TIM - Türkiye Exporters Assembly - Digital Incentive Tracking Module (DTTM)

About DTTM

The Digital Incentive Tracking Module (DTTM) is an institutional digital automation infrastructure developed to ensure that state support mechanisms introduced under the Presidential Decision No. 5986 dated 20 August 2022 on E-Export Supports, and the related Communiqué issued pursuant thereto, are implemented in a manner that is compliant with the applicable legislation, transparent, traceable, and auditable in digital environments.

DTTM has been structured to enable the calculation, verification, and lawful evaluation of the following support instruments related to e-export activities:

Market Entry Report Support
Digital Marketplace Promotion Support
E-Export Promotion Support
Order Fulfillment Service Support
Overseas Marketplace Integration Support
Online Store Support and Services Obtained from E-Commerce Stakeholders in Target Countries
Marketplace Commission Expense Support

Within this framework, DTTM:

Classifies eligible expenditure items through a systematic and standardized methodology;
Verifies relevant financial data via secure digital integration infrastructures;
Applies support rates and upper limits as defined under the applicable legislation;
Automatically calculates entitlement amounts;
Generates audit-ready, traceable, and consistent application outputs.

The system has been designed exclusively to support processes related to the lawful utilization of state incentives. It does not engage in commercial performance analysis, marketplace optimization, competitive monitoring, or data mining activities. All data processing activities are conducted based on explicit consent, in accordance with the principle of data minimization and the applicable data protection legislation.

Data Retrieval and Verification Process via Amazon

Within the scope of DTTM, financial data forming the basis of incentive calculations in relation to e-export activities conducted through international digital marketplaces are obtained through secure digital integration mechanisms, subject to the explicit consent and authorization of the relevant sellers.

With respect to Amazon specifically, eligible financial elements subject to support—such as:

Advertising expenditure items;
Marketplace commission expenses;
Order fulfillment, storage, and logistics expenses;

are verified via authorized API infrastructures, in accordance with existing technical capabilities and platform policies.

During this data retrieval and verification process:

User credentials are not stored;
Unauthorized access to data is not performed;
No commercial use is made beyond incentive calculation purposes;
Data is not shared with third parties;
Data processing activities are carried out strictly within the scope of the applicable legal framework.

Data obtained from Amazon is evaluated solely for the purposes of enhancing the accuracy and consistency of incentive applications, ensuring the effective allocation of public funds, and facilitating audit and compliance processes.

Pricing & Fee Commitment Statement

DTTM is provided as a public compliance and incentive support infrastructure for Turkish Exporters.

Application Fee Policy

The DTTM application is provided completely free of charge to all Authorized Users.

The application is FREE to access.
The application is FREE to use.
There are NO subscription fees.
There are NO API access fees.
There are NO usage-based charges.

All costs are covered by Türkiye Exporters Assembly.

API Cost Responsibility

All API-related fees, subscription costs, and infrastructure expenses are fully covered. No part of these costs is transferred to participating sellers.

Security and Authorization

Permissions are granted exclusively through Amazon's official OAuth authorization mechanism. DTTM does not store Amazon usernames or passwords.

Privacy Policy

DTTM – Privacy and Data Protection Policy

DTTM (Digital Incentive Tracking Module) is an institutional digital infrastructure developed to ensure that e-export incentive processes are verified, reported, and managed in compliance with applicable legislation. This Privacy and Data Protection Policy explains the scope and principles under which DTTM collects, processes, stores, protects, and manages data through the Amazon Services API (SP-API) and other integrations. The platform processes data solely on behalf of Amazon Authorized Users and strictly based on their explicit authorization. Authorization is obtained through Amazon's OAuth-based third-party access mechanism, and DTTM never requests or collects Amazon passwords or access keys from users.

DTTM fully complies with the Amazon Solution Provider Agreement, the Amazon Acceptable Use Policy (AUP), the Amazon Data Protection Policy (DPP), the General Data Protection Regulation (GDPR), the Turkish Personal Data Protection Law No. 6698 (KVKK), and all other applicable national and international data protection regulations. The platform does not engage in any data processing activity that would violate Amazon policies and does not facilitate any breach of contractual obligations between Authorized Users and Amazon.

DTTM processes only the data necessary to provide its services. Such data may include order and transaction identifiers, sales and financial summary data, incentive-eligible expense items, and performance reports. In addition, system logs, API call records, access timestamps, and authorization token information may be processed for system security and performance monitoring purposes. All processing activities are conducted in accordance with the principle of data minimization, and no data outside the scope of the service is requested or accessed.

