INFORMATION NOTICE ON THE PROCESSING OF PERSONAL DATA

  • Acıbadem Sağlık Hizmetleri ve Ticaret A.Ş. and its controlling and affiliated companies listed in Annex-1 (each referred to individually as the "Company" and collectively as the "Companies") process your general and/or special category personal data (including but not limited to health data) ("Personal Data") in the capacity of Data Controller under the Personal Data Protection Law No. 6698 ("Law") and related legislation. Processing of Personal Data is carried out in accordance with the framework outlined below and in compliance with the Fundamental Law on Health Services No. 3359, the Decree Law No. 663 on the Organization and Duties of the Ministry of Health and its Affiliated Institutions, the Regulation on the Provision of Remote Health Services, the Private Hospitals Regulation, the Ministry of Health regulations, and other relevant legislation.

    • I. Acquisition, Processing, and Purposes of Processing Personal Data

    Your Personal Data is obtained through verbal, written, visual, or electronic channels (such as our website, mobile applications, and call center) for the purposes of protecting public health, preventive medicine, medical diagnosis, treatment and care services, and the planning and management of healthcare services and their financing, in alignment with the Company's fields of activity. The Personal Data processed by the Company, including but not limited to the following, is collected and processed proportionally and in connection with these purposes:

  • Identity Information: Name, surname, Turkish ID number, passport number, nationality information, temporary Turkish ID number, place and date of birth, marital status, gender, insurance or patient protocol number, and other identity-related data, including name and surname of the patient's relative if shared with us.
  • Contact Information: Address, phone number, email address, and other communication data, as well as call recordings kept in accordance with call center standards, and Personal Data obtained via electronic mail, letter, or other means of communication, including the contact details of the patient’s relative if shared with us.
  • Visual Data: Photos and camera footage uploaded by you to the Acıbadem Online system during registration; security camera images obtained during visits to our hospitals and medical centers.
  • Audio Data: Voice recordings obtained via the call center, online support service, or security cameras at our hospitals and medical centers.
  • Financial Information: Bank account number, IBAN number, credit card information, billing details, and other financial data.
  • Health Information: Laboratory results, test results, epicrisis reports, examination and surgery data, appointment details, check-up records, prescription details, and other Personal Data obtained in connection with medical diagnosis, treatment, and care services.
  • Usage Data: Browser and navigation information, IP address, and any voluntarily provided Personal Data obtained during the use of our website and mobile applications.
  • Customer Satisfaction Data: Opinions and evaluations shared regarding the services received from the Company.

    • Your Personal Data may be processed under the conditions specified in Articles 5 and 6 of the Law for the following purposes:

  • Verifying your identity;
  • Notifying you and managing support services for requested services;
  • Managing communication channels (e.g., social media, call center, messaging applications);
  • Protecting public health, preventive medicine, medical diagnosis, treatment, and care services;
  • Sharing required information with the Ministry of Health and other public institutions;
  • Managing hospital and medical center operations;
  • Enhancing patient satisfaction;
  • Procuring medication;
  • Providing appointment confirmations and reminders;
  • Performing risk management and quality improvement activities;
  • Analyzing healthcare services for improvement;
  • Facilitating the financing of healthcare services;
  • Managing participation in clinical research studies;
  • Complying with legal obligations;
  • Conducting internal financial and operational activities;
  • Ensuring security and monitoring during hospital visits;
  • Providing remote healthcare services and monitoring clinical parameters;
  • Issuing e-prescriptions and e-reports.

    • II. Transfer of Personal Data

    Your Personal Data may be shared with:

  • Private insurance companies;
  • The Ministry of Health and affiliated institutions;
  • The Social Security Institution, law enforcement agencies, judicial authorities;
  • Your authorized representatives and attorneys;
  • Tax and financial advisors, auditors, and consultants;
  • Regulatory and supervisory authorities;
  • Business partners involved in the provision of healthcare services;
  • Companies listed in Annex-1;
  • Social media and messaging platforms when used to communicate with us.

    • III. Method and Legal Basis for Collecting Personal Data

    Your Personal Data is collected through verbal, written, visual, or electronic means for the lawful execution of the Company's activities and compliance with contractual and legal obligations. The legal basis for collection includes:

  • Personal Data Protection Law No. 6698;
  • Principle Law on Health Services No. 3359;
  • Decree Law No. 663 on the Organization and Duties of the Ministry of Health;
  • Private Hospitals Regulation;
  • Regulation on Outpatient Diagnosis and Treatment;
  • Regulation on the Provision of Remote Health Services;
  • Regulation on Processing and Protection of Personal Health Data;
  • Ministry of Health regulations and other relevant laws.
  • As per Article 6 - (3) of the Law, personal data related to health and sexual life may be processed without explicit consent by persons or institutions subject to confidentiality obligations for public health protection, preventive medicine, medical diagnosis, treatment, and care services, as well as the planning and management of healthcare financing.

    • IV. Your Rights Regarding the Protection of Personal Data

    Under Article 11 of the Law, you have the right to:

  • Learn whether your Personal Data is processed;
  • Request information if your Personal Data has been processed;
  • Learn the purpose of processing and whether it is used accordingly;
  • Know the third parties to whom Personal Data is transferred domestically or abroad;
  • Request correction of incorrect or incomplete Personal Data;
  • Request deletion or destruction of Personal Data;
  • Request notification of corrections or deletions to third parties;
  • Object to decisions made solely by automated systems;
  • Request compensation for damages due to unlawful processing.

    • V. Data Security

  • The Companies ensure the security of Personal Data by implementing necessary technical and administrative measures in accordance with information security standards and procedures.

    • VI. Complaints and Contact Information

  • To exercise your rights under the Law, you may submit a request through the methods specified in the "Acıbadem Sağlık Hizmetleri ve Ticaret A.Ş. Data Subject Application Form" available at.

    • Requests can be submitted by mail, notarized document, or secure electronic means to:

  • Atatürk Mahallesi, Feza Sokak, No:3, K:12, Ataşehir, Istanbul;
  • acibademsaglik@hs02.kep.tr;
  • kisiselveri@acibadem.com.

    • ANNEX-1: List of Companies

  • Acıbadem Sağlık Yatırımları Holding A.Ş.
  • Acıbadem Sağlık Hizmetleri ve Tic. A.Ş.
  • Acıbadem Poliklinikleri A.Ş.
  • International Hospital İstanbul A.Ş.
  • Aplus Hastane Otelcilik Hizmetleri A.Ş.
  • Acıbadem Labmed Sağlık Hizmetleri A.Ş.
  • Acıbadem Mobil Sağlık Hizmetleri A.Ş.
  • Acıbadem Teknoloji A.Ş.
  • Bodrum Medikal Sağlık Hiz. A.Ş.
  • LifeClub Sağlıklı Yaşam Hiz. A.Ş.