TEXT OF THE PERSONAL DATA PROTECTION LAW

Protection of personal data is an important issue for Yasin İnşaat Turizm Gıda Taahhüt ve Ticaret Anonim Şirketi (“Company”), both for our employees and business partners, and in terms of compliance with general legislation. However, the Company attaches importance to this issue in terms of awareness of the protection of personal data in general.
Since its establishment, the Company has kept the personal data it has obtained from real persons confidential within the scope of all its activities and has taken all kinds of technical and administrative measures to protect personal data and ensure data security. The Company has adopted and implemented the confidentiality of personal data as a working principle before the entry into force of the Personal Data Protection Law No. 6698 on April 7, 2016. The fundamental basis of this practice is Europe, both the European Community Data Protection Directive No. 95/46 and the European Data Protection Regulation No. 2016/679 before the entry into force of the Personal Data Protection Law No. 6698. In this respect, the Company carries out its efforts to comply with both national and international regulations and is sensitive to the protection of personal data in this context.
In order to carry out all of its activities in compliance with the Constitution of the Republic of Turkey, the Personal Data Protection Law No. 6698 and the secondary legislation on the subject, the Company has adopted all the principles stipulated by the Personal Data Protection Law No. 6698 and fulfills its obligations regarding the processing, deletion, destruction, anonymization, transfer of personal data, informing the relevant person and ensuring data security. This KVK Policy, prepared within this scope, is made available to the access of real persons whose personal data is processed.
1.1. DEFINITIONS
“Explicit Consent” Consent given by a natural person on a specific subject, based on information and expressed with free will
“Employee” A natural person who has an employer-employee relationship or similar relationship based on an employment contract or service contract with the company
“Employee Candidate” A natural person who is in the negotiation/negotiation processes for an employer-employee relationship or similar relationship during the execution of an employment contract or service contract with the company
“PDPL” Personal Data Protection Law No. 6698
“Personal Data” Any information related to identified or identifiable natural persons
“Anonymization of Personal Data” The process of making personal data in no way associated with an identified or identifiable natural person, including matching it with other data
“Processing of Personal Data” Obtaining, recording, storing, preserving, changing, rearranging, disclosing, transferring, taking over, obtain … Any operation performed on data such as rendering, classifying, preventing its use
“Deletion of Personal Data” The process of rendering personal data inaccessible and non-reusable by the relevant users in any way
“Destruction of Personal Data” The process of rendering personal data inaccessible, non-recoverable and non-reusable by anyone in any way
“Board” Personal Data Protection Board
“Institution” Personal Data Protection Institution
“KVK Policy” Personal Data Protection Policy
“Guest” A third-party natural person who receives services within the Company’s businesses for accommodation and/or other reasons
“Customer” A third-party natural person or legal entity who purchases goods or services from the Company
“Special Personal Data” Data regarding the race, ethnic origin, political opinion, philosophical belief, religion, sect or other beliefs, appearance and dress, association, foundation or union membership, health, sexual life, criminal conviction and security measures of individuals, as well as biometric and genetic data
“Intern” Within the Company a natural person who is doing an internship to gain experience in terms of professional work life

“Company” Yasin İnşaat Turizm Gıda Taahhüt ve Ticaret Anonim Şirketi

“Other Third Party” A visitor, supplier/service provider or third party natural person whose personal data is processed based on the existing relationship between the Company

“Data Processor” A natural or legal person who processes personal data on behalf of the data controller based on the authorization granted by the data controller

“Data Controller” A natural or legal person who determines the purposes and means of processing personal data and is responsible for the establishment and management of the data recording system