With regard to Personally Identifiable Information (PII), DTTM adopts a strictly limited processing approach. Amazon customer data is not used for marketing, advertising, profiling, or commercial analytics. Access to unnecessary personal data fields is not requested, and personal data is never treated as a commercial asset. PII is processed only when required by the nature of the relevant transaction or by legal obligation. Any direct or indirect marketing to Amazon customers using Amazon-derived data is strictly prohibited.

The data collected is processed exclusively for incentive eligibility verification, expense reconciliation, financial analysis, reporting, auditing, and regulatory compliance purposes. Data is never used for marketing, advertising, profiling, competitive intelligence, resale, or generating commercial insights about Amazon's business operations. DTTM does not combine Amazon data with external data services and does not aggregate data across different Authorized Users for commercial purposes.

No data processed within DTTM is sold, rented, licensed, or commercially transferred to third parties. Data may only be disclosed upon the explicit written request of the Authorized User, in response to a legal obligation, or as required by official audit procedures. Outside of these limited circumstances, no data is shared with third-party individuals, institutions, or organizations. DTTM expressly commits not to sell data and not to share data with third parties for commercial purposes.

DTTM implements strong technical and organizational measures to ensure data security. Data transmission is encrypted via TLS/HTTPS protocols. Systems are protected through role-based access control mechanisms, and access activities are logged and monitored through anomaly detection systems. API usage strictly adheres to throttling and rate-limit requirements. Secure server infrastructure, access restrictions, and monitoring systems are implemented to prevent unauthorized access. Organizational measures include confidentiality agreements, access authorization matrices, regular security audits, and ongoing data protection awareness training.

Data is retained only for the duration necessary to fulfill the relevant legal and operational purposes. Upon expiration of the retention period, data is anonymized or permanently deleted using irreversible deletion methods. Data deletion and disposal processes are conducted in a manner that ensures confidentiality and integrity.

Authorized Users have the right, in accordance with applicable law, to access their processed data, request corrections, request deletion (subject to legal retention obligations), and obtain information about processing activities. Requests are evaluated and resolved within the legally prescribed timeframes.

DTTM commits to full compliance with Amazon policies and applicable legislation, to notifying Amazon of relevant organizational changes when required, and to continuously improving its data protection processes through internal audit mechanisms. The platform is open to technical and contractual compliance audits that may be conducted by Amazon.

DTTM explicitly declares that no data processed within the platform will be sold, commercially exploited, or shared with unauthorized individuals or entities. All data processing activities are conducted strictly within the scope of authorized use and limited purposes.

Terms of Services

DTTM – Terms of Use

These Terms of Use ("Terms") govern access to and use of the DTTM (Digital Incentive Tracking Module) platform, including any dashboards, reports, APIs, and integrations (collectively, the "Service"). By accessing or using the Service, you ("User" or "Authorized User") agree to be bound by these Terms. If you do not agree, you must not use the Service.

1. Overview and Purpose of DTTM

DTTM is an institutional digital infrastructure designed to support the compliant, transparent, and auditable management of e-export incentive workflows. The Service provides tools that help Authorized Users verify incentive eligibility, reconcile expense and transaction records, generate compliance-ready reports, and maintain an auditable evidence trail for financial and regulatory controls.

DTTM does not function as a marketplace, payment processor, fulfillment provider, or legal advisor. DTTM provides a structured data processing and reporting environment to assist Authorized Users in organizing and substantiating incentive-related business records. Any decisions related to incentive applications, eligibility, or statutory submissions remain the sole responsibility of the Authorized User.

2. Who May Use DTTM (Eligibility)

The Service is intended exclusively for individuals who are legitimately authorized to operate an Amazon seller or vendor account (an "Amazon Partner") and who are permitted to access Amazon systems and services as an "Authorized User" under Amazon's policies and agreements. By using DTTM, you represent and warrant that you have legal authority to access, use, and share the relevant account data with DTTM through Amazon's authorization mechanisms.

3. Relationship with Amazon and Policy Alignment

DTTM is a Solution Provider tool that interfaces with Amazon Services API (SP-API) solely to perform permitted business functions on behalf of Authorized Users. DTTM is designed to operate in compliance with Amazon's requirements, including the Amazon Solution Provider Agreement, the Acceptable Use Policy (AUP), and the Data Protection Policy (DPP). Users must not use the Service in any manner that violates their agreements with Amazon, Amazon's policies, or applicable law.

If DTTM reasonably suspects misuse, unauthorized activity, circumvention of policies, or activity that could violate Amazon agreements, DTTM may suspend or terminate access and may take additional steps consistent with its compliance obligations.

