Your personal data may be processed by Atasam Health Group (“Atasam Hospital”) as the Data Controller within the scope of the Personal Data Protection Law No. 6698 (“Law”) and the relevant legislation, within the framework described below and in accordance with the Regulation on Private Hospitals and the regulations of the Ministry of Health and other legislation

Obtaining, Processing and Processing Purposes of Personal Data

Your personal data is obtained by Atasam Healthcare Group through verbal, written, visual or electronic media, call center, website, verbal, written and similar channels for the purposes of protecting public health, preventive medicine, medical diagnosis, treatment and care services, planning and management of health services and financing, and in accordance with Atasam Healthcare Group’s fields of activity. Your personal data of special nature, especially your health data, and your personal data of general nature can be processed by Atasam Health Group in a measured and measured manner in connection with the purposes specified in this article, including but not limited to the following:
Your identity information: Your name, surname, Turkish ID number, passport number or temporary Turkish ID number, place and date of birth, marital status, gender, insurance and/or patient protocol number and other identification data that can identify you;
Your Contact Information: Your address, telephone number, e-mail address and other contact data, your voice call records kept by customer representatives or patient services in accordance with call center standards, and your personal data obtained when you contact us via e-mail, letter or other means;
Your Accounting Information: Your financial data such as your bank account number, IBAN number, credit card information, billing and invoice information;
Your data regarding private health insurance for the purpose of financing and planning of health services and your Social Security Institution data
Your Health Information: All kinds of health data obtained during or as a result of the execution of medical diagnosis, treatment and care services, including but not limited to patient medical reports, diagnostic data, biometric and genetic data, laboratory results, test results, examination data, appointment information, prescription information,
Customer relationship management: Questionnaires filled out by patients, letters of thanks and complaints, satisfaction results, etc. Notifications you make to evaluate Atasam Health Group,
Your health data and other personal data that you send or enter to atasamhospital.com.
All kinds of your personal data obtained by Atasam Health Group (including but not limited to personal data of special nature) may be processed for the following purposes:
Confirming your identity,
Protection of public health, preventive medicine, medical diagnosis, treatment and care services, planning and management of health services and financing,
Planning and managing the internal functioning and daily operations of our Hospitals and Medical Centers,
Supply of medicines,
If you make an appointment, you can be notified about the appointment,
Fulfillment of risk management and quality improvement activities,
Fulfillment of legal and regulatory requirements,
Confirming your relationship with the institutions contracted with Hospitals and Medical Centers or financial reconciliation with these institutions regarding the health services provided to you,

Sharing requested information with private insurance companies for the financing of health services,
Billing for our services,
Sharing the information requested with the Ministry of Health and relevant public institutions and organizations in accordance with the relevant legislation,
Taking all necessary technical and administrative measures within the scope of data security of the systems and applications of our Hospitals and Medical Centers,
Analyze your use of healthcare services and store your health data in order to develop and improve the healthcare services we provide to you,
Providing the necessary information in line with the requests and audits of regulatory and supervisory institutions and official authorities,
Maintaining information about your health data that must be kept in accordance with the relevant legislation,
And without limitation, the execution, development of medical diagnosis, treatment and care services, planning and management of health services and financing, increasing patient satisfaction, research and similar purposes.

Your personal data obtained and processed in accordance with the relevant legislation may be transferred to the physical archives and/or information systems of Atasam Health Group and kept both in digital and physical environment.

Transfer of Personal Data

Your personal data may be transferred by Atasam Health Group within the scope of the Law and other legislation and for the above-mentioned purposes, private insurance companies, the Ministry of Health and related units, the Social Security Institution, the General Directorate of Security and other law enforcement agencies, the General Directorate of Population, the Union of Pharmacists of Turkey and all kinds of judicial authorities, central and other third parties, your authorized representatives, your contracted institution, lawyers, third parties from whom we receive consultancy, including tax and financial advisors, regulatory and supervisory institutions, official authorities, in order to develop or carry out health services for the above-mentioned purposes.
Method and Legal Reason for Obtaining Personal Data

Your personal data is obtained in all kinds of verbal, written, visual or electronic media, for the above-mentioned purposes and for the provision of health services within the legal framework determined and in this context, in order for Atasam Health Group to fully and duly fulfill its contractual and legal obligations.
Your Rights for the Protection of Personal Data

As a personal data owner, to learn whether personal data is processed in accordance with the legislation on your personal data processed; to request information if personal data has been processed; to access and request personal health data; to learn the purpose of processing personal data and whether they are used in accordance with their purpose; to know the third parties to whom personal data is transferred in the country; to request correction of personal data in case of incomplete or incorrect processing; to request deletion or destruction of personal data; if personal data is incomplete or incorrectly processed, to request that third parties to whom personal data is transferred be notified of the correction and/or deletion or destruction of personal data; to object to the occurrence of a result to the detriment of the person himself/herself by analyzing the processed data exclusively through automated systems, and to request us to compensate the damage in case of damage due to unlawful processing of personal data.

If you exercise your right to learn whether personal data is processed or not, your right to request information if personal data has been processed; your right to access and request personal health data, your right to learn the purpose of processing personal data and whether they are used in accordance with their purpose, or your right to know the persons/institutions to whom personal data is transferred in the country, the relevant information will be notified to you in writing or electronically, in a clear and understandable manner, through the contact information provided by you.
Data Security
Atasam Health Group protects your personal data in full compliance with all technical and administrative security controls that must be taken in accordance with information security standards and procedures and at an appropriate level against possible risks.
Complaint and Contact
If you have any rights or requests that you wish to exercise within the scope of the above articles, you may send a petition bearing your wet signature to Derebahçe, Bahçıvan Sk. No:14, 55060 İlkadım/Samsun/Turkey. Depending on the nature of the request, we will finalize the request free of charge as soon as possible and within thirty (30) days at the latest. However, if the transaction requires an additional cost, we will charge the fee in the tariff determined by the Personal Data Protection Board.