinlerini, aydınlatma yükümlülüklerini ve gerekli onay mekanizmalarını sağlamakla yükümlüdür. innclude, İşletme’nin bu yükümlülüklerini yerine getirmemesinden doğacak hiçbir sorumluluk kabul etmez.

7.5. Uluslararası Veri Aktarımı

innclude, verileri yalnızca gerekli olduğu ölçüde ve AB Genel Veri Koruma Tüzüğü (GDPR), California Consumer Privacy Act (CCPA/CPRA) ve eşdeğer ulusal düzenlemelere uygun biçimde aktarabilir.

Veriler, yeterli koruma düzeyine sahip ülkelere veya standart sözleşme maddeleri (SCC) çerçevesinde güvence altına alınan servis sağlayıcılara aktarılır.

7.6.Veri İhlali ve Bildirim

a. İşletme, kendisine ait sistemlerde bir veri ihlali tespit ettiğinde, derhâl innclude’u bilgilendirmekle yükümlüdür.

b. innclude, kendi sistemlerinde gerçekleşen ihlallerde ilgili mevzuat uyarınca gerekli bildirimleri yapar ve işletmeye durumu yazılı olarak iletir.

7.7. Sorumluluk Sınırı

innclude, İşletme’nin veri ihlali, yetkisiz erişim, izin alınmadan yapılan iletişim veya katılımcı verilerinin uygunsuz kullanımı nedeniyle doğacak zararlardan sorumlu tutulamaz. innclude’un sorumluluğu, yalnızca kendi sistemlerinde doğrudan kusurunun ispatlandığı hallerle sınırlıdır.

innclude, sistem güvenliği, dolandırıcılık önleme, mevzuata uyum ve yasal raporlama yükümlülükleri kapsamında, işlem loglarını, erişim kayıtlarını ve veri yedeklerini asgari 10 yıl süreyle saklayabilir.

Bu kayıtlar yalnızca yasal mercilere sunulmak üzere işlenir ve bu amaç dışında kullanılmaz.

MADDE 8 – CÜZDAN VE ÖDEME SİSTEMİ

8.1. Sistemin Tanımı ve Amacı

innclude, etkinlik içi satışlar, bilet ödemeleri ve dijital işlemler için innclude Cüzdan sistemini devreye alabilir.

Cüzdan, yalnızca Platform içi harcamalarda kullanılmak üzere tasarlanmış kapalı devre bir dijital bakiye sistemidir.

8.2. Kullanım Kapsamı

a. Cüzdan, etkinlik bileti alımı, etkinlik içi satış noktalarında ödeme yapılması veya iş ortağı işletmelerde geçerli olan Platform içi işlemler için kullanılabilir.

b. Cüzdan bakiyesi, Platform dışı işlemlerde, üçüncü kişilere transferde veya nakit çekimde kullanılamaz.

c. innclude, cüzdanın işleyişinde bankacılık veya elektronik para kuruluşu sıfatı taşımamaktadır; sistem yalnızca katılımcıların platform içi harcamalarını kolaylaştıran dijital bakiye altyapısıdır.

8.3. Yükleme, Kullanım ve İade

a. Katılımcı veya işletme, cüzdanına yalnızca anlaşmalı ödeme kanalları üzerinden bakiye yükleyebilir.

b. Kullanılan bakiyeler, ilgili işlem tamamlandığında otomatik olarak güncellenir.

c. Kullanılmayan bakiyeler, ancak etkinlik iptali veya sistemsel hata gibi istisnai durumlarda, innclude tarafından belirlenen koşullarda iade edilebilir.

d. Cüzdan bakiyeleri faiz işlemez, hiçbir şekilde nakde çevrilemez.

8.4. İşletme Sorumlulukları

a. İşletme, cüzdan üzerinden yapılan tüm işlemlerin kaydını tutmak ve katılımcıya gerekli fatura veya makbuzu düzenlemekle yükümlüdür.

b. Cüzdan hareketlerinin muhasebeleştirilmesi ve beyanı işletmenin sorumluluğundadır.

c. innclude, işletmenin cüzdan kayıtlarını doğrulamak veya incelemek amacıyla erişim talep edebilir; bu erişim yalnızca denetim ve güvenlik amaçlıdır.

