Skip to Content Skip to Content Skip to Bottom

Kuveyt Türk Mobile Privacy Policy

Kuveyt Türk Katılım Bankası A.Ş. ”Kuveyt Türk Mobile Privacy Policy“ has been prepared with the understanding of ”Robust Banking", customer satisfaction and full security approach.
As Kuveyt Türk Katılım Bankası A.Ş (referred to as the “Bank”), with its headquarters at Büyükdere Cad. No: 129/1 Esentepe / Şişli / İstanbul, with Central Register System number 0600002681400074, the use of our Kuveyt Türk Mobil (referred to as “Mobile Application”) application is carried out in accordance with all legislation to which we are subject, especially the Law on the Protection of Personal Data No. 6698 (PDPL). You can find details about the purposes of processing your personal data by our bank and your rights in Kuveyt Türk Katılım Bankası A.Ş Corporate Policy on the Protection and Processing of Personal Data.
 

1. Personal Data Collection Method and Legal Reason

Your personal data is processed for the purposes specified in the third article, based on the following legal reasons of article 5/2 of PDPL,
  1. It is clearly stipulated in the laws,
  2. It is necessary to process the personal data of the parties to the contract, provided that it is directly related to the establishment or performance of a contract,
  3. It is mandatory for the data controller to fulfill their legal obligation,
  4. Data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and liberty of the respective person.

2. To Whom and for What Purposes Personal Data May be Transferred

We, as the Bank, may share your personal data with our domestic affiliates, legally authorized institutions, business partners, organizations, and our suppliers from which we receive services for the transmission of electronic messages in accordance with the legislation and limited to the realization of the purposes specified in this policy.
 

3. Which Personal Data Do We Process for What Purposes?

We, as the Bank, obtain permissions through different functions on different operating systems for various purposes in our mobile application, and process your personal data through these functions. The reasons for the application permissions and the purposes of the processing of the personal data in this regard are given in the following tables:
 

Android

Application Permission Reason for Permission
Device ID and Search Information It is required for the mobile branch activation process.
Photo / Media / File It is required to add a profile photo from the gallery.
Camera It is required to perform QR code operations, make video calls and take a profile photo.
Location It is required for the operation of the display, which shows the nearest ATM and branch. Location information is obtained in QR code withdrawals as required by law. In order to provide extra security to customers, location information is optionally obtained on the Money Transfer screen. No location information is received in the background when the application is not used or closed.
Persons It is required to send money to the GSM number and load TL to the GSM number.
Microphone It is required for the Chatbot transactions and video calls.

IOS

Application Permission Reason for Permission
Notifications It is required to be able to send mobile notifications to your mobile phone.
Photo / Media / File It is required to add a profile photo from the gallery.
Camera It is required to carry out QR code transactions (withdrawal / deposit money / payment) and to take a profile photo.
Location It is required for the operation of the display, which shows the nearest ATM and branch. Location information is obtained in QR code withdrawals as required by law. In order to provide extra security to customers, location information is optionally obtained on the Money Transfer screen. No location information is received in the background when the application is not used or closed.
Persons It is required to send money to the GSM number and load TL to the GSM number.


4. Collection Method

These data may be obtained through automatic methods such as electronic confirmation, text message, electronic mail, internet, digital banking platforms, internet branch and similar electronic or internet-based tools.
 

5. Storage Time

Your obtained personal data may be stored for the periods required by the above-mentioned processing purposes. If there is no other reason or legal reason and other obligations disappear; your personal data whose purposes for processing have disappeared are deleted, eliminated or anonymized.
 

6. Our Basic Principles

“To act in accordance with the law and honesty rules”, "Accuracy and timeliness", "To process data for specific, clear and legitimate purposes," "To be connected, limited and restrained for the purpose for which personal data are processed", "To keep your personal data for the period that is stipulated in the relevant legislation or that is necessary for the relevant purpose" are the basic principles of our bank with our processing activities. 
 

7. Your Rights As The Data Owner

If you, as the owner of the personal data, submit your requests regarding your rights as specified in the Kuveyt Türk Katılım Bankası A.Ş. Corporate Policy on the Protection and Processing of Personal Data, the bank will finalize the request free of charge as soon as possible and within thirty (30) days at the latest, depending on the nature of the request. However, if the transaction requires an additional cost, the fee set by the bank will be charged. In this context, the personal data owners have the following rights:
  • To find out whether their personal data has been processed or not.
  • If the personal data has been processed, to request information about it.
  • To find out the purpose of the processing of personal data and whether they are used in accordance with their purpose.
  • To know the third parties to whom personal data is transferred in the country or abroad.
  • To request correction of personal data in case of incomplete or incorrect processing, and to request the notification of the transaction carried out in this context to the third parties to whom the personal data has been transferred.
  • To request the deletion or destruction of personal data in the event that the reasons for processing disappear, although it has been processed in accordance with the provisions of the law and other relevant laws and to request the notification of the transactions made to the third parties to whom their personal data has been transferred in this context and in case of incomplete or incorrect processing of personal data.
  • To object to the emergence of a conclusion against the person themselves by the analysis of the processed data exclusively through automated systems.
  • To request the compensation of the damage in case of damage caused due to the unlawful processing of personal data.