Personal Information Policy
EMSEY HEALTH SERVİCES AND ENTERPRİSES TOURİSM HOSPİTALİTY TRADE A.S LIGHTING TEXT
As Health Services and Enterprises Tourism Hospitality Trade A.S., we present the disclosure text that we have prepared in accordance with Article 10 of the Law on the Protection of Personal Data No. 6698 (“Law”) and which contains information about the company's personal data processing activities, to the public and relevant persons;
ARTICLE 1: DATA RESPONSIBLE
Your personal data may be processed by Emsey Saglık Hizmetleri veIsşletmeleri Tur. Otel. Tic. AS, as data controller, within the scope described below. What should be understood from the concept of data controller; is the natural or legal person who determines the purposes and means of processing personal data and is responsible for the establishment and management of the data recording system.
You can use the following channels to contact the data controller:
Address : Camlık Quarter Selcuklu Street No:22 Pendik Istanbul
Phone : 444 25 99
E-Mail : kvkk@emseyhospital.com
Website : www.emseyhospital.com
ARTICLE 2: PERSONAL DATA
Personal data collected by our institution can only be processed within the framework described below in accordance with the Law on Protection of Personal Data No. 6698 and in accordance with the Private Hospitals Regulation, the regulations of the Ministry of Health and other legislation.
CATEGORY
|
PERSONAL DATA TYPE
|
Family Members and Relatives
|
Name, surname, R.T. ID. No, Date of Birth, Mother's Name, Father's Name about the children, spouses, parents of the personal data owner
|
Vehicle Information
|
In case of receiving parking service, information related to the personal data owner and the vehicle used: license plate, brand, model information
|
Information System Registration Information
|
Data received during the use of corporate information systems: e-mail records, internet usage records and e-mail traffic monitoring information, address registration system records, IP address tracking, Mac ID, computer user name, computer passwords, internet records, intranet records, cookies and other digital data
|
Financial Information
|
Information associated with the personal data owner and showing the financial result of the transactions made by this person: Personal company information, invoices, payment data, check-promissory note-valuable documents information, IBAN Information, Bank Account Number, credit card information only on the slip, your billing information, Execution Deduction Documents, policies; Data on Private Health Insurance, Social Insurance Institution, Private Fund Institution, Contracted Institutions
|
Health Information
|
Your data received, used and formed during the provision of health services: Examination and Diagnostic Information, Clinical Information, Health Reports, Laboratory Results, Pathology Results, Blood Group, Imaging Results and Reports, Biometric and Genetic Data, Surgery and Intervention Information and Reports, Patient Follow-up Information, Drug and Application Information, Materials Used, Dietary Information, Surgery Images, Laboratory Samples, Pathology Samples, Prescription Information, Hospitalization and Discharge Information, Appointment Information, Photo and Video Records Related to Treatment, Nursing Forms, Physician Forms, patient and All kinds of health data such as education information of relatives, information about vaccination application
|
Physical Space Security Information
|
Entry and exit records, visit information, continuous recording of cameras in common areas, forensic case reports and records
|
Visual and Audio Data
|
Clearly belonging to an identified or identifiable natural person; Photographs and camera recordings (excluding the recordings included in the Physical Space Security Information), audio recordings and data contained in documents that are copies of documents containing personal data
|
Personnel Transaction Information
|
R.T. ID. No Associated with Personnel, Passport No, Identity Card Serial No, Name-Surname, Photograph, place of birth, date of birth, age, place of registration, copy of identity card, occupation information, photocopy of identity card- driver's license, Nationality, Blood Group, Gender, Father's Name, Mother's Name, Marital Status, Signature, E-Mail, GSM No, Telephone No, Address registration system records, Children of the personal data owner, Spouses, Identity information of the guardian, education information, anything that is legally required to be entered in the personnel file All kinds of information (e.g. salary, SSI premiums, etc.) and documents on which it is based (such as payroll) Leave information, Military Status Certificate, Photocopy of Diploma, Employment Contract, Family Status Chart, Family Notification Form, KVKK Undertaking, District Health Directorate Health Worker Notifications, Ambulance Card, Work Certificate, Identity Copies of Relatives, International Labor Automation System Data (Co-National, Language, Number of Children, Telephone Number, etc.), SPTS Data (TR Identity, Position), KBS Data (Date of Employment, Residence Address, etc., TR Identity, Position), Vocational Courses-Seminars, Work Experience, Talents, Competencies, Person to Notify in an Emergency, Educational Status, Performance Evaluation Form and Data, Entry-Exit Records, Travels Made on behalf of the Hospital, Information on Meetings Attended , Security Inquiry, Retirement Information, Starting Date, Termination Information, Timetable Information, Employment Contract, Military Status, Discipline and Security Information, Insurance Policy Information, Certificate, Course Information, Congress Information, Seminar Information, Complaint and Suggestion Information , Education and Exam Information, the courses the person was sent to and the activities he attended for career development, the reports of the personnel about these activities, the Judicial Registry Record, the Health Information, the Association/Union/Foundation Membership Information, Warning/Report/Notification Information, Dress, attire, Penalty Data related to his conviction and security measures, Reference Studies, IBAN, Bank Account Number, Work Accident Report, Biometric Data, Resignation Petition, Termination Notification Document, Institutions He Has Worked For Before
