Clarification Text on the Protection and Processing of Personal Data of Online Visitors
The purpose of this text is to comply with the Personal Data Protection Law No. 6698 on the website "https://www.cportakoybosphorus.com/tr" domain ("Site") operated by Set Otelcilik Ticaret ve Anonim Şirketi ("Crowne Plaza Bosphorus"). To provide you with information about personal data processing activities carried out in accordance with the Law (“Law”) and the relevant legislation and the systems adopted for the protection of personal data.
This text will explain how your personal data is collected, used, shared and other matters stated below.
• What personal data does Crowne Plaza Bosphorus collect from you?
• For what purpose does Crowne Plaza Bosphorus collect your personal data?
• What are the methods of collecting your personal data?
• For what legal reasons are personal data processed?
• To whom and for what purposes is your personal data transferred?
• How long is your personal data stored?
• What are your rights as a data subject?
• What is the application and complaint process regarding your personal data?
Data Controller
Your personal data will be transferred to Crowne Plaza Istanbul - Ortakoy Bosphorus, an IHG Hotel, Ortaköy, Dereboyu Cd. as the data controller. It is processed by Set Otelcilik Ticaret ve Anonim Şirketi, operating at No10, 34347 Beşiktaş/İstanbul/Turkey, within the scope explained below, in accordance with the Personal Data Protection Law No. 6698.
Which Personal Data Are Processed and What Are the Purposes of Processing Your Personal Data?
Data Category: Identity Information | |
Processed Personal Data | Personal Data Processing Purposes |
Name-Surname Information | Conducting Communication Activities; • Execution of Company / Product / Services Commitment Processes; • Conducting Activities in Compliance with Legislation; • Carrying out Business Continuity Ensuring Activities; • Conduct and Control of Business Activities; • Execution of Goods / Service Sales Processes; • Execution of Goods/Service After-Sales Support Services; • Execution of Customer Relationship Management Processes; • Carrying out Activities for Customer Satisfaction; • Carrying out Storage and Archive Activities; • Execution of Contract and Membership Processes; • Follow-up of Requests / Complaints; • Planning and Execution of Commercial and/or Business Strategies; • Carrying out the necessary work by business units to benefit from the products and services offered and carrying out the relevant business processes; • Providing Information to Authorized Persons, Institutions and Organizations
|
Data Category: Customer Transaction Information | |
Processed Personal Data | Personal Data Processing Purposes |
Customer comments | • Conducting Communication Activities; • Execution of Company / Product / Services Commitment Processes; • Conducting Activities in Compliance with Legislation; • Carrying out Business Continuity Ensuring Activities; • Conduct and Control of Business Activities; • Execution of Goods / Service Sales Processes; • Execution of Goods/Service After-Sales Support Services; • Execution of Customer Relationship Management Processes; • Carrying out Activities for Customer Satisfaction; • Carrying out Storage and Archive Activities; • Execution of Contract and Membership Processes; • Follow-up of Requests / Complaints; • Planning and Execution of Commercial and/or Business Strategies; • Carrying out the necessary work by business units to benefit from the products and services offered and carrying out the relevant business processes; • Providing Information to Authorized Persons, Institutions and Organizations
|
| |
Processed Personal Data | Personal Data Processing Purposes |
• Photo | • Conducting Communication Activities; • Execution of Company / Product / Services Commitment Processes; • Conducting Activities in Compliance with Legislation; • Carrying out Business Continuity Ensuring Activities; • Conduct and Control of Business Activities; • Execution of Goods / Service Sales Processes; • Execution of Goods/Service After-Sales Support Services; • Execution of Customer Relationship Management Processes; • Carrying out Activities for Customer Satisfaction; • Carrying out Storage and Archive Activities; • Execution of Contract and Membership Processes; • Follow-up of Requests / Complaints; • Planning and Execution of Commercial and/or Business Strategies; • Carrying out the necessary work by business units to benefit from the products and services offered and carrying out the relevant business processes; • Providing Information to Authorized Persons, Institutions and Organizations |
Data Category: Contact Information | |
Processed Personal Data | Personal Data Processing Purposes |
