Privacy Policy
Privacy policy explaining how personal data collected through the website is used, protected and transferred.
Last updated: April 17, 2026
Company information
Only owner-validated legal identity fields are published on this surface.
- Legal name
- Suntek İleri Teknolojiler A.Ş.
- Address
- Küçükbakkalköy Mah. Kocasinan Cad. Selvili Sok. Canan Business Center No:4 K:10 D:68 34755, Ataşehir / İstanbul / Türkiye
- Tax No (VKN)
- 7840624083
- Tax Office
- Kozyatağı
- DPO email
- dpo@diskhastanesi.com
- Phone
- +90 (216) 232 22 30
- Website
- https://www.diskhastanesi.com
1. Introduction and scope
This policy describes how Disk Hastanesi handles personal data collected through its public website.
The policy applies to visitors, contact-form users and individuals requesting information about our services.
It is designed to remain compatible with KVKK, GDPR and UK GDPR principles.
2. Personal data collected
Different categories of data may be collected depending on the interaction channel.
- Contact data entered through forms
- Technical data such as IP, browser and device information
- Cookie and consent data
- Usage data such as visited pages, session duration and referral sources
3. How data is used
Collected data is used only for operationally relevant and legally justified purposes.
- Responding to enquiries
- Providing service and pre-sales information
- Improving performance and user experience
- Measuring campaigns where lawful
- Maintaining security and preventing abuse
- Fulfilling legal and contractual obligations
4. Legal grounds
Processing relies on the legal grounds recognised by the applicable privacy frameworks.
| Framework | Grounds |
|---|---|
| KVKK | Articles 5/2-c, 5/2-f and where needed 5/1 |
| GDPR / UK GDPR | Articles 6(1)(a), 6(1)(b), 6(1)(c) and 6(1)(f) |
6. Third-party providers
We work with a limited set of providers for hosting, analytics and campaign measurement.
| Provider | Service | Region |
|---|---|---|
| Microsoft Azure | Hosting and infrastructure | Europe |
| Google Analytics / Tag Manager | Analytics and tag management | US / EU |
| Meta / LinkedIn | Marketing measurement | US / EU |
7. Security measures
Technical and administrative controls are used to protect confidentiality, integrity and availability.
- HTTPS and encrypted data transmission
- Access control at the server and data layers
- Firewall and threat prevention mechanisms
- Logging, monitoring and regular security reviews
- Employee awareness training and process documentation
8. International data transfers
Where transfers outside the EEA are required, appropriate contractual and legal safeguards apply.
Standard Contractual Clauses and similar mechanisms provide a protection baseline for data transferred to the relevant countries.
Services within transfer scope and the safeguards in use are reviewed according to supplier and integration status.
9. Your rights under KVKK
Users in Türkiye may exercise their rights under Article 11 of the KVKK.
- Requesting access, rectification, deletion and transfer information
- Learning the purpose of processing and whether use is aligned with it
- Knowing third parties receiving transfers
- Objecting to adverse outcomes of purely automated analysis
- Requesting compensation for unlawful processing
10. Your rights under GDPR
Users in the EU and UK may exercise the rights recognised by the applicable data protection framework.
- Right of access
- Right to rectification
- Right to erasure
- Right to restriction of processing
- Right to data portability
- Right to object
11. Children's privacy
The site is not directed at persons under 18 and we do not knowingly collect children's data.
If we identify that data belonging to a person under 18 has been submitted, the necessary deletion and clean-up steps are applied.
12. Policy changes and contact
Significant policy changes are announced together with the publication date.
For questions about this privacy policy, use support@diskhastanesi.com; for requests concerning your data protection rights, use dpo@diskhastanesi.com.