|
Legal Transaction Information
|
All kinds of data, information and documents related to legal proceedings, lawsuits and asserting our rights associated with the personal data owner: Information obtained through the Consumer Arbitration Committee, BIMER, CIMER, Enforcement Offices and Courts
|
Communication information
|
Your e-mail, telephone number, mobile phone number, address, residence, address registration system records and other contact information
|
Identity and Personal Information
|
Turkish Penal Code, Provisional Turkish ID Number, Passport Number, Identity Card Serial Number, Name-Surname, Photograph, place of birth, date of birth, age, place of birth, registered ID card sample, occupational information, identity card, driver's license, professional identity card, Identity Card Photocopies of Wallet, Photocopies of Driver's License, Copies of Occupational Identity, Nationality, Blood Type, Gender, Father's Name, Mother's Name, Marital Status, Signature, Mother's Identity No, Insurance No, Company Information, Education Information, Patient No, Protocol No and able to identify you your other identity data
|
Intern Student Information
|
Student number associated with the intern, Student profession information, school information, Student grade information, Student faculty and department information, IBAN Information
|
Personal Information
|
All kinds of information (e.g. salary, SSI premiums, etc.) that are legally required to be entered in the personnel file associated with the personnel and the documents on which it is based (such as payroll), diploma, health screening information, health reports, signature statements, power of attorney.
|
Marketing Information
|
Data to be used for marketing purposes: reports and evaluations showing the habits and tastes of the person, targeting information, cookie records, information obtained as a result of campaigns and direct marketing activities and other received marketing data
|
Candidate Information
|
Job application forms, job interviews and evaluations, cover letters, CVs, reference information associated with the job applicant
|
Patient and Relatives Communication
|
Records of voice calls with the call center, e-mails, letters, completed questionnaires, acknowledgment and complaint forms, satisfaction results, data received from institution websites, data received from social media websites, and patients' complaints and satisfaction sent to us through websites that are shared, or your personal data obtained when you contact us through various means.
|
Health File Documents
|
Consent forms, undertakings and other documents obtained from patients or their relatives in order to provide health services and to provide the legal infrastructure of the service provided
|
ARTICLE 3: PURPOSE OF PROCESSING PERSONAL DATA
Personal data is only processed by us for the following purposes:
• Execution of medical diagnosis, treatment and care services, preventive medicine and public health protection, planning and management of health services and financing
• Planning, management and supervision of the operation of our hospital
• Sharing requested information with Social Insurance Institution, private insurance companies, contracted institutions within the scope of financing health services
• Authentication processes
• Supply of medicines, materials and services
• Managing the call center and appointment processes
• Managing accommodation, transfer and parking services
• Analyzing and storing health data
• Carrying out human resources processes
• To provide corporate communication, to inform about our services
• Ensuring company security
• Execution of data and information security processes
• Carrying out risk management and quality improvement activities, operating corporate policies
Measuring service satisfaction and answering all your questions and complaints
o To be able to perform statistical studies
o To be able to perform work and transactions as a result of signed contracts and protocols
o To liaise with real / legal persons who have a business relationship with the Company; Information sharing with the Ministry of Health and relevant public institutions and organizations in accordance with the relevant legislation
o Making legal reports
o Ensuring the fulfillment of legal obligations as required or mandated by legal regulations,
o To fulfill the burden of proof as evidence in legal disputes that may arise in the future
o Execution/follow-up of company legal affairs
ARTICLE 4: THE PARTIES TO THE PERSONAL DATA TO BE TRANSFERRED AND THE PURPOSE OF TRANSFER
Personal data, within the framework of the personal data processing conditions and purposes specified in Articles 8 and 9 of the Law, planning and execution of the activities necessary for recommending and promoting the products and services offered by the Company according to the tastes, usage habits and needs of the relevant persons, To carry out the necessary work by the business units and to carry out the relevant business processes in order to benefit the persons concerned from the products and services offered by the Company, to carry out the necessary work by the relevant business units for the realization of the commercial activities carried out by the Company, It can be shared with the company's business partners and suppliers, legally authorized institutions and organizations and legally authorized private law legal entities within the scope of planning and execution of business strategies and ensuring the legal, technical and commercial-occupational safety of the Company and the related persons who have a business relationship with the Company.