1.2. PURPOSE AND SCOPE OF THE PDPL
This PDPL Policy explains the issues related to the acquisition, use, storage, transfer, destruction and other processing of personal data by the Company as stated in the Definitions section, and the technical and administrative measures taken by the Company for the protection of personal data and the rights of the relevant persons. This PDPL The policy is applied to the personal data of;
• Employees and job candidates,
• Interns,
• Company shareholders,
• Company officials,
• Visitors,
• Customers,
• Guests,
• Employees of institutions we cooperate with,
• Those who access any application and service offered by the Company, and
• Third parties,
processed within the scope of the PDP Law.
Personal data obtained by obtaining the explicit consent of the relevant persons or within the scope of other legal compliance cases listed in the PDP Law are processed for the fulfillment of the Company’s legal obligations, the proper provision of its services, the increase in the quality of the services provided, and the improvement of its quality policy, and other purposes specified in this PDP Policy.
2. PROCESSING OF PERSONAL DATA
2.1. GENERAL PRINCIPLES REGARDING PROCESSING OF PERSONAL DATA
The Company complies with the principles listed in Article 4 of the Personal Data Protection Law while performing personal data processing activities.
Compliance with the law and rules of honesty
The Company takes care to process personal data obtained from the relevant person or third party in accordance with the rules of data protection law and data protection regulations. In this context, the Company ensures that the data is processed within the framework of legal compliance by questioning the sources from which the data is obtained. On the other hand, the Company acts in a way that will meet the interests and reasonable expectations of the relevant person or third parties within the framework of the data processing activity and duly fulfill its legal obligations.
Accurate and up-to-date when necessary
The Company attaches importance to the accuracy of the data obtained from the relevant person or third party and required in the processing of personal data, not containing false information and, in the event of a change in the content of the data as a result, keeping these data up-to-date. In addition, the Company shows due care and attention to ensure that the information contained in the data is accurate and up-to-date when necessary.
Processing for specific, clear and legitimate purposes:
The Company does not define the purposes broadly while determining the purposes of data processing during the process of personal data processing. The purposes of processing personal data by the Company are specific and clear to the relevant persons. In this context, it is clearly identifiable which of the legal processing conditions the purpose of processing personal data determined by the Company is based on. However, the purposes of processing personal data determined by the Company are determined as legitimate purposes in order not to harm the interests of the Company and the fundamental rights and freedoms of the relevant person or third parties.
Being connected, limited and proportionate to the purpose for which they are processed:
The Company carries out the processing of personal data only in connection with the processing purpose. On the other hand, the processing of personal data by the Company is carried out only in a manner limited to the specified personal data processing purposes. In this context, the Company also checks whether the purposes that may arise later during the processing of personal data are in line with the purposes notified to the relevant person or third parties. However, the Company does not collect data that is not required in line with the purposes it has determined for the processing of personal data. The Company acts with the awareness of data minimization in the personal data processing process.
Storage for the period stipulated in the relevant legislation or required for the purpose for which they are processed:
The Company will store personal data for the period stipulated in the legislation or required for the purpose of processing. If the period stipulated in the legislation or required for the purpose of processing is complete, the purpose of processing has been realized or eliminated, or the purpose of processing is not necessary for personal data, the Company deletes, destroys or anonymizes personal data.
The principles stated above apply to all personal data processing processes in which the Company is involved as a data controller or data processor, regardless of the conditions for processing personal data. In this context, the Company fulfills all its obligations, including the obligation to inform, in the context of the principles stated above, under the PDP Law.
2.2. CONDITIONS FOR PROCESSING PERSONAL DATA
The Company processes personal data in accordance with the processing conditions stipulated in Articles 5 and 6 of the PDP Law and the general principles regarding the processing of personal data.
In this context, the Company processes non-special personal data in accordance with Article 5 of the Personal Data Protection Law, in the context of explicit consent or other processing conditions listed below:
• It is explicitly provided for in the laws.
• It is necessary for the protection of the life or physical integrity of the person or another person who is unable to express his/her consent due to a de facto impossibility or whose consent is not legally valid.
• It is directly related to the establishment or performance of a contract.

With, the processing of personal data belonging to the parties to the contract is necessary.

• It is mandatory for the data controller to fulfill its legal obligation.

• It has been made public by the relevant person.

• Data processing is mandatory for the establishment, exercise or protection of a right.

• Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the relevant person.

