(Murat Aktaş Health Center Turkey Health Tourism Industry and Trade Limited Company) This Clarification Text has been prepared by Murat Aktaş Health Center Turkey Health Tourism Industry and Trade Limited Company (“Company”) in order to inform you, the data owners, regarding the processing of your personal data within the framework of the Personal Data Protection Law No. 6698 (“KVKK”), the Health Services Basic Law, the Patient Rights Regulation and other relevant legislation.
Pursuant to the Law No. 6698 “Law on the Protection of Personal Data”, personal data; collection, purpose of use, processing, transfer, storage period and data privacy and protection activities are carried out within the scope of the relevant law and legislation. For this purpose, we take security measures at the highest level and inform you about your rights, we attach great importance to the security of your personal data. We keep all kinds of personal data shared by you in a way to take care of the privacy and confidentiality of private life and to take all necessary technical and administrative measures to ensure the appropriate level of security regarding your personal data.
This Information on the Protection of Personal Data explains how we collect, use, transfer and protect your personal data during the services we perform our personal data protection and processing policy.
Our company processes, stores and secures your personal data in health tourism activities, health consultancy, patient guidance, promotion, advertising, organisation, marketing and sales processes in accordance with the law and honesty rules, in compliance with the principles of proportionality and data minimisation. Protection of your personal data is a matter of trust and responsibility for our company. In this context, necessary technical and administrative measures are taken for the confidentiality, integrity and accessibility of the data.
You can find detailed information on the “Personal Data Protection and Processing Policy” and “Clarification Text”.
1.a) Methods of Obtaining Personal Data and Legal Reasons Your personal data are obtained by automatic or partially automatic methods in electronic or physical environment, health tourism consultancy and patient referral processes, establishment of contracts and service relationships, online application and contact forms, audiovisual promotional shots, social media, e-mail, telephone or electronic media, coordination activities with domestic and foreign health institutions, in order to provide our services in line with the stated purposes and to fulfil our institution’s contractual and legal responsibilities in a complete and accurate manner. and within the framework of the legal reasons (“performance of the contract”, “legitimate interest”, “explicit consent”, “legal obligation”, etc.) specified in Articles 6.
1.b) Purposes of Processing Personal Data Articles 5 and 6 of the PDP Law regulate the conditions for the processing of personal data and sensitive personal data. Special categories of personal data are specified in a limited manner in the Law and include data relating to race, ethnic origin, political opinion, religion, sect or other beliefs, appearance and dress, membership to associations, foundations or trade unions, health, sexual life, criminal conviction and security measures, and biometric and genetic data. While Article 5 of the Law determines the conditions for the processing of non-special categories of personal data, the conditions for the processing of special categories of personal data are regulated in Article 6.
Your personal data; Health tourism consultancy, treatment planning, international patient referral and service organisation, Carrying out promotional, advertising and marketing activities, Managing operational processes with contracted institutions abroad and domestically, Creating digital content (audio/visual materials, promotional videos, patient satisfaction content, etc.), Carrying out our company’s corporate promotional activities, Customer satisfaction analysis and quality control studies, Finance, accounting, tax and invoicing operations, Fulfilling legal obligations, managing disputes and creating evidence, Information systems.), Carrying out corporate promotional activities of our Company, Customer satisfaction analyses and quality control studies, Finance, accounting, tax and invoicing transactions, Fulfilment of legal obligations, management of disputes and evidence creation, Ensuring the security of information systems, backup, archiving and implementation of data security measures, in accordance with Articles 5 and 6 of the Law.
