INFORMATION ABOUT THE PROTECTION AND PROCESSING OF PERSONAL DATA
The banking operations carried out by our bank to present you, our valuable customers, our products and services at home and abroad in a continuous and secure way may require the collection and processing your personal data either conveyed by you to our Bank or gathered by our Bank through several channels and transfer them to third persons.
Our Bank takes all the measures at the highest security level possible to protect the privacy of your personal data throughout the course of the collection, storing, processing and, where necessary, sharing your personal data with third parties in compliance with the related laws and legislations.
Our aim is to inform you to your satisfaction about your personal data with respect to the collection methods, processing purposes, legal ground for processing of such data and your rights in this respect in the most transparent way.
a) Person Responsible for the Data
Your personal data will be collected and processed by TURKIYE IS BANKASI A.S. as the person responsible for the data in compliance with the Law no. 6698 on the Protection of Personal Data (Law no. 6698) within the scope indicated below.
b) The Purposes of Processing Your Personal Data
Your personal data will be processed in compliance with the provisions and purposes indicated in Articles 5 and 6 of the Law no. 6698 for the following purposes: meeting the requirements arising from your contracts and carrying out your orders; evaluating the services delivered; evaluating the credibility; ensuring that banking operations are carried out in compliance with the national and international legislations, particularly with those connected with the banking and insurance sectors, legislations concerning the prevention of the laundering of incomes generating from criminal acts, legislations regarding capital market, tax laws, legislations about the Social Security Agency and law on the protection of consumers, and meeting the obligations arising from risk monitoring and information; meeting the obligations arising from information sharing, reporting and information against Credit Recording Office, Interbank Card Centre, Banking Regulation and Supervision Agency, Central Bank of Turkey, Capital Markets Board of Turkey, The Financial Crimes Investigation Board, The Banks Association of Turkey, Department of Revenue Administration affiliated to the Ministry of Treasury and Finance, Office of the Under Secretary for Treasury affiliated to the Prime Ministry and other public authorities; meeting the legal obligations concerning the storage of information and documentation; prevention of fraud; ensuring the security; performing the operations to meet the needs of our Bank regarding planning and statistics; determining and implementation of the commercial and business strategies of our Bank; carrying out the operations regarding finance, communication, market survey and procurement; maintaining the bank-intern system and application management operations; management of our legal processes and realisation of our social responsibility projects and being able to deliver you a continuous, better and more secure services.
Apart from the purposes indicated above, your personal data can also be processed; to communicate with you valuable customers concerning any products and services specific for you, which you have already bought or will buy. They can also be used, under your consent, in promotions, product/service offers, marketing activities and campaigns, to develop services and products suitable for you, in customer satisfaction surveys, in projects to enhance current product line of our Bank and our affiliate companies as well as in order to develop new products, in market surveys and defining target customer groups etc.
Your personal data can also be processed, within the framework of the contracts our Bank concludes with third natural or legal persons having business relations with our Bank or within the scope of activities jointly performed with these persons, to meet the legal and commercial obligations of our Bank arising from such contracts, further in establishing and protecting rights, in processes of commercial and legal evaluation, in legal and commercial risk analyses and also in order to carry out financial operations.
c) To whom and for what Purpose can Your Personal Data be transferred?
Your personal data may be transferred in compliance with the conditions and purposes regarding personal data processing defined in Art. 8 of the Law no. 6698 concerning the transfer of personal data as well as Art. 9 of the same law concerning the transfer of personal data abroad and only to a limited extent for the purpose of meeting the purposes indicated above and to meet the obligations arising from the related legislations within the limits defined in the related legislations, particularly those stipulated in the Banking Law to; public authorities such as the Banking Regulation and Supervision Agency, Capital Markets Board of Turkey, Central Bank of Turkey, the Financial Crimes Investigation Board, Risk Centre of the Banks Association of Turkey, Department of Development and Support of Small and Middle Scale Enterprises, Department of Revenue Administration affiliated to the Ministry of Treasury and Finance, Office of the Under Secretary for Treasury affiliated to the Prime Ministry and Social Security Agency; legally authorised public authorities such as ministries, judicial authorities; institutions such as Interbank Card Centre, Credit Record Office and FINDEKS; business partners, shareholders, affiliate companies of İşbank at home and abroad as well as companies for which we carry out operations under agency/broker status at home and abroad; support service companies from which İşbank receives supplementary or extension services required for its own activities and other contracted institutions; consultants and organisations in cases where the related legislations allow it; finance institutions, independent auditing companies; organisations offering payment systems including Europay Int. SA, Western Union, Mastercard Int. INC, Visa INC, JCB Int. Co., Maestro, Electron, other organisations offering cards, and banks.
