Who We Are
EyeTravelTurkey, owned and operated by Kaşkaloğlu Eye Hospital, is committed to ensuring the privacy and security of our patients’ personal data. This statement outlines how we collect, process, store, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679.

1. Data Collection and Processing
We collect and process personal data only for specified and legitimate purposes, including:

• Booking and managing medical appointments and travel services

• Providing medical care and treatment

• Communicating with patients regarding their procedures and follow-ups

• Handling inquiries and customer support

• Compliance with legal and regulatory requirements

The types of personal data we collect may include:

• Name, surname, date of birth

• Contact details (phone, email, address)

• Medical history and health-related data

• Passport or identification information for travel arrangements

2. Legal Basis for Processing
We process personal data based on the following legal grounds:

• Patient consent for medical procedures and related services

• Performance of a contract (e.g., travel arrangements, medical procedures)

• Compliance with legal obligations

• Legitimate interests in improving our services and ensuring patient safety

3. Data Security and Protection
We implement appropriate technical and organizational measures to protect personal data from unauthorized access, loss, or misuse. This includes:

• Secure data storage with restricted access

• Encryption of sensitive information

• Regular security audits and compliance checks

4. Data Sharing and Transfers
We do not sell or rent personal data. Data may be shared with:

• Medical professionals and staff involved in patient care

• Travel service providers (only with patient consent)

• Regulatory and legal authorities when required by law

If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or equivalent measures.

5. Patient Rights Under GDPR
Patients have the following rights regarding their personal data:

• Right to Access: Request a copy of the personal data we hold

• Right to Rectification: Correct inaccurate or incomplete data

• Right to Erasure: Request deletion of personal data (subject to legal and medical record-keeping obligations)

• Right to Restrict Processing: Limit the use of personal data under certain conditions

• Right to Data Portability: Receive data in a structured, commonly used format

• Right to Object: Object to data processing based on legitimate interests

• Right to Withdraw Consent: Withdraw consent at any time for data processing based on consent

To exercise any of these rights, patients can contact us at: [Insert Contact Email]

6. Data Retention
We retain personal data only for as long as necessary to fulfill medical, legal, and business requirements. Medical records are stored securely in accordance with applicable healthcare laws.

7. Contact Information
For questions or concerns regarding data protection, please contact:

Kaşkaloğlu Eye Hospital / EyeTravelTurkey

Alsancak, 1400. Sk. No:10, 35220 Konak/İzmir

info@kaskaloglu.com

+90 (532) 596 16 01

We are committed to protecting your privacy and ensuring compliance with GDPR regulations.