Your personal data will only be shared with the following institutions for the above-mentioned purposes in accordance with the relevant laws and regulations:
• Social Security Institution
• Private Health Insurance Institutions
• Ministry of Health and its sub-units
• Ministry of Labor and Social Security and its subordinate units
• General Directorate of Security and similar law enforcement agencies
• General Directorate of Population
• Turkish Pharmacists Association
• Medical Device Agency
• Chief Public Prosecutor's Offices, Courts, Enforcement Offices, Consumer Arbitration Committees and all kinds of judicial units
• Laboratories, centers, companies and similar third parties and companies with which we cooperate for medical diagnosis and treatment
• Institutional lawyers for legal proceedings
• Representatives of public and private institutions authorized to audit our institution
• Other official authorities authorized by law
Our Shareholders
o Mobildev company where SMS, e-mail notifications are made
o E-Trust firm, where we carry out e-signature processes
o For the salary transaction specific to the personnel, İş Bankası A.Ş.
o Ministry of Treasury and Finance and sub-units
o The marketing agency with which we are contracted to carry out Marketing and Corporate Communication activities
o Transfer company with which we are contracted for patient transfer service from the airport
o The companies we work with for the personnel meal and service process
o Translation companies to receive translation services for foreign patients upon request
ARTICLE 5: PERSONAL DATA COLLECTION METHODS AND LEGAL REASONS
Your personal data; verbal, written, visual or electronic media; From the records of the SSI system and private insurance company, from the records of other health institutions when you come to our institution by referral, via e-mail, call center call records, website; are obtained through oral, written and similar channels. The data obtained are stored in electronic and physical environments in accordance with the relevant laws and regulations.
The legal reasons for the collection and processing of personal data are as follows:
- Storing personal data as it is directly related to the establishment and performance of contracts,
- Storing personal data for the purpose of establishing, exercising or protecting a right
- It is obligatory to keep personal data for the legitimate interests of the company, provided that it does not harm the fundamental rights and freedoms of individuals.
- Storage of personal data for the purpose of fulfilling any legal obligations of the company
- Clearly stipulating the storage of personal data in the legislation
- Explicit consent of data owners in terms of storage activities that require explicit consent of data owners.
ARTICLE 6: PROCESSING CONDITIONS OF SPECIAL QUALITY PERSONAL DATA
ARTICLE 6 - (1) Data about the race, ethnic origin, political thought, philosophical belief, religion, sect or other beliefs, disguise and dress, membership to associations, foundations or trade unions, health, sexual life, criminal convictions and security measures. biometric and genetic data are special quality personal data.
(2) Processing of sensitive personal data without the explicit consent of the person concerned is prohibited.
(3) Personal data other than health and sexual life listed in the first paragraph may be processed without seeking the explicit consent of the person concerned, in cases stipulated by the laws. Personal data related to health and sexual life can only be used for the purpose of protecting public health, preventive medicine, medical diagnosis, treatment and care services, planning and management of health services and financing, without seeking the explicit consent of the person concerned, or by authorized institutions and organizations that are under the obligation to keep secrets. can be processed.
(4) In the processing of special categories of personal data, it is also obligatory to take adequate measures determined by the Board.
ARTICLE 7: RIGHTS OF THE PERSON AND APPLICATION
The natural person whose personal data is processed is defined as the relevant person and has the following rights regarding himself/herself by applying to the company:
• Learning whether personal data is processed
• Requesting information on personal data if it has been processed
• Learning the purpose of processing personal data and whether they are used in accordance with the purpose
• Knowing the third parties to whom personal data is transferred in the country or abroad
• Requesting correction of personal data if it is incomplete or incorrectly processed
• Requesting the deletion or destruction of personal data
• Requesting notification of the transactions made pursuant to subparagraphs (e) and (f) to third parties to whom personal data has been transferred
• Objecting to the emergence of a result against the person himself by analyzing the processed data exclusively through automated systems
• Requesting the compensation of the damage in case of loss due to unlawful processing of personal data.
For your requests under the law, click on the name of the hospital you want to apply from the list below and fill out the PERSONAL DATA PROTECTION LAW (KVKK) APPLICATION FORM;
• Camlik Mah. Selcuklu Cad. No:22 Pendik / Istanbul address can be delivered in person,
• You can send it through a notary public,
• To kvkk@emseyhospital.com via your electronic e-mail address registered in our system.
Our institution will conclude the request free of charge as soon as possible and within 30 days at the latest, depending on the nature of the request. However, if the process requires an additional cost, the fee in the tariff determined by the Personal Data Protection Board will be charged by the hospital.
Best regards;
Emsey Health Services and Enterprises Tourism Hospitality Trade AS.
Ekleme Tarihi:
7/30/2024
Güncelleme Tarihi:
7/30/2024