{"id":12557,"date":"2025-06-26T13:59:13","date_gmt":"2025-06-26T13:59:13","guid":{"rendered":"https:\/\/isgairporthotel.com\/kisisel-veri-guvenligi-politikasi\/"},"modified":"2025-06-26T14:12:02","modified_gmt":"2025-06-26T14:12:02","slug":"personal-data-security-policy","status":"publish","type":"page","link":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/","title":{"rendered":"Personal Data Security Policy"},"content":{"rendered":"<div class=\"wpb-content-wrapper\"><p>[vc_row][vc_column][vc_raw_html]JTNDc3R5bGUlM0UlMEEuaDIlMkMlMjBoMiUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDFyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEEuaDMlMkMlMjBoMyUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDAuODVyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEElM0MlMkZzdHlsZSUzRQ==[\/vc_raw_html][vc_row_inner][vc_column_inner][vc_column_text]<\/p>\n<h2><strong>1. Purpose<\/strong><\/h2>\n<p>The purpose of this Personal Data Security Policy (hereinafter referred to as the &#8220;Policy&#8221;) is to define the framework for ensuring the security of all personal data processed by ISG Airport Hotel (hereinafter referred to as the &#8220;Hotel&#8221; or &#8220;Data Controller&#8221;), in accordance with the Law on the Protection of Personal Data No. 6698 (KVKK), other relevant legislation, and the decisions of the Personal Data Protection Board (the Board).<\/p>\n<h2><strong>2. Scope<\/strong><\/h2>\n<ul>\n<li><strong>Data Subject:<\/strong> All natural persons whose personal data is processed by the Hotel, including hotel guests, employees, employee candidates, visitors, users of Hotel services (e.g., Wi-Fi, website, reservation platforms, valet service), and the personnel of suppliers and other third parties.<\/li>\n<li><strong>Data Categories:<\/strong> All categories of personal data processed by the Hotel, including but not limited to, Identity (T.R. Identity No, passport no), Contact, Location, Financial (credit card information), Visual\/Auditory (security camera footage), Customer Transaction (accommodation dates, room no, special requests), Transaction Security (IP address, log records), Marketing, and Health (only with explicit consent and subject to strict conditions).<\/li>\n<li><strong>Processing Activities:<\/strong> All personal data processing activities carried out through fully or partially automated means (Property Management System &#8211; PMS) or non-automated means, provided that they are part of any data filing system (e.g., archive of guest registration forms).<\/li>\n<li><strong>Geographical Scope:<\/strong> All premises of the Hotel (rooms, lobby, restaurants, parking lot, administrative offices) and its digital systems (servers, website, network infrastructure).<\/li>\n<\/ul>\n<h2><strong>3. Definitions<\/strong><\/h2>\n<p>For terms used in this Policy that are not otherwise defined herein, the definitions provided in Article 3 of the KVKK shall apply.<\/p>\n<h2><strong>4. Data Controller and Contact Person<\/strong><\/h2>\n<ul>\n<li><strong>Data Controller:<\/strong> ISG Airport Hotel is the Data Controller within the scope of the KVKK.<\/li>\n<li><strong>Data Controller Contact Person:<\/strong> Our Hotel has established a Personal Data Protection Committee to fulfill its obligations under the KVKK and to manage data subject requests. Contact information is shared with the public on our Hotel&#8217;s corporate website and in our Privacy Notices.<\/li>\n<\/ul>\n<h2><strong>5. Principles for Processing Personal Data<\/strong><\/h2>\n<p>Our Hotel undertakes to comply with the following general principles set forth in Article 4 of the KVKK in all its personal data processing activities:<\/p>\n<ul>\n<li>Lawfulness and Fairness.<\/li>\n<li>Accuracy and Being Up-to-Date Where Necessary.<\/li>\n<li>Being Processed for Specific, Explicit, and Legitimate Purposes.<\/li>\n<li>Being Relevant, Limited, and Proportionate to the Purposes for which they are Processed (Data Minimization).