PRIVACY NOTICE FOR PATIENT

I.  Data Controller

In accordance with the Personal Data Protection Law No. 6698 (“Law”), your personal data  is within the scope of EDB TURİZM ORGANIZATION VE DANIŞMANLIK HİZMETLERİ LİMİTED ŞİRKETİ (“EDB LTD STI” or “Company”) as the data controller  , as explained below. 

II. Personal Data Collection Methods and Legal Reasons

Our company collects personal data directly from you, through the contractual relationship between us, through our website, mobile applications, e-mail, postal mail, fax, notifications from administrative and judicial authorities, and data obtained in voice, electronic or written form. other communication channels. Articles 5 and 6 of the Law, limited to the purposes specified below and in accordance with the personal data processing conditions specified, especially for the purposes of maintaining the relationship between you and us and compliance of the activities with the legislation, for the legal reasons stated below:

  • It is necessary to process your personal data, provided that it is directly related to our establishment of a contractual relationship with you or our performance obligation arising from this contract (processing and transferring all your identity information, communication, health and related data necessary to provide health tourism service during the establishment of the contract).
  • It is mandatory for the establishment, exercise or protection of a right (limitations such as ensuring information security, ensuring the security of legal transactions, carrying out payment transactions, monitoring and executing legal affairs, storing personal data that may be necessary for the duration of the legal period)
  • The process by which we process your personal data is clearly regulated by law (keeping transaction records within the scope of the Law and Law No. 5651)
  • Situations that are mandatory for the fulfillment of our legal obligations (processing of your personal data due to fulfillment of financial, tax and similar obligations, fulfillment of legal requests within the scope of regulatory and supervisory activities)
  • It is mandatory in line with our legitimate interests, provided that it does not harm your fundamental rights and freedoms (conducting/supervising business activities, ensuring the security of data controller transactions)
  • Your explicit consent when necessary (positioning of analytical cookies used on the website on your device and sending you commercial electronic messages with your consent)

III. Personal Data Processing Purposes

Your personal data may be processed for the purposes stated below and explained to us, including establishing a contractual relationship with us and managing all stages of this contractual process, planning and execution of end-to-end marketing processes. , ensuring information security and legal transaction security and fulfilling our legal obligations. can be processed:

  • Management of Health Tourism Processes: Processing of your personal data within the scope of planning and execution of health tourism processes before and during the contract  [identity, communication, health, physical space security, transaction security, audio-visual recording data]
  • Organization and Event Management: Processing of your personal data within the scope of planning and execution of organizations and events to be held before and during the contract  [identity, communication, health, physical space security, process security, visual and audio recording data]
  • Execution of Marketing Processes of Products/Services: Carrying out product and service marketing processes in line with the information you provide during the sale of products/services  [identity, communication, health, legal action, customer transaction, risk management, marketing]
  • Execution of Product/Service Sales Processes: Use of your personal data in online sales, technical support and management processes  [identity, communication, health, finance, customer, customer transactions, voice, request/complaint/reputation management data]
  • Conducting/Supervising Business Activities: Carrying out service sales and brokerage activities and auditing the business activities we carry out, planning internal reporting and business development activities, monitoring the communications of branch employees with customers, opening potential customer records, measuring branch and employee performance and service delivery. planning processes  [identity, finance, health, customer, customer transaction, request/complaint/reputation management data]
  • Execution of Supply Chain Management Processes: Execution of processes related to business partners, suppliers and other stakeholders regarding products and services  [identity, communication, health, financial data, customer, customer transaction, request/complaint/reputation management data]
  • Carrying out Finance and Accounting Affairs: Carrying out financial and accounting transactions based on this information in product/service sales to be made by you and in tracking accounting and purchasing transactions  [identity, communication, health, finance, customer, customer transaction data].
  • Carrying out Communication Activities: Contacting you in line with the information you have provided when necessary, informing you about your contract, making payment reminders, contacting you via SMS, e-mail and telephone within the scope of the execution of the contract, planning and/or execution of after-sales support services activities  [identity, contact, health, customer, customer transaction, financial data]
  • Execution of Advertising / Campaign / Promotion Processes: Execution of advertising / campaign / promotion processes, profiling, analysis, marketing and advertising processes  [identity, communication, health, customer, customer transaction data]
  • Receiving and Evaluating Suggestions for Improvement of Business Processes: Analysis, improvement and development of our processes according to the feedback we receive from you  [identity, communication, health, customer, customer transaction data]
  • Execution of Customer Relationship Management Processes: Managing our relationships regarding the products and services offered to you, meeting your requests and providing feedback  [identity, communication, health, customer, audio-visual data]
  • Carrying out activities aimed at customer satisfaction: Product/service sales, customer relationship management activities aimed at increasing customer experience  [identity, communication, health, customer, customer transaction, finance, voice, request/complaint/reputation management data]
  • Execution of Company/Product/Service Loyalty Processes:  Increasing your trust in the services we offer you within the scope of customer relations [identity, communication, health, customer, customer transaction, finance, marketing data]
  • Conducting Statistical Evaluations and Market Research: Improving all business processes and conducting research for new markets  [communication, customer, health, customer transactions, finance, demand/complaint/reputation management data]
  • Execution of Activities in Compliance with Legislation: Ensuring compliance with legal rules in business processes, especially Law No. 6698, ensuring that our activities are carried out in accordance with internal procedures and relevant regulations, planning and execution of activities [identity, communication  , finance, customer, customer transaction, visual, audio, request/ complaint/reputation management data]
  • Conducting Audit/Ethical Activities: Conducting audit activities during product/service sales, detecting and preventing fraudulent transactions, conducting internal control and audit activities  [identity, communication, health, finance, customer, customer transactions, audio-visual data, health, request /complaint/reputation management data]
  • Follow-up and Execution of Legal Affairs: Follow-up of contract processes and/or legal affairs and requests, completion of alternative dispute resolution methods and litigation processes, management of processes before notaries, judicial and administrative authorities [identity,  communication, health, finance, customer, customer transaction, visual , audio, request/complaint/reputation management data]
  • Execution of Information Security Processes: Ensuring transaction security in your transactions during the sale of products/services, making the necessary arrangements to ensure that the processed data is up-to-date and accurate, establishing and operating the information infrastructure, ensuring physical security and cyber security, ensuring the security of the internet branch, ensuring transaction security and Processing of IP, MAC address and similar data and log records for the purpose [  identity, communication, finance, customer, customer transaction data, visual, audio data, request/complaint/reputation management data]
  • Execution of Risk Management Processes: Determining and managing the legal, technical and financial risks required during the establishment of the contractual relationship, ensuring risk management, making legal notifications by making financial controls and reporting, identifying and implementing commercial risks and business strategies and applications based on quantitative information about transactions. to evaluate. making necessary credit inquiries  [identity, communication, legal process, customer transaction, transaction security, risk management, finance, marketing, audio-visual data]
  • Ensuring the Security of Data Controller Transactions: Ensuring information security, physical security, legal transaction security, business relationship [  identity, communication, health, customer, customer transaction, risk management, finance, physical area security, location, audio-visual, transaction security data]
  • Providing Information to Authorized Persons, Institutions and Organizations: Providing information in accordance with the legislation, meeting requests from legal authorities  [identity, communication, health, finance, customer, customer transaction, visual, voice, request/complaint/reputation management data].