In addition, the Company acts in accordance with the data processing conditions listed in the processing of special personal data and in compliance with the measures announced by the Board. In this context, special personal data is processed in accordance with the processing conditions in Article 6 of the PDP Law:
• The explicit consent of the relevant person
• It is mandatory for the protection of the life or physical integrity of the relevant person who is unable to express his/her consent due to a de facto impossibility or whose consent is not granted legal validity, or for the protection of his/her own or another person’s life or physical integrity
• It is in accordance with the will of the relevant person to make public and regarding the personal data he/she has made public
• It is mandatory for the establishment, exercise or protection of a right
• It is necessary for the protection of public health, preventive medicine, medical diagnosis, treatment and care services by persons under the obligation of confidentiality or authorized institutions and organizations, and for the planning, management and financing of health services
• It is mandatory for the fulfillment of legal obligations in the fields of employment, occupational health and safety, social security, social services and social assistance
• It is mandatory for the compliance with the legislation and purposes to which foundations, associations and other non-profit organizations or formations established for political, philosophical, religious or union purposes, limited to their fields of activity and not disclosed to third parties; to its current or former members and affiliates or to persons who are in regular contact with these organizations and formations
2.3. PURPOSES OF PROCESSING PERSONAL DATA
The Company processes personal data for the following purposes within the framework of the legal reasons set forth in Articles 5 and 6 of the Personal Data Protection Law:
Within the scope of planning and execution of the Company’s human resources activities;

• Personal data of employee and intern candidates, to assess their suitability for the job and to carry out personnel recruitment processes
• In order to carry out the internship program so that interns can experience professional working life at the Company
• Personal data of employees are processed for the execution of the employment contract, establishment of fringe benefits, execution of promotion/bonus/increase processes,
• Fulfillment of obligations arising from the legislation to which the Company is subject, especially the Labor Law, carrying out social insurance processes, evaluation of employee performance, etc.

In addition, the Company processes personal data within the scope of ordinary company activities and services provided to its customers;
• Conducting accommodation service sales processes and providing after-sales support services,
• Providing accommodation services to customers in the Company’s accommodation facility,
• Providing the service to the customer within the context of the service contract between the Company and the customer,
• Carrying out payment transactions within the context of the service contract to be concluded between the Company and the customer,
• Carrying out logistics activities within the context of the Company’s commercial activities,
• Planning and executing the Company’s corporate sustainability activities, event management, management of relations with business partners or suppliers, execution/follow-up of financial reporting and risk management transactions, execution/follow-up of legal affairs, planning and executing corporate communication activities, execution of corporate governance activities, execution of corporate and partnership law transactions, management of investor relations
• Ensuring the security of the Company’s buildings and facilities
• Taking necessary security measures for the accommodation of customers staying at the Company
• Providing site access to users through the Company’s website
• Offering customers the opportunity to make reservations and sell accommodation through the Company’s website,
• Internet and other digital access authorizations at the Company and executing assignment processes, determining and implementing the Company’s commercial and business strategies
• Resolving the problems and complaints of the relevant persons, ensuring customer satisfaction and providing an effective service, responding to information requests from administrative and judicial authorities, ensuring compliance with legal processes and legislation, ensuring information and transaction security and preventing misuse, etc.

2.4. METHOD OF COLLECTION OF PERSONAL DATA
The Company collects personal data in accordance with the personal data processing conditions specified in the Personal Data Protection Law and in line with the text of this Policy. Personal data, contracts, id

and notifications from judicial authorities are collected through electronic mail and other digital communication tools, by auditory, electronically automatically or in writing, but only if they are part of a data recording system.
On the other hand, when the services offered by the Company are used, a legal relationship is established with the Company or when the Company is contacted by mail, e-mail, etc. regarding the services, personal data can be obtained.
The Company takes care to act in accordance with the law in line with the principles set forth in this Policy text when obtaining personal data from both its business partners and solution partners. Data is collected from business partners and solution partners with a commitment to data confidentiality and only as much data as the service requires, and measures are taken to ensure data security at this point.
In addition, while obtaining the personal data of its employees and customers, the Company ensures confidentiality and the protection of personal data while processing personal data as necessary for business and service relationships and in other cases permitted by the relevant legislation, but in cases where it is not permitted, by obtaining explicit consent.
3. TRANSFER OF PERSONAL DATA
The Company transfers personal data to third parties within the country only for the purposes specified in this PDP Policy and in accordance with Article 8 of the PDP Law. In addition, the Company transfers data abroad based on the supply of goods or services received from companies based abroad in order to continue the Company’s commercial activities and data processing activities by informing the relevant persons through information texts in accordance with Article 9 of the PDP Law. Regarding the transfer of data abroad, the Company resorts to the method of concluding a Standard Contract with the relevant foreign companies, which is one of the appropriate assurance methods in Article 9 of the PDP Law. Within the scope of this method, the Standard Contracts concluded are notified to the Institution.
Within this scope, the Company may transfer the personal data it collects to the following persons and institutions for certain purposes:
• To the Company’s business partners, limited to the purpose of establishing the business partnership
• To the Company’s suppliers, limited to the purpose of providing the Company’s service facility and carrying out the Company’s commercial activities in this context
• To the companies from which the Company receives service, limited to the purpose of providing the Company’s service facility and carrying out the Company’s commercial activities in this context
• To authorized public institutions and organizations upon request from the Company
The purpose of the Company sharing personal data is to ensure that the services are provided and accessed by the facility and customers/guests, to fulfill its legal obligations, to ensure the implementation of the contract it has concluded with the relevant person, to carry out purchase and sale transactions or to prevent and detect fraudulent or illegal activities related to the services and to carry out its other commercial activities in accordance with the law.
The Company shares data with third parties to whom the personal data that is the subject of the processing activity is transferred only to the extent required by the service. Utmost care is taken to take measures regarding data security during data transfer. On the other hand, all necessary measures are taken to ensure data security for third parties to whom the transfer is made. In this context, in addition to technical measures to ensure data security; it is also legally protected through data transfer agreements.