1.c) Parties with whom Personal Data may be Shared and Purposes of Sharing Your personal data, within the framework of the data processing conditions and purposes specified in Articles 8 and 9 of the Law;
- Provision of organisation services, Carrying out promotional and advertising activities, Sharing visual content on social media, Preparation of printed and digital promotional materials, Public promotion of the organisation Ensuring the legal, technical and commercial-business security of the relevant persons who are in a business and service relationship Customising products and services according to the tastes, usage habits and needs of the relevant people and recommending and promoting them to the relevant people Complete execution of the organisation, provision of services, contract performance Use of visual content (photo/video) in media such as advertisements, promotions, social media and websites Providing integrated service to the customer, campaigns carried out as a requirement of co-operation
- Invoicing, keeping accounting records, fulfilment of tax obligations Fulfilment of the legal obligation of the data controller Fulfilment of relevant legal obligations, meeting official requests Obtaining legal advice, managing commercial risks and disputes, Ensuring data security, digital archiving, social media content management Improvement of service quality and operational processes,
- Fulfilment of official obligations, Ensuring international patient transfer and coordination,
- Realisation of corporate communication and brand management. Limited to the purposes of corporate communication and brand management, the Company’s business partners, suppliers, social media platforms, digital marketing agencies, printing houses, press organisations, Domestic and foreign health institutions, contracted clinics, laboratories and doctors, Service providers and suppliers: digital agencies, advertising companies, promotion team, consulting companies, IT infrastructure companies, cloud service providers, Tourism agencies and transportation service providers, Legally authorised public institutions (Ministry of Health, SSI, tax office, courts, etc.), Independent auditors, financial advisors, law offices, Social media platforms and web hosting service providers and private legal entities.), Independent auditors, financial advisors, law offices, social media platforms and web hosting service providers and private legal entities.
1.d) Data Collected by Park Mandalin The following categories of data can be monitored by our company in accordance with the principles set out in Article 4 of the KVKK: Identity Information: Name-surname, date of birth, nationality, passport or identity information Contact Details: Telephone number, e-mail address, residence address, country of residence Health Data: Health history, laboratory results, tests, treatment plan, medical photographs and reports (in case of explicit consent) Financial Data: Invoice information, bank account/IBAN information, payment amounts Audiovisual Data: Photographs, videos, promotional shots, interview recordings, social media content
- Process Security Data: IP address, system access records, log information Marketing Data: Digital advertising interactions, preference and satisfaction data Legal Transaction Data: Contracts, forms, official correspondence, request and complaint records These data are processed only for the purposes described above and in accordance with the law and good faith. Unnecessary, disproportionate or excessive data processing is not carried out.
1.e) Parties to whom Personal Data may be deposited and Purposes of Transfer Your personal data collected by Murat Aktaş Health Centre Turkey, within the scope of the personal data processing conditions and purposes specified in Articles 8 and 9 of the Law; It can only be transferred to the following persons / institutions in a limited and measured manner in accordance with the purpose of processing: Service Provider Companies and Suppliers, Company’s business partners, suppliers, social media platforms, digital marketing agencies, printing houses, press organisations, Domestic and foreign health institutions, contracted clinics, laboratories and doctors, Service providers and suppliers: digital agencies, advertising companies, promotion team, consulting companies, IT infrastructure companies, cloud service providers, Tourism agencies and transportation service providers, Legally authorised public institutions (Ministry of Health, SSI, tax office, courts, etc.), Independent auditors, financial advisors.), Independent auditors, financial advisors, law offices, Social media platforms and web hosting service providers, Tax Offices Social Security Institution (SSI) Courts, enforcement offices, law enforcement agencies, notaries Authorised Private Law Legal Entities, Lawyers Mediators Independent auditors Cloud Service Providers / Technical Infrastructure Companies Web server service providers Software companies providing backup, archiving, data security services, domestic / foreign organisations and other third parties. and 9. It is ensured that personal data is transferred within the framework of the personal data processing conditions and purposes specified in Articles 9.
1.f) Rights of Data Subjects and Exercise of These Rights As personal data owners, if you submit your requests regarding your rights stated below to the Company by the methods specified under the heading “Exercise of Rights by Data Owners”, your requests will be evaluated and finalised by the Company as soon as possible and in any case within 30 (thirty) days.
Pursuant to Article 11 of the Law, you have the following rights as a personal data owner:
- To learn whether your personal data is being processed, Requesting information regarding the processing of personal data, To learn the purpose of processing your personal data and whether it is used in accordance with its purpose, To know the third parties to whom your personal data is transferred domestically or abroad, To request correction of your personal data in case of incomplete or incorrect processing and to request notification of the transaction made within this scope to third parties to whom personal data is transferred, To request the deletion or destruction of personal data in the event that the reasons requiring its processing disappear, although it has been processed in accordance with the KVK Law and other relevant provisions of the law, and to request notification of the transaction made within this scope to third parties to whom your personal data has been transferred,
- To object if a result arises to your detriment by analysing the processed data exclusively through automated systems,
- In case you suffer damage due to unlawful processing of your personal data, you have the right to demand compensation for the damage.
