Privacy Policy
- Home
- Privacy policy
1. Purpose of the Personal Data Protection Policy
The purpose of the Personal Data Protection Policy is to provide information about the personal data processing activities carried out by Globamed in accordance with the Personal Data Protection Law No. 6698 (“Law”) and the relevant legislation and the systems adopted for the protection of personal data. In this context, it is aimed to enlighten the persons whose personal data are processed, especially our employees, suppliers, manufacturers, customers and employees, shareholders and officials of the institutions we cooperate with and third parties.
2. Scope of the Policy
This policy text contains explanations about the content, categories, usage and processing methods, storage conditions, transfer of personal data processed by Globamed, rights of personal data owners and measures taken for the protection of personal data.
3. Processing of Personal Data
The personal data is processed in accordance with the principles of complying with the law and honesty rules; being accurate and up-to-date when necessary; being processed for specific, clear and legitimate purposes; being relevant, limited and measured for the purpose for which they are processed; and being kept for the period stipulated in the relevant legislation or required for the purpose for which they are processed.
As stipulated by Articles 5 and 6 of the Law, personal data is processed in order but not limited to: carry out the necessary work with the relevant business unit and business partners in order to ensure that the products and services offered by Globamed can be offered to you; analyse the consumption and purchasing habits of the customers accurately and completely so that appropriate products and services can be recommended; conduct marketing, advertising and promotional activities; provide customer-specific advantageous offers by obtaining information about the needs and wishes of customers; conduct activities to increase customer satisfaction and sending commercial electronic messages within this scope; take the necessary steps for Globamed to make, implement and realise commercial decisions; ensure the legal security of the real persons with whom Globamed has established a business relationship in order to carry out its commercial activities and itself arising from such relationships.
4. Processed Personal Data
User Information:
Customer Transaction Information:
Delivery Information:
Payment Information:
Transaction Security Information:
Audio Recording Information:
Your personal data listed above is processed electronically due to legal reasons and is based on the following legal bases: provided that it is clearly stipulated in the laws, that it is directly related to the establishment or performance of a contract, that the processing of personal data belonging to the parties to the contract is necessary, that it is mandatory for the data controller to fulfill its legal obligation through which does not harm the fundamental rights and freedoms of the person concerned, and that the data is processed is mandatory for the legitimate interests of the data controller. If the relevant processing activity needs to be processed based on explicit consent rather than the legal bases explained above, your explicit consent specific to the process is obtained separately together with the clarification process
5. Transfer of Personal Data
Globamed takes utmost care to process personal data in accordance with the principles of the need to know and the need to use, by ensuring the necessary data minimisation and by taking the necessary technical and administrative security measures.
Globamed transfers the processed personal data to third parties for the purposes of the execution or supervision of business activities; the ensuring of business continuity; and the operation of digital infrastructures, all of which necessitate continuous data flow with different stakeholders. Globamed may share the personal data it processes within the scope of its activities with affiliates, service provider third parties and business partners, regulatory and supervisory institutions and authorized public institutions and organisations such as courts and enforcement offices, lawyers, auditors, tax consultants, forensic informatics experts, cyber security consultants, the seller or service provider of the product to be purchased, business partners providing call centre services, service providers providing customer support services, business partners providing independent audit, customs, financial advisor / accounting services, private integrators, technology companies and banks.
6. Protection of Personal Data
The Company, acting as the data controller, is responsible for establishing the necessary organisation and taking and adapting technical measures to protect the confidentiality and integrity of information in accordance with the provisions of the relevant legislation in force. In order to fulfil its responsibilities, Globamed periodically conducts penetration tests in accordance with international and national technical standards regarding data confidentiality; protects personal data transmitted to Globamed via the website, mobile site and mobile application by using SSL (Secure Sockets Layer) technology; regularly conducts risk analyses regarding personal data processing activities and takes actions to reduce risks; implements access and authorisation controls to prevent unauthorised access to personal data, and regularly updates data processing policies.
Globamed and its employees shall not disclose the personal data they have learnt to anyone else in violation of the provisions of the Law and shall not use them for purposes other than the reasons for its processing. This obligation will continue after the employees leave their duties or stop their employment.
In the event that the processed personal data is obtained by others illegally, Globamed will notify the relevant bodies and the Personal Data Protection Board within 72 hours in order to take the necessary measures.
7. Deletion, Destruction or Anonymisation of Personal Data
It is one of Globamed’s obligations to delete, destroy or anonymise personal data in cases where the personal data are no longer necessary in relation to the purposes for which they are collected and processed for.
Within the framework of the Regulation on Deletion, Destruction and Anonymisation of Personal Data, Globamed deletes, destroys or anonymises personal data within the first 6 months following the date on which the obligation to delete, destroy or anonymise personal data arises.
8. Requests for Information on the Protection of Personal Data
It is a data subjects’ right stipulated by the Law to learn whether personal data is processed by using Globamed’s communication channels; to request information if it has been processed; to be informed of the purpose of the processing personal data and whether it is used in accordance with its purpose; to request information on the third parties to whom it is transferred domestically or abroad; to request correction of personal data in case it is incomplete or incorrectly processed; the right to request the deletion or destruction of your personal data within the framework of the conditions stipulated in the Law; to request notification to third parties to whom personal data is transferred in case of correction, deletion and destruction; and to request compensation for the damages incurred in case of harm due to the processing of personal data in violation of the relevant legislation.
9. Amendments to the Personal Data Protection Policy
Globamed may make changes in its personal data protection policy to the extent required by its activities or when legally required. Such changes become effective upon the publication of the amended policy text on the website www.globamed.org.