World Mobile Privacy Policy
We, as Yapı ve Kredi Bankası Anonim Şirketi ( “Yapı Kredi” or “the Bank”), would like to inform you on how we process your personal and other types of data, while you use our World Mobile application (“the Application”), in order to improve your experiences and provide you a simpler usage of the Application by some functions of the Application, as well as on permissions we collect via the Application.
Usage of our Application is being conducted in compliance with all the legislations that the Bank is subject to, especially with the Law on Protection of Personal Data No.6698 (“the PPDL”). You may reach detailed information regarding the purposes of processing of your personal data by our Bank by clicking on Yapı ve Kredi Bankası A.Ş. Policy on Protection and Processing of Personal Data.
Method and Legal Reason of Collecting Personal Data
Your personal data are collected by our Bank upon your usage of the Application via a variety of functions of the Application, based on the legal grounds of our Bank’s legitimate interest, execution or performance of a contract or your explicit consent, if available. Your personal data which are collected as per the said legal reasons, may also be processed within the scope of personal data processing conditions and purposes set forth in articles 5 and 6 of the PPDL for the purposes specified herein this Privacy Policy.
For What Purposes And To Whom Shall Your Personal Data Be Transferred?
As Yapı Kredi, we may transfer your personal data to our shareholders within or outside Turkey, our subsidiaries, legally authorized public/private institutions and corporations, our business partners and our suppliers, as per the scope of the purposes mentioned above and in compliance with the relevant legislations.
For What Purposes Shall Your Personal Data Be Processed?
As Yapı Kredi, we collect permissions for several purposes via different variety of functions based on different operating systems and we process your personal data via such functions. The main permissions and personal data that are collected are as following:
Required Permission |
Reason |
Background Refresh |
It is required for geofencing service. |
Notification |
It is required to send push notifications. |
Photo |
It is required to upload a profile photo from gallery. |
Camera |
It is required for QR Code Payment and uploading profile photo. |
Location |
It is required for geofencing service and showing nearest campaigns on map view. |
Required Permission |
Reason |
Run at Startup |
It is required for mobile payment and geofencing services. |
Device ID and Call Information |
It is required for Remember Me Function. |
Run While Device is Locked |
It is required for mobile payment services to work while device is locked. |
Photo / Media / File |
It is required to upload a profile photo from gallery. |
Internet Access |
It is required for the application to work. |
Camera |
It is required for QR Code Payment and uploading profile photo. |
Location |
It is required for geofencing service and showing nearest campaigns on map view. |
NFC |
It is required for mobile payment services. |
Run While Device is Sleeping |
It is required for mobile payment services to work while device sleeps. |
*Geofencing means, using GPS and RFID (radio frequency identification) in order to indicate a specific geographical area.
What Are Your Rights As A Data Subject?
If you, as the data subject, send your demands regarding your rights to our Bank via methods mentioned in the Yapı ve Kredi Bankası A.Ş. Policy on Protection and Processing of Personal Data; the Bank shall conclude such demands, free of any charge, within shortest period or within thirty (30) days the latest, depending on the nature of relevant demand. However, if the transaction requires any cost separately, the Bank shall charge fee at the rate specified in the tariff determined by the Personal Data Protection Board. In this context, owners of personal data have following rights:
- to find out whether their personal data has been processed,
- to request information if their personal data has been processed,
- to find out the purpose for processing of their personal data and whether they have been used in accordance with this purpose,
- to be informed of the domestic or international third parties to which the personal data has been transferred,
- request for the correction of personal data if they are incomplete or incorrectly processed and ask that the process carried out in this context be notified to the third parties to whom personal data have been transmitted,
- Request for the deletion or destruction of personal data if the reasons for processing the same have ceased to exist although they have been processed in accordance with the Law and other relevant laws, and ask that the process carried out in this context be notified to the third parties to whom personal data have been transmitted,
- to object to any unfavourable result suffered due to analysis of processed data exclusively by means of automatic systems and
- to demand indemnification of losses suffered due to personal data being processed in breach of the law
To be able to view PDF documents you must have Adobe Acrobat Reader installed.
Click here to install Adobe Acrobat Reader.