GDPR

GDPR Compliance Statement

GDPR

Introduction
We, at KBBest Clinic, respect your privacy and are committed to protecting your personal data. This GDPR Compliance Statement outlines how we collect, use, and protect your personal information in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR).

Data Controller
Op. Dr. Ebru Topuz
KBBest Clinic
info@drebrutopuz.com
Address: Bahçelievler, Ressam Halim Sk. 7/45, 34180 Bahçelievler, Istanbul, Turkey

Types of Data Collected
  • Identity Data: Name, surname, age, gender, birthday.
  • Contact Data: Email address, phone number, physical address.
  • Health Data: Medical history, treatment information.
  • Technical Data: IP address, browser type, location data.
Purpose of Data Collection

Your personal data is collected and processed for the following purposes:

  • To provide medical services and consultations.
  • To communicate with you regarding appointments and treatment plans.
  • For billing and administrative purposes.
  • To comply with legal obligations.
Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: You have given explicit consent for us to process your personal data.
  • Contract: Processing is necessary for the performance of a contract with you.
  • Legal Obligation: To comply with legal and regulatory requirements.
  • Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services.
Data Retention

We will retain your personal data only as long as necessary to fulfill the purposes we collected it for, including legal, accounting, or reporting requirements.

Data Subject Rights

Under the GDPR, you have the following rights:

  • Access: Request access to your personal data.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data.
  • Restriction: Request restriction of processing your data.
  • Portability: Request transfer of your data to another service provider.
  • Objection: Object to the processing of your data.
Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or damage.

International Transfers

As we operate in Turkey, your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate protection for such transfers through standard contractual clauses or other appropriate safeguards.

Contact Us

For any questions or concerns regarding this GDPR Compliance Statement or your personal data, please contact us at:
Email: info@drebrutopuz.com
Phone: +90 532 320 64 83

Changes to This Statement

We may update this GDPR Compliance Statement from time to time. Any changes will be posted on our website.

Last Updated: 16.05.2024