Pursuant to paragraph 1 of Article 13 of the KVK Law, you can submit your applications for your rights mentioned above, your request containing the necessary information identifying your identity and your explanations regarding the right you request to use from the rights specified in Article 11 of the KVK Law; Ataşehir District 8001st Street yağcı Business Centre No: 43, Inner door: 203 zip code: 35620 Çiğli/İzmir address in person with documents identifying your identity, It may send it through a notary public or other methods specified in the KVK Law, You can send the relevant form to iNFO e-mail address with a secure electronic signature. Depending on the nature of your request, your applications will be finalised free of charge within thirty days at the latest; however, if an additional cost arises, our Authority reserves the right to charge you a fee according to the tariff to be determined by the Personal Data Protection Board.
Exercise of Rights by Data Subjects Data owners can use the “Personal Data Owner Application Form “ to exercise the rights mentioned above.
- Applications must be accompanied by documents certifying your identity; Submission of a wet signed copy of the form by hand, through a notary public or by registered letter with return receipt, Signing the form with a secure electronic signature issued under the Electronic Signature Law No. 5070, O It can be done by sending it by other methods stipulated by the Personal Data Protection Board. Our Company may request additional information to determine whether the applicant is the data subject or not. If necessary, additional questions may be asked to the applicant in order to clarify the application. Applications are free of charge as a rule. However, if the transaction requires an additional cost, a fee may be charged according to the tariff determined by the Personal Data Protection Board.
In case of an application on behalf of a third party, a notarised special power of attorney issued by the data subject is required.
Our company; In order to protect personal data against unauthorized access, loss or misuse, technical measures such as encryption, access control, log tracking, penetration tests, administrative measures such as employee confidentiality commitments, data minimisation, and regular internal audits are implemented. And other administrative and security measures have been completed in full and the security and confidentiality of your data is a priority for us.
Data Controller: Murat Aktaş Health Centre Turkey Health Tourism Industry and Trade Limited Company Tel: +90534243100 Email: info@murataktas.co.uk Web: Address: Ataşehir District 8001st Street Yağcı Business Centre No:43, Interior door: 203 zip code: 35620 Cigli/Izmir
(Murat Aktaş Health Center Turkey Health Tourism Industry and Trade Limited Company) This Clarification Text has been prepared by Murat Aktaş Health Center Turkey Health Tourism Industry and Trade Limited Company (“Company”) in order to inform you, the data owners, regarding the processing of your personal data within the framework of the Personal Data Protection Law No. 6698 (“KVKK”), the Health Services Basic Law, the Patient Rights Regulation and other relevant legislation.
Pursuant to the Law No. 6698 “Law on the Protection of Personal Data”, personal data; collection, purpose of use, processing, transfer, storage period and data privacy and protection activities are carried out within the scope of the relevant law and legislation. For this purpose, we take security measures at the highest level and inform you about your rights, we attach great importance to the security of your personal data. We keep all kinds of personal data shared by you in a way to take care of the privacy and confidentiality of private life and to take all necessary technical and administrative measures to ensure the appropriate level of security regarding your personal data.
This Information on the Protection of Personal Data explains how we collect, use, transfer and protect your personal data during the services we perform our personal data protection and processing policy.
Our company processes, stores and secures your personal data in health tourism activities, health consultancy, patient guidance, promotion, advertising, organisation, marketing and sales processes in accordance with the law and honesty rules, in compliance with the principles of proportionality and data minimisation. Protection of your personal data is a matter of trust and responsibility for our company. In this context, necessary technical and administrative measures are taken for the confidentiality, integrity and accessibility of the data.
You can find detailed information on the “Personal Data Protection and Processing Policy” and “Clarification Text”.
1.a) Methods of Obtaining Personal Data and Legal Reasons Your personal data are obtained by automatic or partially automatic methods in electronic or physical environment, health tourism consultancy and patient referral processes, establishment of contracts and service relationships, online application and contact forms, audiovisual promotional shots, social media, e-mail, telephone or electronic media, coordination activities with domestic and foreign health institutions, in order to provide our services in line with the stated purposes and to fulfil our institution’s contractual and legal responsibilities in a complete and accurate manner. and within the framework of the legal reasons (“performance of the contract”, “legitimate interest”, “explicit consent”, “legal obligation”, etc.) specified in Articles 6.