IV. Transfer of Personal Data

In accordance with the principle of proportionality, our company takes care to process your personal data by taking the necessary technical and administrative measures within the framework of the “need to know” and “need to use” criteria. Since conducting or controlling business activities, ensuring business continuity and operating digital infrastructures require constant data flow with different stakeholders, we have to transfer the personal data we process to third parties for certain purposes. In addition, it is of great importance that your personal data is accurate and up-to-date in order to fully and properly fulfill its contractual and legal obligations. For this we have to work with various business partners and service providers.

Your personal data, in line with and limited to the achievement of the above-mentioned purposes:

  • With health service providers and agencies in health tourism processes
  • With notaries in the certification processes of documents
  • With our business partners serving in the field of organization and events
  • With business partners and service providers who provide call center services for the delivery of customer service.
  • For the purpose of carrying out the transactions or transfer of receivables or financing to be carried out within the scope of the contract with the parties involved in the realization of these transactions.
  • With our relevant business partners, consultants and service providers, banks and financial advisors for the management of financial and accounting processes, identification and assessment of risks, and prevention of fraud.
  • To send the e-invoice to the customer electronically, with the e-invoice business partner; with cargo and courier companies for physical contract or invoice delivery.
  • In order to fulfill tax obligations before the tax offices, invoices and collection receipts are submitted to the Ministry of Finance officials during tax inspections.
  • With the relevant service provider and business partner for website usage preferences and browsing history, segmentation, communication with the customer in line with their tastes and preferences.
  • With business partners and service providers serving in this field for profiling, analytics, customization of services, marketing and advertising purposes.
  • Registration within the scope of the message management system (IYS) with the Ministry of Commerce and the authorized company for the management of messages, and the authorized commercial message infrastructure provider for message sending.

In addition, joint branding studies have been carried out with our business partners and service providers who provide, operate or service our IT infrastructure, and our business partners and service providers who provide services in the field of quality control, complaint management and risk analysis, to manage marketing processes and identify potential customers. with third parties, lawyers and other consultants for the purpose of carrying out contract processes and litigation/enforcement proceedings, our business partners providing private integrator, independent audit, customs, financial consultancy/accounting services, legally authorized public institutions and organizations and private persons or organizations and third parties, Within the scope of its fulfillment, lawyers, auditors from whom we receive consultancy and service, forensic medicine experts, cyber security consultants, tax consultants and other third parties and business partners, regulatory and supervisory institutions, courts and enforcement offices. to other official institutions in all processes; Your personal data is processed domestically or abroad, limited to the purposes specified in this information text, and carrying out risk management and financial reporting processes before other public institutions or organizations authorized to request it.

V. Data Owner’s Rights

As the person whose personal data is processed, your requests within the scope of Article 11 of the Law, which regulates the rights of the relevant person (learning personal data processing, requesting information about processing, learning the suitability of the processing for its purpose, knowing), the persons to whom the transfer is made, requesting correction of incomplete or incorrect processing, (requesting deletion or destruction), requesting that all automatic transactions be notified to third parties, objecting to the analysis, requesting compensation for damages)  contact info@flymeditrust.com  or use the form at the application form link on the website. About the Procedures and Principles of Application to the Data Controller In accordance with the notification.

COMMITMENT TO THE THIRD PARTY AND ACCOMPANYING PARTNERS REGARDING THE TOURIST OR HEALTH TOURIST

All kinds of third parties whose information I share with your company, especially the persons who will serve as references, other third parties whose information is requested to establish a customer relationship, my spouse, my relatives whose consent is required by law, or those whom I have specified as guarantors, will process your company’s personal data and give information that they can be reached. undertakes to notify the owners. I undertake that it was made by me and that my approval has been obtained.

Name :  

History :  

Signature:

Scroll to Top