<\/li>\n<li>Being Retained for the Period Envisaged in the Relevant Legislation or Required for the Purpose for which they are Processed.<\/li>\n<\/ul>\n<h2><strong>6. Conditions for Processing Personal Data (KVKK Article 5)<\/strong><\/h2>\n<ul>\n<li><strong>a)<\/strong> It is expressly provided for by the laws.<\/li>\n<li><strong>b)<\/strong> It is necessary for the protection of life or physical integrity.<\/li>\n<li><strong>c)<\/strong> Necessary for the performance of a contract.<\/li>\n<li><strong>d)<\/strong> Necessary for compliance with a legal obligation.<\/li>\n<li><strong>e)<\/strong> Made public by the data subject.<\/li>\n<li><strong>f)<\/strong> Necessary for the establishment, exercise, or protection of any right.<\/li>\n<li><strong>g)<\/strong> Legitimate interests of the data controller, not violating fundamental rights.<\/li>\n<\/ul>\n<h2><strong>7. Transfer of Personal Data (Domestic and International)<\/strong><\/h2>\n<ul>\n<li><strong>Domestic Transfer:<\/strong> To public institutions, suppliers, and business partners.<\/li>\n<li><strong>International Transfer:<\/strong> To foreign service providers or group companies under KVKK Article 9 conditions.<\/li>\n<\/ul>\n<h2><strong>8. Obligations Regarding Data Security (KVKK Article 12)<\/strong><\/h2>\n<h3>8.1. Administrative Measures<\/h3>\n<ul>\n<li>Preparation of a Personal Data Processing Inventory.<\/li>\n<li>Establishment of Corporate Policies.<\/li>\n<li>Establishment of an Authorization Matrix.<\/li>\n<li>Training and Awareness Activities.<\/li>\n<li>Confidentiality Agreements.<\/li>\n<li>Change of Position or Termination of Employment.<\/li>\n<li>Data Breach Incident Response Plan.<\/li>\n<\/ul>\n<h3>8.2. Technical Measures<\/h3>\n<ul>\n<li>Ensuring Cybersecurity.<\/li>\n<li>Access Authorization and Control Systems.<\/li>\n<li>Encryption.<\/li>\n<li>Data Backup.<\/li>\n<li>Physical Security Measures.<\/li>\n<li>Security of Data in Paper Form.<\/li>\n<li>Log Records.<\/li>\n<\/ul>\n<h2><strong>9. Rights of the Data Subject (KVKK Article 11)<\/strong><\/h2>\n<p>Every Data Subject has the rights listed in Article 11 of the KVKK, including to learn whether their data is processed, request correction or deletion, and object or claim compensation.<\/p>\n<h2><strong>10. Application Procedure<\/strong><\/h2>\n<ul>\n<li>Delivering in person with wet signature to the reception.<\/li>\n<li>Sending via public notary.<\/li>\n<li>Sending from the registered email address to the designated email.<\/li>\n<\/ul>\n<p>Applications will be concluded free of charge within thirty days.<\/p>\n<h2><strong>11. Data Breach Management<\/strong><\/h2>\n<p>If personal data is unlawfully obtained, it will be reported to the Board and the data subjects within 72 hours. The Data Breach Incident Response Plan manages this process.<\/p>\n<h2><strong>12. Review and Update of the Policy<\/strong><\/h2>\n<p>This Policy enters into force on the date it is approved by the Hotel Management and is reviewed and updated at least once a year or as necessary.<\/p>\n<h2><strong>13. Entry into Force<\/strong><\/h2>\n<p>This Policy has entered into force with the approval of the Hotel Management.<\/p>\n<p>[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>[vc_row][vc_column][vc_raw_html]JTNDc3R5bGUlM0UlMEEuaDIlMkMlMjBoMiUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDFyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEEuaDMlMkMlMjBoMyUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDAuODVyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEElM0MlMkZzdHlsZSUzRQ==[\/vc_raw_html][vc_row_inner][vc_column_inner][vc_column_text] 1. Purpose The purpose of this Personal Data Security Policy (hereinafter referred to as the &#8220;Policy&#8221;) is to define the framework for ensuring the security of all personal data [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-12557","page","type-page","status-publish","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.3.