• E-Mail Address Information • Mobile Phone Number Information | • Conducting Communication Activities; • Execution of Company / Product / Services Commitment Processes; • Conducting Activities in Compliance with Legislation; • Carrying out Business Continuity Ensuring Activities; • Conduct and Control of Business Activities; • Execution of Goods / Service Sales Processes; • Execution of Goods/Service After-Sales Support Services; • Execution of Customer Relationship Management Processes; • Carrying out Activities for Customer Satisfaction; • Carrying out Storage and Archive Activities; • Execution of Contract and Membership Processes; • Follow-up of Requests / Complaints; • Planning and Execution of Commercial and/or Business Strategies; • Carrying out the necessary work by business units to benefit from the products and services offered and carrying out the relevant business processes; • Providing Information to Authorized Persons, Institutions and Organizations |
Data Category: Transaction Security Information | |
Processed Personal Data | Personal Data Processing Purposes |
• IP Address Information • Website Login-Exit Information • Traffic Data (Connection Time/Duration/etc.) | • Execution of Information Security Processes; • Conducting Activities in Compliance with Legislation; • Managing Customer Relationship Management Processes; • Tracking of Requests and Complaints; • Providing Information to Authorized Persons, Institutions and Organizations; |
What are the Collecting Methods of Your Personal Data?
Personal data listed in categories above; It is collected electronically through internet applications, information systems and electronic devices (communication infrastructure, computers and phones, etc.) and other information and documents declared by you.
For what legal reasons is your personal data collected and processed?
Your personal data may be processed by Crowne Plaza Bosphorus and real or legal persons who process data on its behalf; Provided that the processing of personal data belonging to the parties to the contract is necessary, provided that it is clearly stipulated by law in line with the realization of the above-mentioned purposes, is directly related to the establishment or execution of a contract, is mandatory for the data controller to fulfill its legal obligation, and provided that it does not harm the fundamental rights and freedoms of the data subject. It will be processed within the scope of legal reasons where data processing is mandatory for the legitimate interests of the controller.
To Whom and For What Purposes Can Your Personal Data Be Transferred?
Your collected personal data; In order to fulfill our legal obligations, we may contact our service providers, business partners, suppliers, and the programs and/or systems provided by them and made available to us in order to receive technological product and service support, in accordance with legal regulations and legislation. It can be transferred to legally authorized persons, public institutions and organizations within the framework of the personal data processing conditions specified in Articles 8 and 9 of the Law.
If you give explicit consent, your personal data will be transferred to InterContinental Hotels Group abroad, to which Crowne Plaza Bosphorus is affiliated, in order to achieve the above-mentioned purposes.
How Long Will Your Personal Data Be Kept?
Your personal data will be stored for the period required by law, provided that it is compatible with the purposes for which it was collected. We act in accordance with the criteria that we determine the retention periods specific to personal data categories. If the storage period expires, your personal data will be deleted, anonymized or destroyed.
What are your rights as a relevant person?
Data owners may exercise the following rights regarding themselves by applying to the Company:
• Learning whether personal data is processed or not,
• Requesting information if personal data has been processed,
• Learning the purpose of processing personal data and whether they are used for their intended purpose,
• Learning about third parties to whom personal data is transferred domestically or abroad,
• Requesting correction of personal data if they are incomplete or incorrectly processed,
• Requesting the deletion or destruction of personal data within the framework of Article 7 of the Law,
• When you request the correction of incomplete or inaccurate data and the deletion or destruction of your personal data, request that this situation be notified to the third parties to whom we have transferred your personal data,
• Object to the emergence of a result against the individual by analyzing the processed personal data exclusively through automatic systems, and
• Request compensation for damage in case of damage due to illegal processing of personal data.
What is the Application and Complaint Process Regarding Your Personal Data?
You can submit your applications regarding your rights listed above to Crowne Plaza Bosphorus via info@cportakoybosphorus.com. Depending on the nature of your request, your applications will be finalized free of charge as soon as possible and within thirty days at the latest; However, if the process requires an additional cost, you may be charged according to the tariff determined by the Personal Data Protection Board.