1.b) Purposes of Processing Personal Data Articles 5 and 6 of the PDP Law regulate the conditions for the processing of personal data and sensitive personal data. Special categories of personal data are specified in a limited manner in the Law and include data relating to race, ethnic origin, political opinion, religion, sect or other beliefs, appearance and dress, membership to associations, foundations or trade unions, health, sexual life, criminal conviction and security measures, and biometric and genetic data. While Article 5 of the Law determines the conditions for the processing of non-special categories of personal data, the conditions for the processing of special categories of personal data are regulated in Article 6.
Your personal data; Health tourism consultancy, treatment planning, international patient referral and service organisation, Carrying out promotional, advertising and marketing activities, Managing operational processes with contracted institutions abroad and domestically, Creating digital content (audio/visual materials, promotional videos, patient satisfaction content, etc.), Carrying out our company’s corporate promotional activities, Customer satisfaction analysis and quality control studies, Finance, accounting, tax and invoicing operations, Fulfilling legal obligations, managing disputes and creating evidence, Information systems.), Carrying out corporate promotional activities of our Company, Customer satisfaction analyses and quality control studies, Finance, accounting, tax and invoicing transactions, Fulfilment of legal obligations, management of disputes and evidence creation, Ensuring the security of information systems, backup, archiving and implementation of data security measures, in accordance with Articles 5 and 6 of the Law.
1.c) Parties with whom Personal Data may be Shared and Purposes of Sharing Your personal data, within the framework of the data processing conditions and purposes specified in Articles 8 and 9 of the Law;
- Provision of organisation services, Carrying out promotional and advertising activities, Sharing visual content on social media, Preparation of printed and digital promotional materials, Public promotion of the organisation Ensuring the legal, technical and commercial-business security of the relevant persons who are in a business and service relationship Customising products and services according to the tastes, usage habits and needs of the relevant people and recommending and promoting them to the relevant people Complete execution of the organisation, provision of services, contract performance Use of visual content (photo/video) in media such as advertisements, promotions, social media and websites Providing integrated service to the customer, campaigns carried out as a requirement of co-operation
- Invoicing, keeping accounting records, fulfilment of tax obligations Fulfilment of the legal obligation of the data controller Fulfilment of relevant legal obligations, meeting official requests Obtaining legal advice, managing commercial risks and disputes, Ensuring data security, digital archiving, social media content management Improvement of service quality and operational processes,
- Fulfilment of official obligations, Ensuring international patient transfer and coordination,
- Realisation of corporate communication and brand management. Limited to the purposes of corporate communication and brand management, the Company’s business partners, suppliers, social media platforms, digital marketing agencies, printing houses, press organisations, Domestic and foreign health institutions, contracted clinics, laboratories and doctors, Service providers and suppliers: digital agencies, advertising companies, promotion team, consulting companies, IT infrastructure companies, cloud service providers, Tourism agencies and transportation service providers, Legally authorised public institutions (Ministry of Health, SSI, tax office, courts, etc.), Independent auditors, financial advisors, law offices, Social media platforms and web hosting service providers and private legal entities.), Independent auditors, financial advisors, law offices, social media platforms and web hosting service providers and private legal entities.
1.d) Data Collected by Park Mandalin The following categories of data can be monitored by our company in accordance with the principles set out in Article 4 of the KVKK: Identity Information: Name-surname, date of birth, nationality, passport or identity information Contact Details: Telephone number, e-mail address, residence address, country of residence Health Data: Health history, laboratory results, tests, treatment plan, medical photographs and reports (in case of explicit consent) Financial Data: Invoice information, bank account/IBAN information, payment amounts Audiovisual Data: Photographs, videos, promotional shots, interview recordings, social media content
- Process Security Data: IP address, system access records, log information Marketing Data: Digital advertising interactions, preference and satisfaction data Legal Transaction Data: Contracts, forms, official correspondence, request and complaint records These data are processed only for the purposes described above and in accordance with the law and good faith. Unnecessary, disproportionate or excessive data processing is not carried out.
