Privacy Policy

Personal Data and General Privacy Policy

The Prime Ministry of the Turkish Republic of Northern Cyprus (referred to as the Prime Ministry for short) The personal data transmitted to the users electronically via the website (Website) or mobile applications, the Law on the Protection of Personal Data and the General Data Protection Regulation( GDPR) will not be shared, sold or used for different purposes, except for the cases described.

IP Numbers:

The Prime Ministry determines and uses the IP address of the users when necessary, in order to identify the problems related to the system, to solve the problems that may arise in the website / mobile applications immediately, and to notify the legal authorities in accordance with the principles and procedures of the law when necessary. IP addresses can also be used to identify users in a general (anonymous) manner and to gather comprehensive demographic information.

Anonymous Data:

The information requested by the Prime Ministry or the information provided by the user, or the information about the transactions made through the Website / Mobile Application, various statistical evaluations and database creation can be used anonymously by the Prime Ministry and its collaborators (without disclosing the identity of the user).

Linking to other sites:

The Prime Ministry may link to other sites within the Website / Mobile Application. The Prime Ministry does not bear any responsibility for the privacy practices and contents of the sites accessed via the link.

Situations where user data can be disclosed:

The personal data of the user includes name and surname, address, telephone number, e-mail address and all kinds of information to identify the user. Unless otherwise stated in this privacy policy, the Prime Ministry will not disclose any of the personal data to other third parties, with the exception of affiliated companies and in cooperation with the Prime Ministry. In the following cases, the Prime Ministry may disclose the information of users to third parties by deviating from the provisions of this privacy policy. These situations are;

Law, Decree-Law, Regulation, etc. complying with the obligations imposed by the legal rules in force issued by the competent legal authority; Fulfilling the requirements of the contracts concluded by the Prime Ministry with users and putting them into practice;

In cases where it is necessary to request information about users and to provide information in order to protect the rights or security of the Users for the purpose of conducting an investigation or investigation duly carried out by the authorized administrative and judicial authority, the Prime Ministry shall strictly keep confidential information private and confidential, consider it a confidentiality obligation and undertakes to take all necessary measures and to show due diligence to ensure and maintain confidentiality, to prevent all or any part of confidential information from entering the public domain or unauthorized use or disclosure to a third party.

Status of cookies:

The Prime Ministry may obtain information about users and users' use of the Web Site by using a technical communication file (Cookie-Cookie) prepared by itself or by third parties. The technical communication files mentioned are small text files that a website sends to the user's browser to be stored in the main memory. The technical communication file keeps the session open by storing the user's login information, password and preferences, and makes it easier to use by recognizing the user in the next visit. The technical communication file helps to obtain statistical information about how many people use the Website, for what purpose, how many times a person visits the Website and how long they stay, and to dynamically generate advertisements and content from specially designed user pages for users. The technical communication file is not designed to retrieve data or any other personal information from main memory or e-mail. Most of the browsers are initially designed to accept the technical communication file, but users can change the settings so that the technical communication file does not arrive or a warning is given when the technical communication file is sent.

Personal Data Protection Act general information:

The European Union Data Protection Directive (EU General Data Protection Regulation GDPR) entered into force on 25 May 2018. As a data controller within the scope of the Personal Data Protection Law and the European Union Data Protection Directive (EU General Data Protection Regulation GDPR), you will be able to record, classify, process, store, update the personal data of our valuable citizens and disclose them to third parties in cases where you give permission. , we inform you about our mutual rights and obligations within the scope of the said legal regulation.

Information as a data controller

As the Prime Ministry, whose detailed corporate information is published below, in the capacity of Data Controller, in accordance with the laws mentioned above, your personal data is within the framework explained below; will be recorded, stored, updated, disclosed / transferred to third parties, classified and processed when permitted by the legislation.

Definition of Personal Data under the Law:

Your identity (name, surname, date of birth, TRNC identity number, PCR test, Vaccination card, etc.), communication, information about the methods used during access to the service (IP, mobile tel brand-model, browser type, version, social media information) means all kinds of information that will enable you to be determinative or identifiable, such as the movements performed on the screens, etc.).

How your personal data can be processed

Pursuant to the GDPR of the Personal Data Protection Law, your personal data that you share with our company can be obtained, recorded, stored, changed, rearranged in whole or in part, automatically or by non-automatic means provided that it is a part of any data recording system; Provided that its security and confidentiality is ensured within the scope of the legislation: it can be processed by us as the subject of any processing performed on the data, by disclosure, transfer, acquisition, making it available, classifying or preventing its use. Any operation performed on the data within the scope of the above-mentioned laws is considered as the processing of personal data.