4. STORAGE AND DESTRUCTION OF PERSONAL DATA
Personal data is kept accurate and up-to-date by the Company in accordance with the KVK Law and is stored for the period stipulated in the relevant legislation or required for the purpose for which it is processed. The storage period is determined separately for each personal data and in accordance with the nature of the data. The Storage and Destruction Policy is in force for the Company to monitor the in-house procedures for the storage or destruction of personal data, and the storage and destruction processes are managed within the scope of this Policy.

When the period required for the storage process expires, the relevant personal data is deleted, destroyed or anonymized in accordance with the periodic destruction periods determined in the Regulation on the Erasure, Destruction or Anonymization of Personal Data.

When the relevant persons apply to the Company and request the deletion or destruction of their personal data, the Company;

• If all the conditions for processing personal data have been eliminated, the personal data subject to the request will be deleted, destroyed or anonymized. It will finalize the request of the relevant person within 30 (thirty) days at the latest and inform the relevant person.

• If all the conditions for processing personal data have been eliminated and the personal data subject to the request has not been transferred to third parties.

If so, it notifies the third party of this situation; ensures that the necessary procedures are carried out with the third party.

• If all the conditions for processing personal data have not been eliminated, the Company may reject this request by explaining the reason in accordance with the third paragraph of Article 13 of the PDP Law and notify the relevant person of the rejection in writing or electronically within thirty days at the latest.

5. TECHNICAL AND ADMINISTRATIVE MEASURES TAKEN TO ENSURE THE SECURITY OF PERSONAL DATA
The Company takes all necessary technical and administrative measures arising from the nature of the data and in terms of the PDP Law and other legislation during the personal data processing activity. Moreover, if the subject of the data processing activity is special personal data, the Company implements additional measures for this data. The functionality of the technical and administrative measures implemented by the Company is checked periodically, to the extent required by the data processing activity.

Within the scope of the technical and administrative measures taken to ensure data security, the Company;

• Organizes regular training and awareness activities on the protection of personal data for its employees.
• The Company creates policies based on the personal data processing inventory and designs the necessary processes for the implementation of the policies.
• The Company identifies its risks within the scope of personal data protection law and meticulously carries out studies to eliminate the risks. In this context, it creates active disclosure and explicit consent channels.
• It carries out periodic internal audits to fulfill its obligations regarding personal data protection law.
• It constantly provides legal consultancy services regarding compliance with the updated legislation.
• It creates a separate policy for the protection of special personal data and implements additional measures determined by the Board.
• It implements necessary measures such as data sharing agreements etc. regarding the management of relations with data processors.
• It creates a secure technical infrastructure to ensure the security of the databases where personal data will be stored.
• It determines the procedures for reporting the technical measures taken and audit processes.
• Security-related measures are periodically renewed and improved.
• Network security and application security are provided.
• A closed system network is used in personal data transfers via the network.
• Key management is implemented.
• Security measures are taken within the scope of information technology systems procurement, development and maintenance.

• Security of personal data stored in the cloud is ensured.