8.5. Güvenlik ve Sorumluluk Sınırları

a. innclude, cüzdan bakiyelerinin güvenliği için şifreleme, kimlik doğrulama ve işlem loglama sistemlerini uygular.

b. innclude, kullanıcı veya işletme kaynaklı hatalı işlem, dolandırıcılık, kimlik paylaşımı veya yetkisiz erişimden doğacak zararlardan sorumlu değildir.

c. innclude, şüpheli veya yasa dışı işlem tespitinde, ilgili hesabı geçici olarak askıya alabilir ve gerekli durumlarda ilgili kurumlara bildirimde bulunabilir.

8.6. Yasal Çerçeve

innclude Cüzdan, 6493 sayılı Ödeme ve Menkul Kıymet Mutabakat Sistemleri, ÖdemeHizmetleri ve Elektronik Para Kuruluşları Hakkında Kanun kapsamında elektronik para veya ödeme hizmeti olarak değerlendirilmez.

Sistem, yalnızca Platform’a entegre edilmiş kapalı devre bir dijital bakiye yönetim altyapısıdır.

MADDE 9 – İÇERİK VE TELİF HAKLARI

9.1. İçerik Sorumluluğu

İşletme, Platform üzerinden oluşturduğu etkinlikler, yüklediği görseller, videolar, açıklamalar, marka logoları, müzik kayıtları ve diğer tüm materyallerin içeriğinden münhasıran sorumludur.

innclude, kullanıcı tarafından sağlanan hiçbir içeriği önceden incelemek veya onaylamakla yükümlü değildir.

9.2. Telif, Marka ve Fikri Haklar

a. İşletme, yüklediği veya paylaştığı her türlü içeriğin telif, marka, patent veya benzeri fikrî mülkiyet haklarına sahip olduğunu veya bunları kullanma yetkisini aldığını taahhüt eder.

b. İşletme, üçüncü kişilerin fikrî mülkiyet haklarını ihlal etmesi hâlinde doğabilecek her türlü idari, cezai ve mali sorumluluğu üstlenir.

c. innclude, kendisine bildirilen ihlalleri değerlendirerek, gerekli gördüğü takdirde söz konusu içerikleri kaldırabilir veya erişimi engelleyebilir. Bu işlem nedeniyle işletme herhangi bir tazminat talebinde bulunamaz.

9.3. innclude’a Ait İçerik ve Teknoloji Hakları

a. Platform’un yazılımı, arayüzleri, veritabanları, algoritmaları, grafik ve metin unsurları, markaları ve logoları innclude’a veya lisans verenlerine aittir.

b. İşletme, innclude’a ait herhangi bir materyali veya teknolojiyi izinsiz kopyalayamaz, çoğaltamaz, tersine mühendislik yapamaz, alt lisanslayamaz veya ticari şekilde kullanamaz.

c. “innclude” markası ve logoları tescillidir; izinsiz kullanımlar marka hakkı ihlali sayılır.

9.4. İşletme İçeriklerinin Kullanım İzni

a. İşletme, Platform üzerinden oluşturduğu etkinlik, bilet veya kampanya içeriklerinin, innclude tarafından yalnızca tanıtım, istatistik, arayüz gösterimi, sosyal medya veya katalog görünürlüğü amaçlarıyla kullanılmasına peşinen izin verir.

b. Bu izin, münhasır olmayan ve ücretsiz bir kullanım hakkı sağlar; innclude içeriği üçüncü kişilere devredemez.

c. innclude, işletmenin marka değerini veya ticari itibarını zedeleyecek biçimde bu içerikleri kullanamaz.

d. İşletme, innclude’un kendi kurumsal tanıtım, reklam, dijital pazarlama ve halkla ilişkiler faaliyetleri kapsamında, Platform üzerinden yayımlanan etkinlik adlarını, logolarını, sanatçı isimlerini, görselleri veya kampanya afişlerini örnek kullanım ve referans gösterimi amacıyla

kullanmasına peşinen izin verir. Bu kullanım, münhasır olmayan, ücretsiz ve süreyle sınırlı olmayan bir lisans niteliğindedir; ancak innclude, bu içerikleri işletmenin itibarına zarar verecek biçimde veya yanlış bağlamda kullanamaz.