ç) Methods and Legal Ground of Personal Data Collection
Your personal data are collected through; the Head Office of Turkiye Is Bankasi A.S., its branches, ATMs, internet sites, internet branch, mobile and digital applications, social media domains, call centres, companies for which we carry out activities under agent/broker status, contracted dealers, meetings with clientele, SMS messages, applications in written/digital form submitted to the web of our Bank and other websites; channels through which our Bank or organisations and persons such as support service organisations including the call centres providing services to our Bank under the authorisation of our Bank have used or will use to get in contact with you; stores contracted for card acceptance such as contracted stores or online shops and POS devices, market intelligence, and through accessing to the data bases of various institutions and organisations in cases where a legally binding obligation exists and under your prior consent, to the extent and within the limits allowed in the related legislations and agreements concluded.
Your personal data collected through these methods may be processed and transferred within the scope of the conditions and purposes set forth in Articles 5 and 6 of the Law no. 6698 for the purposes indicated in (b) and (c) of this Information text.
In accordance with Art. 11 of the Law no. 6698, you have the following rights:
•to learn whether your personal data have been processed;
•to request a document if your personal data have been processed;
•to get informed for what purpose your personal data have been processed and whether they have been used for its intended purpose;
•to get informed about the third persons to whom your personal data have been transferred at home and abroad;
•to request the correction of your personal data if they have been processed in a deficient or incorrect form and further to request that the third persons to whom such data have been transferred should be informed about the correction performed;
•to request that your personal data should be deleted or destroyed in cases where the ground for processing your personal data which had already been properly processed in compliance with the rules defined in the Law no.6698 and other relevant legislations has ceased to exist, and further to request that the third parties to whom such data have been transferred should be informed about the operation performed;
•to raise an objection against any circumstance where you believe you have got into any disadvantage or inconvenience as a result of any analysis of the processed data exclusively through automated systems;
•to request the indemnification of any damage you may suffer due to illegal processing of your personal data.
If you convey us any your claims regarding your rights mentioned above using the methods mentioned below, our Bank will have finalised your claim free-of-charge in the shortest time possible, but within 30 days at the very latest depending on the content of your claim. However, in case when the processing of your claim causes any expenses, the fee defined in the price list designed by the Personal Data Protection Board will be collected. In this context, according to Art. 13 Paragraph 1 of the Law no. 6698, you can convey your claim to our Bank regarding your request to exercise your rights mentioned above in written form or in any other method to be defined by Personal Data Protection Board. Within this framework, you can send us your claim in written form to be submitted according to Art. 11 of the Law no. 6698 through the channels and methods indicated below. Please communicate us your application with wet signature to exercise your rights in this respect through the channels and methods indicated below:
• You can deliver your application by hand in our nearest Branch together with documents evidencing your identity,
• or send it to the address “Is Kuleleri 34330 Levent Besiktas-Istanbul” through a public notary,
• or convey it with a secure electronic signature to the address isbankasi@hs02.kep.tr.
Last updated on: 04.04.2018
Corporate Information
Address of the Head Office: Is Kuleleri 34330 Levent Besiktas-Istanbul
Tel. number: 90(212) 316 00 00
Faks: 90(212) 316 09 00
Hosting Provider
Turkiye Is Bankasi A.S.
Authorised Auditing Body
Banking Regulation and Supervision Agency (BDDK)
Postal Adress: Büyükdere Caddesi No:106 Şerbetçi İş Merkezi Esentepe Şişli/İstanbul
Telefon: (212) 214 50 00
Faks: (212) 216 09 92
Web Adress: www.bddk.org.tr