• An authorization matrix has been created for employees.

• Access logs are kept regularly.

• Corporate policies have been prepared and implemented regarding access, information security, usage, storage and destruction.

• Data masking measures are implemented when necessary.

• Authorizations of employees who change their duties or leave their jobs are removed in this area.

• Up-to-date anti-virus systems are used.

• Firewalls are used.

• Personal data security issues are reported quickly.

• Personal data security is monitored.

• Security of environments containing personal data is ensured.

• Personal data is backed up and the security of backed up personal data is also ensured.

• User account management and authorization control systems are implemented and these are also monitored.

• Log records are kept in a way that prevents user intervention.

• Intrusion detection and prevention systems are used.

• Cyber ​​security measures have been taken and their implementation is continuously monitored.

• Encryption is performed.
• Penetration testing is performed.

• Data loss prevention software is used.

Despite the necessary technical or administrative measures taken by the Company, in the event that personal data is damaged or accessed by unauthorized third parties as a result of attacks by third parties, the Company will immediately take action regarding the breach in question. In this case, the Company will minimize the damage that will occur to the relevant person due to the data breach. Moreover, in the event of a breach, the Company will notify the Board as soon as possible as required by the PDP Law.

6. RIGHTS OF RELEVANT PERSONS ON THEIR PERSONAL DATA
According to Article 20, paragraph 3 of the Constitution of the Republic of Turkey, everyone has the right to the protection of personal data related to them. In addition, everyone can apply to the data controller regarding their rights in Article 11 of the PDP Law regarding their personal data related to them. According to Article 11 of the Personal Data Protection Law, the rights of the relevant person regarding his/her personal data are as follows:
• To learn whether his/her personal data has been processed,
• To request information regarding his/her personal data if it has been processed,
• To learn the purpose of processing his/her personal data and whether it has been used in accordance with its purpose,
• To learn whether it is used in Turkey or abroad

rt,
• To request correction of personal data if it is processed incompletely or incorrectly,
• To request deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the Personal Data Protection Law,
• To request notification of deletion, destruction or correction processes to third parties to whom personal data is transferred,
• To object to the emergence of a result against the data owner by analyzing the processed data exclusively through automatic systems,
• To request compensation for the damage in case of damages due to unlawful processing of personal data,

The persons concerned must submit their requests regarding the above-mentioned rights to the Company in accordance with the application procedures specified in the Communiqué No. 30356 and dated March 10, 2018 on the Procedures and Principles of Application to the Data Controller. Depending on the nature of this request, the request will be finalized by the Company free of charge as soon as possible and within 30 (thirty) days at the latest. However, if the transaction requires an additional cost, the Company may charge the fee in the tariff determined by the Board.
The relevant person may submit their requests within the scope of their rights listed in Article 11 of the Personal Data Protection Law in writing or by using the registered electronic mail (KEP) address, electronic signature, mobile signature or the electronic mail address previously notified to the Company by the relevant person and registered in the Company’s system.
The application must include:
• Name, surname and signature if the application is in writing,
• Turkish Republic identity number for citizens of the Republic of Turkey, nationality, passport number or identity number if available for foreigners,
• Residence or workplace address for notification,
• E-mail address, telephone and fax number for notification, if available,
• Subject of the request

and information and documents related to the subject must be attached to the application. Applications will only be evaluated if they are in Turkish. However, if the relevant person is a foreign national, it is possible to submit them in English if a reasonable cause is presented. In order for third parties to submit an application on behalf of the relevant persons, there must be a special power of attorney issued by the relevant person through a notary public in the name of the person who will make the application. In this context, we would like to remind you that the application can be made using the “Relevant Person Application Form” in the annex of this Policy text.