e. innclude, platformun ve organizatör içeriklerinin tanıtımı kapsamında oluşturduğu reklam, sosyal medya, PR, basın bülteni veya işbirliği materyallerini, yürürlükteki marka kullanımı hükümlerine uygun biçimde yayımlama hakkına sahiptir. Bu kullanım, tarafların itibarını koruma yükümlülüğü saklı kalmak kaydıyla, lisans süresi boyunca geçerlidir.

9.5. İçerik Kaldırma ve Bildirim Prosedürü

a. innclude, 5651 sayılı Kanun, Digital Millennium Copyright Act (DMCA) ve AB InfoSocDirektifi uyarınca telif veya hak ihlali bildirimleri aldığında, bildirilen içeriği geçici olarak kaldırma veya erişimi engelleme hakkına sahiptir.

b. Telif hakkı veya içerik ihlali bildirimleri [email protected] adresine yapılır.

c. İşletmenin ihlali kesinleşirse, innclude hesabı askıya alma, gelirleri bloke etme veya sözleşmeyi feshetme hakkını saklı tutar.

9.6. Kullanıcı ve Katılımcı İçerikleri

a. Etkinlik sayfalarındaki yorum, değerlendirme veya kullanıcı tarafından oluşturulan içerikler, ilgili kullanıcının sorumluluğundadır.

b. İşletme, bu içerikleri manipüle edemez, sildiremez veya yanıltıcı biçimde yönlendiremez.

c. innclude, bu içerikleri düzenleme veya kaldırma hakkını, 5651 sayılı Kanun kapsamında “yer sağlayıcı” statüsü çerçevesinde kullanır.

9.7. Uluslararası Uyum

a. innclude, telif ve fikri mülkiyet hakları bakımından Bern Konvansiyonu, WIPO Copyright Treaty ve ilgili uluslararası anlaşmalara uygun hareket eder.

b. Platform üzerinden yayımlanan tüm içeriklerin yasal statüsü, içeriğin görünür olduğu ülke hukukuna tabidir.

c. innclude, başka ülkelerde geçerli lisans ve bildirim yükümlülüklerini yerine getirmek amacıyla içerik paylaşımını sınırlayabilir.

9.8. Sorumluluk Sınırı

innclude, işletmenin yüklediği veya paylaştığı içeriklerden; telif, gizlilik, kişilik hakkı veya marka hakkı ihlallerinden doğacak zararlardan sorumlu tutulamaz.

innclude’un yükümlülüğü, yalnızca doğrudan kendi kusurunun ispatlandığı durumlarla sınırlıdır.

MADDE 10 – HESAP ASKIYA ALMA VE FESİH

10.1. Askıya Alma/Kısıtlama Sebepleri

innclude, aşağıdaki hallerde İşletme Hesabı’nı kısmen veya tamamen derhâl askıya alabilir ya da kısıtlayabilir:

a) Dolandırıcılık şüphesi, haksız kazanç, chargeback/ters ibraz riskinin artması,

b) Mevzuata aykırı, yanıltıcı veya üçüncü kişilerin haklarını ihlal eden içerik/etkinlik,

c) Güvenlik ihlali, yetkisiz erişim, API’nin usulsüz kullanımı,

d) Spam/izinsiz ticari ileti, yanlış/onaysız KVKK–GDPR süreçleri,

e) Ödeme gecikmesi, bakiye yetersizliği, sahte fatura/evrak,

f) Mahkeme/idarî makam talepleri,

g) İşbu Sözleşme, SLA veya DPA hükümlerinin ihlali.

10.2. Acil Müdahale

Güvenlik, sistem bütünlüğü veya etkinlik operasyonu sırasında ortaya çıkan teknik aksaklıkların giderilmesi amacıyla innclude, geçici erişim sağlayabilir (bkz. Madde 3/6.c). Bu müdahaleler loglanır; müdahale bitiminde erişim sonlandırılır.