Purposes and legal reasons for processing your personal data:

Personal data you share; - To protect public health, - To fulfill the requirements of the services we provide to our citizens in accordance with the requirements of the contract and technology, to develop our services, - To comply with the information storage, reporting and information obligations stipulated by the legislation and other authorities, - In matters related to public security and legal disputes, upon request and will be processed in accordance with the scope, procedures and principles of the Personal Data Protection Law and the EU General Data Protection Regulation GDPR in order to provide information to prosecutors, courts and relevant public officials as per the legislation. Recording your identity, address, tax number and other information in order to determine the addressee in all kinds of transactions related to all kinds of services we will provide to you, arrangement of information and documents that will be the basis for the works and transactions to be carried out in the electronic environment, information storage stipulated by all judicial and administrative authorities in accordance with the relevant legislation. It will be processed for the purposes of complying with reporting and information obligations, providing other services offered and requested by the Prime Ministry, and fulfilling the requirements of the contracts between us. Information about the third parties or organizations to which your personal data can be transferred. Our direct or indirect domestic / foreign affiliates, including but not limited to persons and organizations related to the service provided, to carry out our activities and / or as a Data Processor, the program partner organizations, domestic / international organizations that we receive service from, cooperate with, and other third parties. In addition, your personal data is related to the institutions, organizations, providers or companies that we receive services from, cooperate with, program partner institutions, organizations, providers or companies for service comparison and application, individuals and institutions from which we receive services for storing data in the cloud environment, institutions with which we have an agreement to send the messages we send to our customers, and other third parties. can be transferred within the framework of our cooperation.

How your personal data is collected:

Your personal data can be obtained through the forms on the website and mobile applications of our Prime Ministry, name, surname, citizenship number, passport number, PCR test result, Vaccination card, address, telephone, work or private e-mail address, age, gender, profession, user name and Data including preferences on the pages logged in using the password, IP records of the transactions performed, cookie data collected by the browser, and browsing time and details can be processed and collected in the form of location data.

Storage and protection of personal data:

Your personal data will be kept confidential in the database and systems of the Prime Ministry in accordance with the Personal Data Protection Law and EU General Data Protection Regulation GDPR; Except for legal obligations and the regulations specified in this document, it will not be shared with third parties in any way. Our Prime Ministry, by preventing the systems and databases where your personal data is stored, from the illegal processing of personal data in accordance with the Personal Data Protection Law and EU General Data Protection Regulation GDPR, and preventing unauthorized access; In order to ensure their safekeeping, has is obliged to take technical and physical security measures such as encryption, transaction log, access management. If it is learned that personal data has been obtained by others illegally, the situation will be reported to the Prime Ministry immediately, in accordance with the legal regulation and in writing.

Keeping personal data up-to-date and accurate:

In accordance with the Personal Data Protection Law, our Company has an obligation to keep your personal data accurate and up-to-date. In this context, in order for our Prime Ministry to fulfill its obligations arising from the current legislation, it is necessary for our citizens to share accurate and up-to-date data or update them via the website / mobile application. Rights of the personal data owner pursuant to the Personal Data Protection Law and EU General Data Protection Regulation (GDPR): Personal Data Owner, by applying to our Prime Ministry (data controller); -Learning whether personal data is processed, -Requesting information if personal data has been processed, -Learning the purpose of processing personal data and whether they are used in accordance with its purpose, -Knowing the third parties to whom personal data is transferred, -Incomplete or incorrectly processed personal data - Requesting the deletion or destruction of personal data within the framework of the Law on the Protection of Personal Data, - Requesting that personal data be corrected, deleted or destroyed, notifying the third parties to whom the personal data is transferred, - Analysis of the processed data exclusively through automated systems Objecting to the emergence of a result against the person by means of He is the Data Controller under the Turkish Republic of Northern Cyprus Prime Ministry, Personal Data Protection Law and EU General Data Protection Regulation (GDPR).

Data retention policy:

The data collected in the application is limited to all fields and data in the form in your application login. The information filled in by the citizens (users) in the country entry form in the application will be hosted directly on the servers of the TRNC state. This information requests the user to check whether the citizen has the necessary approval to enter the country. The TRNC state will establish a relationship with the population data it already has and approve this data. Any application and any data that is not approved and has no relation to reality will not be kept as data on the servers. The TRNC government undertakes to its users that the data of the users who have been successfully registered will not be used as a platform, company or marketing tool other than the fight against covid-19. This information about all the data collected from the AdaPass application has been documented to cover 3rd party development companies. The TRNC government undertakes to protect the same confidentiality in other cases where the data collected in the AdaPass application should be shared with 2nd or 3rd party connections in the fight against covid-19. The adapass system will keep the personal data like pcr results for 7 days only. In order to update the pcr results onto system, the users should login and fetch the data from the original source with their appropriate credentials.

Deletion of data:

In case the users registered to the application with the AdaPass application, contact and send their name and surname in their requests or their identity information so that they can submit their records in the system, they will first send the notification they request to delete, whether it belongs to them or not, to the identity picture or to the Ministry of Health. The TRNC state undertakes that the user's data will be deleted from the servers of the Ministry of Health if they specify in the application.