4. Why DTTM Accesses Amazon Data (Detailed Purpose and Legal Use)

DTTM accesses Amazon data only to enable the Service's core compliance and incentive-tracking functions. Specifically, DTTM may retrieve and process data to:

Verify incentive-eligible transactions and expenditures by reconciling transactional records with documented expense items and statutory requirements.
Generate structured compliance reports (e.g., period-based summaries, transaction-level reconciliations, exception lists, and audit logs) needed for lawful reporting and audit readiness.
Perform consistency and integrity checks to reduce manual errors and identify missing, inconsistent, or duplicate entries that could materially affect an Authorized User's incentive documentation.
Enable traceability and auditability by maintaining time-stamped processing logs and an evidence trail showing which records were used to produce which outputs.
Provide operational dashboards to help Authorized Users monitor reporting completeness, data quality, and compliance status across defined reporting periods.

DTTM does not access Amazon data to create marketing audiences, target Amazon customers, fabricate reviews, publish insights about Amazon's business, or aggregate data across multiple Authorized Users for resale or competitive intelligence.

5. Authorization and Access Method (OAuth Only)

Access to Amazon data is granted only through Amazon's OAuth-based third-party authorization flow. DTTM does not request, collect, or store Amazon Portal usernames, passwords, or access keys. Users must never share their Amazon credentials with DTTM or any third party. The scope of data access is limited to the permissions the Authorized User explicitly grants through Amazon's authorization mechanism and to what is necessary for DTTM functionality.

6. Data Minimization and Scope Control

DTTM follows the principle of data minimization: it requests and processes only the minimum data required to provide the Service features requested by the Authorized User. DTTM does not intentionally retrieve or process data that is not necessary for the Service. Users acknowledge that some data elements may be required to produce compliance-grade reconciliations and reports, and the scope of data retrieval may vary depending on enabled modules and reporting needs.

7. Prohibited Uses (Strict Restrictions)

You may not use DTTM to:

Use Amazon-derived data to market to Amazon customers or to conduct customer targeting.
Sell, rent, license, redistribute, or otherwise commercially exploit Amazon-derived data.
Aggregate data across different Authorized Users for any commercial purpose or to provide insights to third parties.
Attempt to circumvent Amazon throttling, quotas, or security controls, including by using multiple accounts or regions to bypass limits.
Provide, promote, or use external (non-Amazon) data services that vend data retrieved from Amazon websites or portals.
Modify or manipulate data in a deceptive way or misrepresent outputs as "Amazon certified" or "Amazon endorsed."
Engage in unlawful, fraudulent, misleading, or harmful activity.

8. Security Measures and User Responsibilities

DTTM implements technical and organizational safeguards to protect confidentiality, integrity, and availability of data, including encryption in transit, role-based access controls, monitoring, and audit logging. Users are responsible for securing their own devices, user accounts, and internal access. Users must promptly notify DTTM if they suspect unauthorized access, compromise, or misuse. DTTM may restrict access to protect the Service, the Authorized User, and compliance obligations.

9. Data Retention and Deletion

DTTM retains data only as long as necessary to deliver the Service and meet legal or audit requirements applicable to the Authorized User's incentive recordkeeping obligations. Upon expiration of relevant retention periods or upon lawful request (subject to mandatory retention obligations), data may be anonymized or permanently deleted using irreversible methods. Details are further described in the DTTM Privacy and Data Protection Policy.

10. Third-Party Sharing and "No Data Resale" Commitment

DTTM does not sell data and does not share data with third parties for commercial purposes. Data may be disclosed only when (i) explicitly requested in writing by the Authorized User, (ii) required by law, or (iii) required for official audit or regulatory procedures. DTTM does not combine Amazon data with external data services and does not create cross-user aggregated datasets for third-party consumption.

11. Intellectual Property

All rights, title, and interest in and to the Service, including software, architecture, dashboards, reports templates, and documentation, are owned by DTTM and/or its licensors. Amazon trademarks and IP remain the property of Amazon. These Terms grant no license to Amazon IP beyond what is necessary to use the Service as permitted.

12. Service Availability, Changes, and Support

DTTM may update, modify, or discontinue portions of the Service to improve security, performance, or compliance, or to align with Amazon policy changes. DTTM does not guarantee uninterrupted availability and may perform maintenance. Where feasible, DTTM will provide reasonable notice of material changes.

13. Suspension and Termination

DTTM may suspend or terminate access immediately if it reasonably determines that: (i) the User violates these Terms, Amazon policies, or applicable law; (ii) the User's activity poses a security or compliance risk; or (iii) continued access could jeopardize Amazon API access or the integrity of the Service. Upon termination, the User's access will cease and data handling will follow the Privacy Policy and applicable legal requirements.