10.3. Bildirim ve Düzeltme Süresi

a) Acil durumlar hariç, askıya alma/kısıtlama e-posta veya panel bildirimi ile duyurulur.

b) Düzeltilebilir ihlallerde İşletme’ye 7 gün süre tanınır. Bu sürede aykırılık giderilmezse fesih yoluna gidilebilir.

10.4. innclude’un Fesih Hakkı

Aşağıdaki hallerde innclude sözleşmeyi haklı nedenle derhâl feshedebilir:

a) Tekrarlanan/ ağır ihlal, dolandırıcılık, veriye yetkisiz erişim,

b) Yargı/idarî karar gereği hizmetin devamının mümkün olmaması,

c) 7 günlük süreye rağmen aykırılığın giderilmemesi,

d) Ödeme yükümlülüklerinin 30 günü aşan gecikmesi.

10.5. İşletme’nin Fesih Hakkı

İşletme, herhangi bir sebep bulunmaksızın tek taraflı olarak platformu kullanmayı bırakabilir veya işbu sözleşmeyi feshedip hesabını kapatabilir. Devreden ücretler, kullanılmayan paket hakları ve komisyonlar iade edilmez.

Fesih veya kalıcı kapatma hâlinde, innclude, hesabın yasal delil bütünlüğünü korumak amacıyla işlem loglarını, finansal kayıtları ve iletişim geçmişini 10 yıl süreyle saklayabilir. Bu saklama, gizlilik ihlali teşkil etmez; KVKK m.28 ve GDPR m.6(1)(c) kapsamındadır.

10.6. Fesih/Askı Sonuçları

a) Devam eden iade/chargeback süreçleri tamamlanıncaya kadar innclude, ödemeleri bloke edebilir; yasal kesintiler ve masrafları mahsup ettikten sonra kalan bakiyeyi aktarır.

b) Hesap erişimi kapanır; paneldeki raporlar 90 gün boyunca salt-okunur sunulabilir.

c) Yasal saklama yükümlülükleri saklı kalmak üzere, işlem logları ve mali kayıtlar mevzuat süresi boyunca saklanır.

d) Katılımcı hakları (iptal/erteleme bilgilendirmeleri) tamamlanıncaya kadar innclude gerekli teknik iletimleri yapabilir.

10.7. Reaktivasyon

Askı nedeni ortadan kalkarsa, innclude uygun görürse hesap yeniden etkinleştirilebilir.

Gerekirse ek teminat veya ön ödeme talep edilebilir.

10.8. Sorumluluk Sınırı

Askıya alma, kısıtlama veya fesih nedeniyle kâr kaybı, itibar kaybı, veri kaybı gibi dolaylı zararlar talep edilemez. innclude’un tazmin sorumluluğu, ilgili döneme ait hizmet bedeli/komisyon ile sınırlıdır.

10.9. Devam Hükümleri

Telif hakları, gizlilik/veri koruma (Madde 7), ödeme–iade ve vergi yükümlülükleri (Madde 6), sorumluluk sınırlamaları (Madde 3) fesih sonrası da yürürlükte kalır.

MADDE 11 – MÜCBİR SEBEPLER

Tanım ve Kapsam

Doğal afet (deprem, sel, fırtına, yangın), salgın hastalık, savaş, isyan, terör saldırısı, grev, lokavt, siber saldırı, iletişim veya internet altyapısının çökmesi, enerji kesintisi, veri merkezi arızası, kamu otoritelerinin kararları veya öngörülemeyen teknik/ekonomik koşullar nedeniyle tarafların yükümlülüklerini yerine getirememesi hâli mücbir sebep sayılır.

Hükümler

Mücbir sebep hâlinde tarafların sözleşmesel yükümlülükleri askıya alınır; bu süre zarfında hiçbir taraf gecikme, kısmen veya tamamen ifa edememe, zararın artması ya da gelir kaybı gibi nedenlerle sorumlu tutulamaz.

