Türkiye İş Bankası shows special consideration in ensuring the safety and privacy of the information belonging to our customers. This matter is a legal obligation of our Bank in accordance with the relevant legislation as well as it is a priority of our Bank's sensitivity of the issue. In the scope of our approach in showing the utmost care to protect our customers’ information and to act in accordance with the relevant legislation; our bank prepared detailed regulations on this issue and accepted the principle to protect our customer information throughout all of our practices. In addition to that, we prepared procedures to ensure that all of our employees demonstrate the highest level of sensitivity in this matter.
The personal data saved by automated or non-automated means and/ or shared electronically by our website visitors will be used primarily to fulfill their demands, and later on to provide them better online and banking services. Also, in accordance with the Privacy Policy of our bank, we show due diligence in protection and safety of your personal data.
Information including personal data belonging to our customers is not shared in any way or form with third parties without customers’ consent, except for the cases where legal entities or regulatory authorities demand access to these information according to relevant legislation.
Our Bank ensures that our supporting services’ providers do always abide by our Bank’s privacy standards and requirements.
Accordingly, it is our basic approach to protect all information belonging to the Bank and to our customers from unauthorized access, false use and alteration, corrosion and destruction; ensure the privacy, integrity and availability of the information.
This policy covers the information shared on this website and via other channels of our Bank; meaning privacy policies, ethical principles and terms of use of the websites we have given links to and of other websites will be in force. Therefore, our Bank is not responsible for the financial/emotional damages suffered in these websites.
When you share your personal information (address, phone, fax, e-mail etc.) with our Bank, this will only be used for fulfilling the services that you demanded, communicating (regarding operation and maintenance services) and renewing you contracts. Your data will not be shared with third parties unless you have given your consent for data sharing. However our bank may be obliged to share information with some third parties even without obtaining your consent when it is mandatory by law. We may communicate with you for marketing and promotion of banking, insurance and financing product and services if you are in our approved data base. You have a right of withdrawing your approval when you do not want to receive e-communications of our Bank. You will be released from our list of related channel by, for example, clicking the link “Please click here if you do not wish to receive any e-mail from our Bank regarding promotion of new product or services.” you may find at the bottom of an e-mail.
Our Bank reserves it’s right to modify this Privacy Policy in order to comply with the most updated version of the data protection law, without a prior notice to its customers or visitors. It is submitted that, such a revision on our privacy policy will be announced on our website as soon as possible. This policy has been last changed on 14.02.2017.
Institution Information
Address of the General Directorate: İş Kuleleri 34330 Levent Beşiktaş-Istanbul
Phone: 90(212) 316 00 00
Fax: 90(212) 316 09 00
Service Provider
Türkiye İş Bankası A.Ş.
Authorized Audit Body
Banking Regulation and Supervision Agency (BRSA)
Postal Address: Büyükdere Caddesi No:106 Şerbetçi İş Merkezi Esentepe Şişli/İstanbul
Phone: (212) 214 50 00
Fax: (212) 216 09 92
TÜRKİYE İŞ BANKASI A.Ş.
NOTICE ON THE PROTECTION AND PROCESSING OF PERSONAL DATA
In order to provide you with our products and services continuously and securely both in Turkey and abroad, we may collect, process and transfer your personal data to third parties when necessary.
We take the highest level of security precautions to protect your personal data’s confidentiality while collecting, processing, transferring and retaining them in accordance with law.
We would like to inform you of your rights, methods of retrieving your personal data and legal basis for its processing in the most transparent manner.
a) Data Processor and Its Representative
According to Law no.6698 on Protection of Personal Data (“Law no.6698”), your personal data may be processed by İşbank as the data processor, within the scope explained below.
b) For Which Purposes Personal Data Shall Be Processed
At the phase when you become a member of API Portal, your personal data which you have shared by filling in the İşbank API Portal Register menu and Contact Us menu (name, surname, communication details) within the scope of personal data processing terms and conditions set forth in the Law no.6698, for the purposes of determining, by İşbank business units, of number uses of API Portal, maintaining membership, measuring sustainability and capacity of API Portal.
Your communication details enable it to reach you when required. Approval of your membership and approval of changes in the information relating to membership, shall be effected by means of messages sent by e-mail. İşbank shall send you messages by e-mail and/or shall reach you by phone calls when required, provided that the limits set by it under the Terms of Use are not exceeded.
It records your IP address used when connecting API Portal system, with the details of connection date, time and the address demanded from the system and/or related pages. Said information is key information both for system security and for resolution of possible user problems and shall not be used for any other purpose.
c) The Recipients and Purposes of Personal Data Transfers
Your processed personal data may only be transmitted to our related and authorised business units and legally competent public institutions and private persons, being limited to the purposes explained above, within the scope of personal data terms and conditions and purposes specified in articles 8 and 9 of the Law no.6698.
d) Method of and Legal Basis for Collection of Personal Data
Your personal data shall be obtained by our Bank by the İşbank API Portal “Contact Us” menu which you shall fill in to communicate with İşbank about the APIs you are interested in, for the purpose of determining the number of uses of API Portal, communicating you with the purposes specified in the Terms of Use and ensuring security of the systems by the data processor. Your personal data referred to above may be processed and transmitted for processing of data for the purposes specified in paragraphs (b) and (c) of the Information Text within the scope of legitimate interests of İşbank, conclusion and execution, without impairing your basic rights and independences, within the scope of personal data processing terms and conditions specified in article 5 of the Law no.6698.
e) Rights of Data Subject as Specified in Article 11 of the Law No.6698
If you, as the owner of personal data, send your demands relating to your rights, to our Bank by the methods regulated by “Türkiye İş Bankası A.Ş. Corporate Policy on Protection and Processing of Personal Data, shared with the public on the internet address www.isbank.com.tr, our Bank shall, depending on the nature of demand, conclude the demand free of any charge, as soon as possible and at the latest within thirty days. However, if the transaction requires an additional cost, our Bank shall charge the fee specified in the tariff set by the Personal Data Protection Board. In this context, owners of personal data shall have the rights;
• to be informed whether their personal data are processed or not,
• if their personal data are processed, to demand information in relation thereto,
• to be informed about the purposes of processing of personal data and whether they are used for intended purpose or not,
• to be informed about the third persons to whom personal data are transmitted in Turkey or abroad,
• if personal data are processed incompletely or incorrectly, to demand correction thereof and to demand notification of third persons to whom personal data are transmitted, the transaction made in this context,
• if, although they are processed according to the provisions of the Law no.6698 and other related laws, the reasons requiring to process them expire; to demand deletion or destruction of personal data and to demand notification of third persons to whom personal data are transmitted, the transaction made in this context,
• to raise objection against any consequence that may occur to the disadvantage of that person due to analysis of processed data exclusively by automatic systems,
• in case you suffer any loss due to illegal processing of personal data, to demand compensation of the loss.