7. CHANGES TO BE MADE IN THE KVK POLICY
The Company may make changes to this KVK Policy at any time. These changes shall become effective on the day the new amended KVK Policy is published. In order to be informed of the changes in this KVK Policy, the necessary information will be provided to the relevant persons and the changes made to this Policy text will be indicated in the table below, by providing the changed articles and the change explanations.
CHANGES TABLE
ARTICLE NUMBER CHANGE DATE EXPLANATIONS

POLICY TEXT RELATED PERSON APPLICATION
Our Company, as the Data Controller, has prepared this Application Form in order to ensure that the Relevant Persons exercise these rights and to fulfill the obligation of informing in Article 10 of the KVKK and the matters included in the Policy Text.
Pursuant to Article 11 of the KVKK, you can exercise your following rights by applying to Ahama Living and filling out the attached form:
a) You can learn whether your personal data has been processed,
b) If your personal data has been processed, you can request information about it,
c) You can learn the purpose of processing your personal data and whether it is used in accordance with its purpose,
d) You can learn the third parties to whom your personal data has been transferred, domestically or abroad,
e) If your personal data is processed incompletely or incorrectly, you can request correction,
f) You can request the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the KVKK,
g) You can request that the transactions carried out in accordance with clauses (e) and (f) be notified to third parties to whom personal data has been transferred,
h) You can object to the emergence of a result against you by analyzing the processed data exclusively through automated systems, and
i) You can request compensation for the damages you suffer due to the processing of your personal data in violation of the KVKK.
In accordance with Article 13 of the KVKK, data owners must submit their requests to our Company in writing or by other methods determined by the Personal Data Protection Board (“Board”). In this context, applications to our Company can be sent to us free of charge by filling out this form, taking a printout, and choosing one of the three methods below. In the event that the transaction requested by the Relevant Persons requires an additional cost, our Company will provide the requested information to the Personal Data Protection Board in accordance with the method determined by the Personal Data Protection Board.

The fee stated will be charged.
No. Application Method Address Where Application Should Be Made
1 Apply in person by coming to our Company with a signed copy of the form Yanıklar Mahallesi, Muğla Caddesi, No:1, Fethiye/Muğla “Personal Data Protection Information Request” should be written on the envelope. It is also mandatory to have documents proving your identity with you.
2 Apply as a result of serving a signed copy of the form through a notary Yanıklar Mahallesi, Muğla Caddesi, No:1, Fethiye/Muğla “Personal Data Protection Information Request” should be written on the notification envelope.
3 Apply via e-mail with the form registered to the e-mail address registered electronic mail (KEP), secure electronic signature, mobile signature or electronic signature previously notified and registered in the system [email protected] The subject of the e-mail should be “Personal Data Protection Information Request”.

It is not possible for third parties to exercise the right to obtain information regulated in Article 11 of the KVKK on behalf of data owners. In order for the data owner to make a request regarding personal data related to a person other than himself/herself, the original copy of the special power of attorney issued by the data owner on behalf of the person who will apply must be presented, signed in wet ink and approved by a notary.

Your applications sent to us will be answered within thirty days from the date your request reaches our Company, depending on the nature of the request, in accordance with Article 13/2 of the KVKK. Our responses will be delivered to you in writing or electronically in accordance with Article 13 of the KVKK.

RELATED PERSON APPLICATION FORM
This application form has been prepared to determine your relationship with Yasin İnşaat Turizm Gıda Taahhüt ve Ticaret A.Ş. (“Company”), to determine your personal data processed by our Company, if any, in full, and to respond to your relevant application correctly and within the legal period. In order to eliminate legal risks that may arise from unlawful and unfair data sharing and especially to ensure the security of your personal data, our Company reserves the right to request additional documents (identity card, etc.) for identification and authorization. In the event that the information regarding your requests submitted within the scope of the form is not accurate and up-to-date or an unauthorized application is made, our Company does not accept liability for requests arising from such incorrect information or unauthorized applications. In addition, please do not share documents/information containing personal data, except when required by the nature of the work performed. If there is personal data in the documents sent, please delete the relevant personal data from the document or share it by anonymizing it. We have no responsibility for the personal data you have shared, even though it is not required by the nature of the work. Name:
Surname:
TCKN
Phone Number:
E-mail:
Address:
Your business relationship with our company (Customer, business partner, candidate employee, former employee, third party company employee, shareholder, etc.)

The unit you are in contact with within our company

Please indicate your preference regarding the response to your application
□ I want it to be sent to my address.
□ I want it to be sent by e-mail.
□ I want it to be delivered by hand.

Please indicate which of your rights under Article 11 of the KVKK you are applying for and/or which ones

Explanation and request regarding your application (Please specify your request within the scope of the KVKK in detail)

Please indicate the relevant documents that may be additional to your application under this heading.

Applicant:
Name Surname:
Application Date:
Signature: