Protection of Personal Data

As Uzman Çiftçi, we continue to carry out our studies on Personal Data Protection, which we attach great importance to since the day we were established, in parallel with the "Personal Data Protection Law" (KVKK). In this context, both the terms stated in the law and information about our data processing processes in order to fulfill our obligations are presented below.

What is KVKK?

Personal Data Protection Act (KVKK) 03.24.2016 at Turkey Grand National Assembly adopted and entered into force on No. 29 677 dated 04.07.2016 published in the Official Gazette.

The law is based on the compliance of all data processing persons and institutions for the main purposes such as ensuring the confidentiality, protection and unauthorized use of personal data. Our Bank, like all organizations, is obliged to comply with this Law and the personal data processed in all processes of our Bank are included in this scope.

What is Personal Data?

All data or data sets that make the person identifiable directly or indirectly are considered personal data. Descriptive information, such as name, surname, place of birth / date, telephone number, resume, photo, voice recording, directly or on behalf of the person may be given as examples. Personal data such as customer number and card number generated for banking transactions are also considered as Personal Data.

What is Data Processing?

Any transaction performed on personal data is considered "data processing". Therefore, the archiving, storage, modification, reorganization, disclosure, transfer, analysis and classification of data falls within the scope of data processing.

Who is the Contact / Data Owner?

One of the common expressions in the law and our corporate policies is the "contact person" or "data owner". Refers to the real persons whose personal data is processed.

Who is the Data Officer?

A data officer is a natural or legal person who determines the purposes and methods of processing personal data and is responsible for the establishment and management of the data recording system. At this point; Our company is the Data Responsible for the data of our customers, visitors and employees.

Who is Data Processing?

Data processing are natural or legal persons that process data on behalf of the data officer. They may also be a separate natural or legal person authorized by the data officer to process personal data.

Data Processing Terms

All data officers have the right to process data only if the following conditions are met or the person concerned expressly consents:

To be explicitly envisaged in laws (Banking Law, MASAK Legislation)
Is directly related to the establishment or performance of a contract,
Ability of the data officer to fulfill his legal obligation,
Having been publicized by the person concerned,
Data processing is mandatory for the establishment, use or protection of a right,
The legitimate interest of the data officer.
Meeting Data Owner Requests

KVKK grants the right to request the personal data about which personal data is processed in which processes and the current status of such data. We, as the Bank, are responsible for responding to requests from the data owners within 30 days.

Pursuant to Article 13 of the Law No. 6698 on the Protection of Personal Data, Başvuru Application to the Data Officer ", the person / data owner is required to submit the requests for the implementation of the Law to the data officer in writing. Therefore, in order to evaluate your request, you must apply to our nearest branch in writing or submit a written application through our direct channel where we can reach the fastest. For detailed applications, you can use the Data Owner Request Form under the Information and request forms on our website.

Institutions and persons who are responsible for or process data are obliged by the Law to enlighten the data owners about the personal data they process.