DENİZBANK A.Ş.
Privacy Notice Regarding API Portal
As DENIZBANK A.Ş.(“DENİZBANK”), we take the necessary measures by acting in data controller capacity at the stages of keeping, processing and transferring your personal data per the legislation in alignment with the Personal Data Protection Law no. 6698 (“KVKK”) and the principle of protecting the privacy of the private life and basic rights and freedoms of persons.
With this privacy notice, we would like to inform you about your personal data which we process during the registration you will be making to use the API Portal offered by DENIZ and your portal use, methods of collecting your personal data, legal causes and purposes of us processing your personal data, persons/institutions to which your personal data is transferred, the purposes of transfer and your rights.
You can obtain information about our bank processing your personal data via the table provided below.
Address: Büyükdere Cad. No: 141 Esentepe 34394 Şişli / İSTANBUL
Central Registry System / Registry No: 0292-0084-4960-0341 / 368587
1. Your Processed Personal Data
Your personal data processed by our bank are grouped in the table below.
Personal Data Group | Personal Data |
Identity information | E.g. Name-surname, mother’s and father’s name, date of birth, place of birth, marital status, ID card serial number, Republic of Turkey ID number, etc. |
Contact information | e.g. email address, home/work/contact address, registered e-mail address (KEP), telephone number, etc. |
Location | E.g. Location information etc. |
Transaction Security | E.g. IP address information, website login – logout information, password and passcode information, etc. |
Marketing | E.g. Information on shopping history, surveys, cookie logs, information obtained via promos, etc. |
Customer Transaction information | E.g. Information in the documents filled out for application/registration (form, agreement and other similar documents, information etc.) |
2. Methods of Collecting Your Personal Data
This section contains all the areas in which we collect your personal data for the purposes of registering, applying, assessing your personal data on the API Portal and managing the agreement and customer relations as DENİZBANK.
Your data provided by you to our bank:
This covers data provided through the registration/application you make digitally (website etc) directly and/or through your representatives indirectly (e.g. attorney, guardian, custodian etc) Thus, we collect your data through your product/service/campaign applications and meetings you have with our bank and information and documents you present.
Data we collect form the third persons:
Databases of public institutions and other institutions on which your identity and address information are registered (e.g: Identity Sharing System (“KPS”), Address Sharing System (“APS”).
The parties from which our bank receive services qualifying as complementary to or an extension of our bank’s activities which mediate the establishment of a contractual relationship with our bank, contracted organizations and support service and outsourcing organizations, organizations which we cooperate in marketing and advertising for the purpose of directing such as comparison websites
Social networks and other technology providers (e.g when you reach us through our Facebook or Google advertisements),
Your workplace (e.g.: to confirm income information),
The persons appointed to act on your behalf,
Companies to help us offer you more customized and attractive products and services,
We collect the data which we acquire from companies providing data services from which we receive reporting service to understand our customers better and assess the general tendencies via automatic or non-automatic methods in any kind of written, verbal and visual format.
In the event that you give personal data about other persons to us (e.g. the persons you provided services for, your employers, your users, your employees etc) or ask us to share the personal data of these persons with the third parties, you confirm that the said persons have been informed about this Privacy Notice about how we are going to use their information and that they have understood the information herein.
3. What we use your personal data for and the legal basis for doing so
We process your personal data acquired by our bank for the purposes and legal causes provided below.