14. Disclaimers

DTTM provides decision-support tooling and does not guarantee: (i) approval of any incentive application, (ii) completeness or accuracy of third-party data sources, or (iii) specific outcomes. Reports and analytics are produced based on available data and authorized scopes and should be reviewed by the Authorized User prior to any regulatory submission.

15. Limitation of Liability

To the maximum extent permitted by applicable law, DTTM shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of profits, business interruption, loss of data, or loss of goodwill arising out of or related to use of the Service.

16. Changes to These Terms

DTTM may revise these Terms to reflect changes in law, Amazon policies, or operational requirements. Updated Terms will be posted with a revised "Last Updated" date. Continued use of the Service after changes constitutes acceptance of the updated Terms.

17. Governing Law

These Terms shall be governed by and construed in accordance with the applicable laws of the jurisdiction in which DTTM is established, without prejudice to mandatory rules that may apply to the Authorized User.

Security & Authorization Policy

DTTM (Digital Incentive Tracking Module) is an institutional digital infrastructure designed to ensure that e-export incentive processes are verified, reported, and managed in compliance with applicable legislation. This Security & Authorization Policy explains the security measures and authorization processes in place to protect data and ensure compliance with Amazon SP-API requirements.

1. Data Security Measures

DTTM implements strong technical and organizational measures to ensure data security. Key security measures include:

Data Encryption: All data transmissions are encrypted using industry-standard SSL/TLS protocols. Data at rest is encrypted using AES-256 encryption.
Access Control: Role-based access control mechanisms are in place to restrict access to data and system functionalities based on user roles and permissions.
Monitoring and Logging: Access activities and system events are logged and monitored through anomaly detection systems to detect and respond to unauthorized access attempts.
API Throttling: API usage strictly adheres to throttling and rate-limit requirements to prevent abuse and ensure fair usage.
Secure Infrastructure: Secure server infrastructure, access restrictions, and monitoring systems are implemented to prevent unauthorized access.
Organizational Measures: Confidentiality agreements, access authorization matrices, regular security audits, and ongoing data protection awareness training are in place to ensure compliance with security policies.

2. Authorization Process

Access to Amazon data is granted only through Amazon's OAuth-based third-party authorization flow. Key aspects of the authorization process include:

OAuth 2.0: DTTM uses OAuth 2.0 for secure authentication and authorization. Users must authorize DTTM to access their Amazon account through Amazon's authorization mechanism.
Scope of Access: The scope of data access is limited to the permissions the Authorized User explicitly grants through Amazon's authorization mechanism and to what is necessary for DTTM functionality.
Access Tokens: API credentials are stored in secure vaults with restricted access. Access tokens are used to authenticate API requests and are valid for a limited time.
Revocation: Users can revoke access to DTTM at any time through Amazon's authorization management interface.

3. Data Minimization and Scope Control

4. Prohibited Uses (Strict Restrictions)

You may not use DTTM to:

Use Amazon-derived data to market to Amazon customers or to conduct customer targeting.
Sell, rent, license, redistribute, or otherwise commercially exploit Amazon-derived data.
Aggregate data across different Authorized Users for any commercial purpose or to provide insights to third parties.
Attempt to circumvent Amazon throttling, quotas, or security controls, including by using multiple accounts or regions to bypass limits.
Provide, promote, or use external (non-Amazon) data services that vend data retrieved from Amazon websites or portals.
Modify or manipulate data in a deceptive way or misrepresent outputs as "Amazon certified" or "Amazon endorsed."
Engage in unlawful, fraudulent, misleading, or harmful activity.

5. User Responsibilities

Users are responsible for securing their own devices, user accounts, and internal access. Key responsibilities include:

Secure Devices: Ensure that devices used to access the Service are secure and protected from unauthorized access.
Strong Passwords: Use strong, unique passwords for Amazon and DTTM accounts and change them regularly.
Access Control: Limit access to the Service to authorized personnel only and revoke access when no longer needed.
Monitoring: Monitor access and activity logs for any suspicious or unauthorized access attempts.
Reporting: Promptly report any suspected unauthorized access, compromise, or misuse to DTTM.

6. Data Retention and Deletion

7. Third-Party Sharing and "No Data Resale" Commitment

8. Intellectual Property

9. Service Availability, Changes, and Support

10. Suspension and Termination

11. Disclaimers

12. Limitation of Liability

13. Changes to These Terms

14. Governing Law

TİM Academy Türkiye Innovation Week Turquality TİM Committee of Agriculture Top 1000 Exporters of Türkiye Digital Incentive Tracking Module (DTTM)