Bildirim Yükümlülüğü

Mücbir sebep hâline maruz kalan taraf, durumun ortaya çıkmasından itibaren en geç 10 gün içinde diğer tarafa yazılı veya elektronik bildirim yapmalıdır. Bildirim yükümlülüğünün yerine getirilmemesi hâlinde taraf, ancak ispatı hâlinde mücbir sebep savunmasından yararlanabilir.

Süre ve Sonuçlar

Mücbir sebep hâli 60 günü aşarsa taraflardan her biri sözleşmeyi feshetme hakkına sahiptir. Ancak fesih hâlinde tarafların birbirlerine karşı doğrudan veya dolaylı zarar tazmin yükümlülüğü doğmaz.

innclude’un Sorumluluğu

innclude, mücbir sebep nedeniyle hizmetin geçici olarak durması, yavaşlaması, veri kaybı veya gecikmesinden dolayı sorumlu tutulamaz.

innclude, makul koşullar içinde hizmeti en kısa sürede yeniden sağlamak için gerekli teknik ve operasyonel önlemleri almakla yükümlüdür.

MADDE 12 – HUKUK, YETKİ VE TEBLİGAT

• İşbu Sözleşme, yorumlanması ve uygulanması bakımından Türkiye Cumhuriyeti Hukuku’na tabidir.
• Milletlerarası özel hukuk kuralları uyarınca başka bir hukukun uygulanması yoluna gidilmez.
• Taraflar arasında doğabilecek her türlü uyuşmazlığın çözümünde, İstanbul (Anadolu) Mahkemeleri ve İcra Daireleri münhasıran yetkilidir.
• Türkiye dışında mukim İşletmeler için, innclude’un kayıtlı merkezinin bulunduğu ülke mahkemelerinin yetkisi saklı kalmak üzere, uyuşmazlıklar Türk Hukuku esas alınarak çözülecektir.
• Taraflar, elektronik tebligat adresi olarak [email protected] adresini; işletmeler ise kayıt sırasında beyan ettikleri e-posta adresini geçerli tebligat adresi olarak kabul eder. Bu adreslerde yapılacak değişiklikler, yazılı bildirim yapılmadıkça geçerli sayılmaz.
• innclude, uluslararası organizatörlerle doğabilecek ticari ihtilaflarda, çevrim içi tahkim platformları (ODR – Online Dispute Resolution) veya alternatif çözüm yollarını önermekte serbesttir.

Bu öneri bağlayıcı olmayıp, tarafların mahkemeye başvurma hakkını ortadan kaldırmaz.

MADDE 13 – YÜRÜRLÜK

• İşletme hesabının oluşturulması, innclude Business paneline giriş yapılması, “kabul ediyorum” onay kutusunun işaretlenmesi veya elektronik ortamda sözleşmenin onaylanması, bu Sözleşme’nin tüm hükümlerinin okunarak ve kabul edilerek yürürlüğe girdiği anlamına gelir.
• İşbu Sözleşme, elektronik onay anında yürürlüğe girer ve taraflar arasındaki dijital işlem kayıtları, elektronik imza ile aynı hukuki geçerliliğe sahiptir (5070 sayılı Elektronik İmza Kanunu ve eIDAS Regülasyonu kapsamında).
• innclude, sistem güncellemeleri, mevzuat değişiklikleri veya hizmet içeriği gereği Sözleşme hükümlerini değiştirme hakkını saklı tutar. Güncellenen metinler panel üzerinden veya e-posta yoluyla işletmelere bildirilir; bildirim tarihinden itibaren 7 gün içinde itiraz edilmemesi hâlinde yeni hükümler kabul edilmiş sayılır.
• Tarafların yazılı veya elektronik ortamda yaptıkları tüm bildirimler, hukuken geçerli tebligat hükmündedir. gerçekleştirilebilir. innclude tarafından yapılacak bildirimler, panel içi duyuru veya [email protected] üzerinden
• Sözleşmenin herhangi bir hükmünün geçersiz veya uygulanamaz olması, diğer hükümleri etkilemez; kalan hükümler yürürlükte kalır.

İletişim Bilgileri

innclude Bilet Dağıtım ve Bilişim Teknolojileri A.Ş.

[email protected] – www.innclude.com