Personal Data Group | Purposes of Processing | Legal Basis |
Identity information, contact information, customer transaction information | Receiving and assessing your application/record Creating Visitor Cards and Follow-up | - being clearly stipulated in laws pursuant to the article 5/2 of KVKK - Pursuant to the article 5/2 (c) of KVKK, provided that it is directly related with establishing or executing an agreement, it is necessary to process personal data concerned with the parties to the agreement - As per article 5/2(ç) of KVKK; being mandatory for the data controller to fulfil its legal obligations. - Data processing being obligatory to establish, exercise or protect a right as per the article 5/2 of KVKK |
Identity information, contact information | Executing the information processes concerning the product | |
Location information | Conducting Storage and Archive Activities | |
Identity information, contact information, customer transaction information | Carrying Out Customer Relations Management Processes | |
Identity information, contact information, transaction security information, marketing information
| Carrying Out the Marketing, Advertising/Campaign/Promotion Processes of Products/Services | - to have an explicit consent pursuant to the article 5/1 of KVKK |
4. Who we will share your personal data with and For What Purposes
· For the purpose of fulfilling our legal obligations as per the Banking Law, Law on Preventing the Laundering of Proceeds of Crime and other legislation provisions we are subject to;
Your Personal Data is shared with:
public institutions and organizations, ministries and judicial authorities including Financial Crimes Investigation Board, Revenue Administration, Banking Regulation and Supervision Agency, Personal Data Protection Authority/Board, Capital Markets Board, Central Bank of Republic of Türkiye, MASAK, The Banks Association of Türkiye, Undersecretariat of Treasury, Information Technologies and Communication Institution, Social Security Institution, ministries, judicial authorities, judicial bodies/investigation authorities such as police directorate, chief prosecutor's offices, courts and arbitration/mediation bodies
To perform our API Portal service and offer you the suitable products and services in connection and to be limited with your request;
with the organization which we receive support service and/or outsourcing service from which mediate the establishment of a contractual relationship with our bank and our business partners (e.g. programme partner organizations, banks, financial institutions), suppliers from which we receive services, other support institutions/outsources, subcontractors, your workplace, card providers such as Visa and Mastercard, institutions whose collection payments are mediated, mobile service providers authorized by the Information Technologies and Communications Authority, persons and companies whose data you ask us to share,
- law firms for the purpose of being able to provide support and consultancy service for the bank,
- Denizbank Financial Services Group Organizations within the framework of article 73 of the Banking Law and Laundering of Proceeds of Crime legislation
and not to be limited to those, with natural persons and legal entities where data transfer is mandatory within the scope of art.8 and art.9 of KVKK.
5. Your Rights
You have the following rights regarding your personal data as per the article 11 of KVKK:
a) Finding out if your personal data has been processed or not,
b) If your personal data has been processed, requesting information on it,
c) Finding out about the purpose of your personal data being processed and if they are used in line with the purpose,
d) Finding out about the third parties to which your personal data is transferred in and outside of the country,
e) In case your personal data is processed incompletely or inaccurately, asking for correction and requesting that the third parties to which your personal data is transferred be notified of the transaction realized within this scope.
f) If the reasons requiring the processing are removed even though your data is processed in line with the Law no. 6698 and the other provisions of the law, requesting the deletion or destruction of your personal data and requesting the notification of the third parties to which your personal data is transferred
g) to object to the processing, exclusively by automatic means, of your personal data, which leads to an unfavourable consequence for you,
h) In case you suffer a loss due to illegal processing of your personal data, requesting the elimination of your loss.
Pursuant to the Law on Protection of Your Personal Data no.6698, you may exercise your rights by filling out the form that appears after selecting the subheadings “Complaint-Retail Banking-Law on Protecting Your Personal Data Complaint Notifications” on https://www.denizbank.com/bilgi-limani/bildirimde-bulunacagim.aspx or using any one of the channels below.
• Applying to our head office in Büyükdere Cad. No: 141 34394 Esentepe - İSTANBUL or any one of our branches in person or in writing through notary
• sending your application to denizbank.haberlesme@hs09.kep.tr using your registered email address;
• sending an email to oncemusteri@denizbank.com from your email address you have used to register in our system or your personal email address which has secure electronic signature or mobile signature;
• employing another method mentioned under the Communiqué on the Application Terms and Procedures to the Data Officer.
Your request will be finalised as soon as possible and within thirty (30) days at the latest, free of charge. If transactions pertaining to your request entail a separate cost, a fee may be charged to you as per the tariff stated by the Board.
;