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Personal Data Security Policy - ISG Airport Hotel<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Personal Data Security Policy - ISG Airport Hotel\" \/>\n<meta property=\"og:description\" content=\"[vc_row][vc_column][vc_raw_html]JTNDc3R5bGUlM0UlMEEuaDIlMkMlMjBoMiUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDFyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEEuaDMlMkMlMjBoMyUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDAuODVyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEElM0MlMkZzdHlsZSUzRQ==[\/vc_raw_html][vc_row_inner][vc_column_inner][vc_column_text] 1. Purpose The purpose of this Personal Data Security Policy (hereinafter referred to as the &#8220;Policy&#8221;) is to define the framework for ensuring the security of all personal data [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/\" \/>\n<meta property=\"og:site_name\" content=\"ISG Airport Hotel\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-26T14:12:02+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/\",\"url\":\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/\",\"name\":\"Personal Data Security Policy - ISG Airport Hotel\",\"isPartOf\":{\"@id\":\"https:\/\/isgairporthotel.com\/en\/#website\"},\"datePublished\":\"2025-06-26T13:59:13+00:00\",\"dateModified\":\"2025-06-26T14:12:02+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/isgairporthotel.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Personal Data Security Policy\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/isgairporthotel.com\/en\/#website\",\"url\":\"https:\/\/isgairporthotel.com\/en\/\",\"name\":\"ISG Airport Hotel\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/isgairporthotel.com\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Personal Data Security Policy - ISG Airport Hotel","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/","og_locale":"en_US","og_type":"article","og_title":"Personal Data Security Policy - ISG Airport Hotel","og_description":"[vc_row][vc_column][vc_raw_html]JTNDc3R5bGUlM0UlMEEuaDIlMkMlMjBoMiUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDFyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEEuaDMlMkMlMjBoMyUyMCU3QiUwQSUyMCUyMCUyMCUyMGZvbnQtc2l6ZSUzQSUyMDAuODVyZW0lMjAlMjFpbXBvcnRhbnQlM0IlMEElN0QlMEElM0MlMkZzdHlsZSUzRQ==[\/vc_raw_html][vc_row_inner][vc_column_inner][vc_column_text] 1. Purpose The purpose of this Personal Data Security Policy (hereinafter referred to as the &#8220;Policy&#8221;) is to define the framework for ensuring the security of all personal data [&hellip;]","og_url":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/","og_site_name":"ISG Airport Hotel","article_modified_time":"2025-06-26T14:12:02+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/","url":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/","name":"Personal Data Security Policy - ISG Airport Hotel","isPartOf":{"@id":"https:\/\/isgairporthotel.com\/en\/#website"},"datePublished":"2025-06-26T13:59:13+00:00","dateModified":"2025-06-26T14:12:02+00:00","breadcrumb":{"@id":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/isgairporthotel.com\/en\/personal-data-security-policy\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/isgairporthotel.com\/en\/"},{"@type":"ListItem","position":2,"name":"Personal Data Security Policy"}]},{"@type":"WebSite","@id":"https:\/\/isgairporthotel.com\/en\/#website","url":"https:\/\/isgairporthotel.com\/en\/","name":"ISG Airport Hotel","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/isgairporthotel.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/pages\/12557","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/comments?post=12557"}],"version-history":[{"count":1,"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/pages\/12557\/revisions"}],"predecessor-version":[{"id":12558,"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/pages\/12557\/revisions\/12558"}],"wp:attachment":[{"href":"https:\/\/isgairporthotel.com\/en\/wp-json\/wp\/v2\/media?parent=12557"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}