Türkiye İş Bankası shows special consideration in ensuring the safety and privacy of the information belonging to our customers. This matter is a legal obligation of our Bank in accordance with the relevant legislation as well as it is a priority of our Bank's sensitivity of the issue. In the scope of our approach in showing the utmost care to protect our customers’ information and to act in accordance with the relevant legislation; our bank prepared detailed regulations on this issue and accepted the principle to protect our customer information throughout all of our practices. In addition to that, we prepared procedures to ensure that all of our employees demonstrate the highest level of sensitivity in this matter.
Information including personal data belonging to our customers is not shared in any way or form with third parties without customers’ consent, except for the cases where legal entities or regulatory authorities demand access to these information according to relevant legislation.
Our Bank ensures that our supporting services’ providers do always abide by our Bank’s privacy standards and requirements.
Accordingly, it is our basic approach to protect all information belonging to the Bank and to our customers from unauthorized access, false use and alteration, corrosion and destruction; ensure the privacy, integrity and availability of the information.
When you share your personal information (address, phone, fax, e-mail etc.) with our Bank, this will only be used for fulfilling the services that you demanded, communicating (regarding operation and maintenance services) and renewing you contracts. Your data will not be shared with third parties unless you have given your consent for data sharing. However our bank may be obliged to share information with some third parties even without obtaining your consent when it is mandatory by law. We may communicate with you for marketing and promotion of banking, insurance and financing product and services if you are in our approved data base. You have a right of withdrawing your approval when you do not want to receive e-communications of our Bank. You will be released from our list of related channel by, for example, clicking the link “Please click here if you do not wish to receive any e-mail from our Bank regarding promotion of new product or services.” you may find at the bottom of an e-mail.
Address of the General Directorate: İş Kuleleri 34330 Levent Beşiktaş-Istanbul
Phone: 90(212) 316 00 00
Fax: 90(212) 316 09 00
Türkiye İş Bankası A.Ş.
Authorized Audit Body
Banking Regulation and Supervision Agency (BRSA)
Postal Address: Büyükdere Caddesi No:106 Şerbetçi İş Merkezi Esentepe Şişli/İstanbul
Phone: (212) 214 50 00
Fax: (212) 216 09 92
TÜRKİYE İŞ BANKASI A.Ş.
NOTICE ON THE PROTECTION AND PROCESSING OF PERSONAL DATA
In order to provide you with our products and services continuously and securely both in Turkey and abroad, we may collect, process and transfer your personal data to third parties when necessary.
We take the highest level of security precautions to protect your personal data’s confidentiality while collecting, processing, transferring and retaining them in accordance with law.
We would like to inform you of your rights, methods of retrieving your personal data and legal basis for its processing in the most transparent manner.
a) Data Processor and Its Representative
According to Law no.6698 on Protection of Personal Data (“Law no.6698”), your personal data may be processed by İşbank as the data processor, within the scope explained below.
b) For Which Purposes Personal Data Shall Be Processed
At the phase when you become a member of API Portal, your personal data which you have shared by filling in the İşbank API Portal Register menu and Contact Us menu (name, surname, communication details) within the scope of personal data processing terms and conditions set forth in the Law no.6698, for the purposes of determining, by İşbank business units, of number uses of API Portal, maintaining membership, measuring sustainability and capacity of API Portal.
It records your IP address used when connecting API Portal system, with the details of connection date, time and the address demanded from the system and/or related pages. Said information is key information both for system security and for resolution of possible user problems and shall not be used for any other purpose.
c) The Recipients and Purposes of Personal Data Transfers
Your processed personal data may only be transmitted to our related and authorised business units and legally competent public institutions and private persons, being limited to the purposes explained above, within the scope of personal data terms and conditions and purposes specified in articles 8 and 9 of the Law no.6698.
d) Method of and Legal Basis for Collection of Personal Data
e) Rights of Data Subject as Specified in Article 11 of the Law No.6698
If you, as the owner of personal data, send your demands relating to your rights, to our Bank by the methods regulated by “Türkiye İş Bankası A.Ş. Corporate Policy on Protection and Processing of Personal Data, shared with the public on the internet address www.isbank.com.tr, our Bank shall, depending on the nature of demand, conclude the demand free of any charge, as soon as possible and at the latest within thirty days. However, if the transaction requires an additional cost, our Bank shall charge the fee specified in the tariff set by the Personal Data Protection Board. In this context, owners of personal data shall have the rights;
• to be informed whether their personal data are processed or not,
• if their personal data are processed, to demand information in relation thereto,
• to be informed about the purposes of processing of personal data and whether they are used for intended purpose or not,
• to be informed about the third persons to whom personal data are transmitted in Turkey or abroad,
• if personal data are processed incompletely or incorrectly, to demand correction thereof and to demand notification of third persons to whom personal data are transmitted, the transaction made in this context,
• if, although they are processed according to the provisions of the Law no.6698 and other related laws, the reasons requiring to process them expire; to demand deletion or destruction of personal data and to demand notification of third persons to whom personal data are transmitted, the transaction made in this context,
• to raise objection against any consequence that may occur to the disadvantage of that person due to analysis of processed data exclusively by automatic systems,
• in case you suffer any loss due to illegal processing of personal data, to demand compensation of the loss.