1.e) Parties to whom Personal Data may be deposited and Purposes of Transfer Your personal data collected by Murat Aktaş Health Centre Turkey, within the scope of the personal data processing conditions and purposes specified in Articles 8 and 9 of the Law; It can only be transferred to the following persons / institutions in a limited and measured manner in accordance with the purpose of processing: Service Provider Companies and Suppliers, Company’s business partners, suppliers, social media platforms, digital marketing agencies, printing houses, press organisations, Domestic and foreign health institutions, contracted clinics, laboratories and doctors, Service providers and suppliers: digital agencies, advertising companies, promotion team, consulting companies, IT infrastructure companies, cloud service providers, Tourism agencies and transportation service providers, Legally authorised public institutions (Ministry of Health, SSI, tax office, courts, etc.), Independent auditors, financial advisors.), Independent auditors, financial advisors, law offices, Social media platforms and web hosting service providers, Tax Offices Social Security Institution (SSI) Courts, enforcement offices, law enforcement agencies, notaries Authorised Private Law Legal Entities, Lawyers Mediators Independent auditors Cloud Service Providers / Technical Infrastructure Companies Web server service providers Software companies providing backup, archiving, data security services, domestic / foreign organisations and other third parties. and 9. It is ensured that personal data is transferred within the framework of the personal data processing conditions and purposes specified in Articles 9.
1.f) Rights of Data Subjects and Exercise of These Rights As personal data owners, if you submit your requests regarding your rights stated below to the Company by the methods specified under the heading “Exercise of Rights by Data Owners”, your requests will be evaluated and finalised by the Company as soon as possible and in any case within 30 (thirty) days.
Pursuant to Article 11 of the Law, you have the following rights as a personal data owner:
- To learn whether your personal data is being processed, Requesting information regarding the processing of personal data, To learn the purpose of processing your personal data and whether it is used in accordance with its purpose, To know the third parties to whom your personal data is transferred domestically or abroad, To request correction of your personal data in case of incomplete or incorrect processing and to request notification of the transaction made within this scope to third parties to whom personal data is transferred, To request the deletion or destruction of personal data in the event that the reasons requiring its processing disappear, although it has been processed in accordance with the KVK Law and other relevant provisions of the law, and to request notification of the transaction made within this scope to third parties to whom your personal data has been transferred,
- To object if a result arises to your detriment by analysing the processed data exclusively through automated systems,
- In case you suffer damage due to unlawful processing of your personal data, you have the right to demand compensation for the damage.
Pursuant to paragraph 1 of Article 13 of the KVK Law, you can submit your applications for your rights mentioned above, your request containing the necessary information identifying your identity and your explanations regarding the right you request to use from the rights specified in Article 11 of the KVK Law; Ataşehir District 8001st Street yağcı Business Centre No: 43, Inner door: 203 zip code: 35620 Çiğli/İzmir address in person with documents identifying your identity, It may send it through a notary public or other methods specified in the KVK Law, You can send the relevant form to iNFO e-mail address with a secure electronic signature. Depending on the nature of your request, your applications will be finalised free of charge within thirty days at the latest; however, if an additional cost arises, our Authority reserves the right to charge you a fee according to the tariff to be determined by the Personal Data Protection Board.
Exercise of Rights by Data Subjects Data owners can use the “Personal Data Owner Application Form “ to exercise the rights mentioned above.
- Applications must be accompanied by documents certifying your identity; Submission of a wet signed copy of the form by hand, through a notary public or by registered letter with return receipt, Signing the form with a secure electronic signature issued under the Electronic Signature Law No. 5070, O It can be done by sending it by other methods stipulated by the Personal Data Protection Board. Our Company may request additional information to determine whether the applicant is the data subject or not. If necessary, additional questions may be asked to the applicant in order to clarify the application. Applications are free of charge as a rule. However, if the transaction requires an additional cost, a fee may be charged according to the tariff determined by the Personal Data Protection Board.
In case of an application on behalf of a third party, a notarised special power of attorney issued by the data subject is required.
Our company; In order to protect personal data against unauthorized access, loss or misuse, technical measures such as encryption, access control, log tracking, penetration tests, administrative measures such as employee confidentiality commitments, data minimisation, and regular internal audits are implemented. And other administrative and security measures have been completed in full and the security and confidentiality of your data is a priority for us.
Data Controller: Murat Aktaş Health Centre Turkey Health Tourism Industry and Trade Limited Company Tel: +90534243100 Email: info@murataktas.co.uk Web: Address: Ataşehir District 8001st Street Yağcı Business Centre No:43, Interior door: 203 zip code: 35620 Cigli/Izmir