PRIVACY/PERSONAL DATA PROTECTION POLICY
Protection of personal data Kadikalesi Turizm İnş. Yat. and Isl. Tic. A.Ş. [“Sianji Well-Being Resort”] is an important issue. In order to comply with the Law No. 6698 on the Protection of Personal Data (“PDP Law”), Sianji Resort adopts the principles stipulated by the PDP Law and fulfills its obligations regarding the processing, deletion, destruction, anonymization, transfer of personal data, informing the relevant person and ensuring data security. The Privacy and Personal Data Protection Policy issued within this scope is presented to the information of real persons [“Data Subject”], and our website and company headquarters can be visited without sharing any personal data. Personal data collected within the knowledge of visitors may be processed under the conditions specified in this policy in accordance with the relevant legislation.
This Privacy and Personal Data Protection Policy applies to Sianji Well-Being Resort;
- Methods and legal reasons for collecting personal data,
- Which groups of persons' personal data are processed (Data Subject Categorization),
- Which category of personal data is processed in relation to these groups of persons (Data Categories) and sample data types,
- In which business processes and for what purposes this personal data is used,
- Technical and administrative measures taken to ensure the security of personal data,
- To whom and for what purpose personal data may be transferred,
- Retention periods for personal data,
- What are the rights of the Data Subjects on their personal data and how they can exercise these rights,
- How the Relevant Persons can change their positive or negative preferences for receiving electronic commercial messages,
- Explains the sharing of personal data with public authorities.
- Explains the sharing of personal data with public authorities.
Sianji Well-Being Resort collects personal data audibly, electronically or in writing through printed forms, the data subject himself/herself, Contracts, suppliers, electronic mail, Company common areas, Company related departments, notifications from administrative and judicial authorities and other communication channels, in accordance with the personal data processing conditions specified in the KVK Law and in line with the legal reasons specified in this Privacy/Personal Data Protection Policy.
Sianji Well-Being Resort categorizes the data subject groups whose personal data are processed in personal data processing processes and activities related to these processes as follows. However, in accordance with the KVK Law 5. and 6. Personal data of other groups of persons (suppliers, dealers, consultants) may also be processed in accordance with the personal data processing conditions specified in Articles 6 and in line with the legal reasons specified in this Privacy/Personal Data Protection Policy. (Customer, Magazine studies and Interview Supplier or Supplier Employee or Official)
- Customer
Identity Information: First name, last name, date of birth, gender, Turkish ID number
Contact Information: cell phone, e-mail address, address, postal code, landline phone
Financial Information: Tax office, invoice information
Customer/Member Information: Membership information, membership ID number
Personal Data: Title information, occupation information, wedding anniversary information
Sensitive Personal Data: Signature on the form, health problems, nationality
Audiovisual Information: Photo
Travel Information: Transportation information - Magazine studies, Interview
Identity Information Name, surname
Contact Information: Cell phone, e-mail address, address
Personal: Education Status - Supplier or Supplier Employee or Official
Identity Information: TR Identity Number, Name and surname
Contact Information: e-mail address, telephone, KEP address, address, cell phone
Financial Information: Account No, Tax office, Tax Identification Number, tax plate, IBAN
Legal Procedure and Compliance Information: Signature circular, certificate of activity,
Sensitive Personal Data/Legal Process Information: Signature
Visual Information: Photo
Personal data will be processed by the hotels operated by Sianji Well-Being Resort (Sianji Well-Being Resort);
Product and/or Service Provided Security
Internal Communication
Product and/or Service Procurement
Collecting offers during the price research process, deciding on the company, contacting the company, taking reservations for spa, restaurant, accommodation customers, making payments, inquiring about customer satisfaction, ensuring the security of the items left in custody, creating a police report, conducting marketing and promotion activities
Contract signing processes
It is used to ensure information security, compliance with legislation, accounting and payment processes and to carry out activities related to all these processes.
The technical and administrative measures taken by Sianji Well-Being Resort to ensure the security of personal data processed by Sianji Well-Being Resort are as follows:
Authorization management is performed in systems containing personal data to ensure Data Security. Access to these systems over the network is controlled. Periodic security scans of all systems where personal data is hosted are performed.
Necessary processes and systems are established to prevent personal data from leaving the organization unlawfully.
People who have access to personal data are trained to increase their awareness and rules are implemented to prevent data breach cases.
Personal data are stored in data center and cloud environments by taking necessary security measures.
Software and other products used for service delivery must be compatible with information security and personal data protection.
All systems that host data are backed up to ensure business continuity and protection against possible system crashes and cyber-attacks.
Hashing, encryption, transaction recording, access management and physical security measures are taken to ensure the protection of information systems hosting personal data against unauthorized access and unlawful data processing.
The network on which the website and all systems hosting personal data are located is protected by a firewall.
Sianji Well-Being Resort shall use personal data only for the purposes specified in the Privacy and Personal Data Protection Policy and in accordance with the PDP Law. 8. and 9. and transfers it to third parties in accordance with Article 9. Customer data processed within this scope are shared with the relevant department and, in the case of magazine deliveries, the person to whom the magazine will be delivered is also shared with the shipping company.
Customer data is also shared with the commercial electronic message intermediary service provider in order to promote, advertise, offer benefits and opportunities in line with the customer's shopping preferences, tastes and habits in line with the customer's commercial electronic message consent.
Website usage preferences and browsing history are shared with third parties that receive cookie services.
In order to increase customer satisfaction and loyalty, anonymized data belonging to the Customer is shared with market research companies.
Customer data is shared with Sianji Well-Being Resort and its affiliates within the scope of reporting and statistical studies.
In addition to the technical measures to ensure the security of the personal data subject to domestic and international transfer mentioned above, it is also legally protected thanks to the provisions in compliance with the PDP Law included in our contracts, taking into account that the counterparty of the legal relationship is the data controller or data processor.