As Voila Health Tourism (Voila), we process your personal data in accordance with the Law on the Protection of Personal Data No. 6698 (“KVKK”), the Regulation on Personal Health Data, and other relevant legislation, as well as regulations by the Ministry of Health of the Republic of Turkey and relevant authorities, within the framework of this Information Notice.
The “Data Controller,” Voila’s corporate identity information is as follows:
Headquarters Address: Atatürk Mah. Ertuğrul Gazi Sk. No:2E / 27 Ataşehir / ISTANBUL
Phone: +908504605724
Website: www.voilahealthtourism.com/
Email Address: info@voilahealthtourism.com
Voila adopts the principle of ‘patient confidentiality’ while providing healthcare services and respects the privacy of its patients, potential patients, and their relatives, as well as the protection of their personal data. In this regard, your personal data is processed in compliance with the KVKK and all relevant legislation, stored securely, and all necessary administrative and technical measures are taken against possible unlawful accesses. This Information Notice explains what personal data collected within the scope of the services provided by our clinic are, the methods of collection, legal grounds for processing, purposes of processing, to whom they are transferred, and your rights regarding this matter.
Your personal data are collected by Voila, either entirely or partially through automatic or non-automatic means, provided that they are part of any data recording system, during communication via the website or social media, filled-in printed forms and surveys during patient registration processes at our clinic, medical examinations conducted by the Doctor, medical tests/examinations, communication with the Doctor and other staff members at our clinic, Doctor’s and clinic’s information management system, Doctor’s and clinic’s website, communication channels, email, telephone, fax, WhatsApp, other online and/or offline electronic communication platforms, shipping/mail, our social media accounts, health institutions and laboratories with which we collaborate due to consultations or services received, and their integrated systems, authorized public institutions and private organizations, and their integrated systems, as well as other methods (channels) that may be added in the future, for the purposes of protecting public health, preventive healthcare, conducting medical diagnosis, treatment, and care services, planning and managing the financing of healthcare services, by persons or authorized institutions and organizations under confidentiality obligation, as stipulated in the laws, explicitly foreseen in the laws, establishment or performance of a contract, legitimate interest, legal obligation, establishment, exercise or protection of a right, explicit consent within the scope of personal data processing conditions (legal grounds) in cases where your personal data are found to be publicly available as a result of your contacts from social media accounts.
Identity Data: All data related to identity such as the name-surname of the individuals whose data will be processed, nationality, Turkish identification number, passport number and information in case of not being a Turkish citizen, or temporary Turkish identification number, place and date of birth, marital status, gender information.
Contact Data: All data related to communication such as residential address, mailing address, mobile phone number, email address.
Visual and Auditory Data: Data within this scope includes images and sound recordings obtained through the closed-circuit camera system recorded by clinic security cameras, audio recordings kept in case of communication with our call center, personal data captured in photographs or videos for promotional, research, or confirmation and evidence of medical or aesthetic/cosmetic procedures or for the purpose of persuading other prospective patients for medical treatment.
Comments and Complaint Data: Data consisting of comments and complaints submitted to our clinic via the website, social media platforms, or other channels with consent and approval for the purpose of evaluating the services we provide.
Location Data: Address or location data voluntarily provided by individuals through any means with their consent.
Transaction Security Data (IP Data and Cookies): Data within this scope includes IP addresses, browser information, website login and exit information, (Mac ID, IP address information, website login and exit information).
Financial Data: Data such as bank account number and IBAN number of individuals requested and processed for employees working in the company and patients receiving services from the company.
Health Data: Any and all health data obtained during the provision of medical diagnosis, treatment, and care services, such as laboratory and imaging results processed with the consent of the individual, blood type, examination data, prescription information, which need to be followed for legal reasons in medical files.
Vehicle Plate Data: Data within this scope includes vehicle plate data in case of benefiting from company-owned parking lots or private valet services.
Customer Transaction Data: Data such as call center records, invoices, promissory notes, checks, counter receipts, order information, request information, and similar data.
Physical Space Security: Data within this scope includes entry and exit record information of employees and visitors, security camera recordings.
Your personal data and special categories of personal data mentioned above will be processed for the following purposes:
5.1. Provision of preventive healthcare, medical diagnosis, treatment, and care services for public health, whether or not the individual is a patient,
5.2. Sharing of information requested by the Ministry of Health and other relevant official institutions and organizations in accordance with health legislation,
5.3. Financing of healthcare services, covering expenses for examinations, diagnosis, and treatment, by patient services, financial affairs, and marketing departments,
5.4. Informing patients about appointments through customer representatives, call centers, and other channels,
5.5. Verification of identity by patient services and other operational units,
5.6. Measuring, enhancing, and researching patient satisfaction by hospital management, patient rights, and patient experience departments,
5.7. Invoicing by patient services and financial affairs departments,
5.8. Responding to any inquiries and complaints regarding our healthcare services by hospital management, patient rights, call center, and patient relations departments,
6.1. Planning and managing internal processes by call centers, patient relations, and hospital management,
6.2. Research and analysis conducted by service quality, patient experience, and information technology departments to improve the quality of healthcare services,
6.3. Providing training to employees by human resources management and quality departments,
6.4. Monitoring and preventing misuse or unauthorized transactions by internal audit and information technology departments,
6.5. Execution of risk management and quality improvement activities by quality and information technology departments,
6.6. Taking all necessary technical and administrative measures for data security by hospital management and information technology departments,
6.7. Facilitating necessary communications for transportation, accommodation, and hospitality services under health tourism by officials,
6.8. Participation in campaigns and provision of campaign information by patient relations, marketing, and call center departments; designing and conveying special content, tangible, and intangible benefits on the web, other mobile channels, social media,
6.9. Execution of training and activities by educational institutions collaborating with the organization.
Your personal data obtained and processed in accordance with the relevant legislation may be transferred to Voila’s physical archives and/or information systems and kept both in digital and physical formats.
Your personal data is stored and destroyed in accordance with the general principles and regulations specified in the storage and destruction policies and procedures prepared in compliance with the Regulation on the Deletion, Destruction, or Anonymization of Personal Data and other relevant legislation.
In this context, your personal data will be destroyed when all the conditions for processing personal data specified in Articles 5 and 6 of the KVKK cease to exist. Your personal data will continue to be processed for the statutory limitation periods following the termination of your relationship with our clinic. Personal data processed based on explicit consent will be destroyed in the first destruction period upon withdrawal of your consent. For requests regarding the destruction of your personal data, we kindly ask you to review section 6 of this Information Notice.
As the data subject, we hereby inform you that you have the following rights under Article 11 of the KVKK:
To exercise the rights mentioned above, you can send your request (application text) containing your explanations regarding the right you wish to exercise, along with the necessary information to identify your identity, to our address Atatürk Mah. Ertuğrul Gazi Sok. 2E/27 Ataşehir/İSTANBUL by notary, or you can personally deliver it to our address with identity verification documents and information, or you can send it electronically signed securely to info@voilahealthtourism.com.
In accordance with Article 5 of the KVKK and Article 7 of the Regulation, your personal data/personal data may be processed without your explicit consent in the following cases:
Personal health data; for the purpose of protecting public health, preventive medicine, medical diagnosis, treatment, and care services, and for the planning and management of health services and financing, may be processed without the explicit consent of the data subject by persons or authorized institutions and organizations under the obligation of secrecy, and may be transferred to the relevant institutions and organizations in accordance with the law and relevant regulations.