This privacy statement (“Policy”) explains how All On Dental LTD. (“All On Dental LTD.,” “we,” “us,” or “our”) collects, protects, and uses personally identifiable information (“Personal Information”) that you (“User,” “you,” or “your”) may provide on the allondental.com website or through any of its products or services (collectively, “Website” or “Services”).
1- Who is Liable for Data Processing, and Whom Can You Contact?
Phone: +90 530 464 98 38
We refer to any information collected or processed by or connected with this Website or platform that directly or indirectly recognizes you or factors distinctive to you, such as your name, IP address, or user preferences. The “lawful bases” for processing your personal data are described below. These valid grounds (also known as “legal basis”) justify the processing of your personal data under GDPR. We and anybody else are not permitted to access or process your personal data if there are no valid grounds.
3- Sources and Data We Use
As part of your Website usage and, if relevant, our business relationship, we process personal data that we obtain from you. We only collect the personal data that your browser provides to our server when you use the Website for morally informative purposes, i.e., if you do not register or give us information. When you visit our Website, we collect the following access data that we need to show it and maintain its stability and security. The IP address, date and time of the visit, time zone difference from Greenwich mean time (GMT), the content of the request (i.e., name of the specific visited web page), access status/HTTP status code, amount of transmitted data, referrer URL (previously visited page), browser type and performance, operating system and its interface, language, and version of the browser software, message about successful retrieval are all included in the access data. In addition, if you contact us via our contact form or e-mail, we will acquire your personal information. Name, company, e-mail, phone number, subject, and message text are examples of personal data (from now on called “contact information”).
4- Processing of Your Data, The Purpose of Processing, and Legal Basis
We process personal data for the following purposes and on the following legal bases in line with the European General Data Protection Regulation (GDPR) and the Turkish Data Protection Law (DPL):
Purpose: You have given your consent to process personal data for specific reasons, such as contacting you (e.g., via our contact form or by e-mail, WhatsApp, etc.) to handle and process the plea, advertising by telephone, e-mail, SMS, etc.). You have the right to cancel your permission at any time. Please keep in mind that any revocation is only effective in the future. It has no bearing on any processing that took place before the cancellation. You should send any requests for the cancellation to the contact mentioned above information or to firstname.lastname@example.org. Legal foundation GDPR Art. 6 (1a) Consent.
Purpose: In addition to any consent given to the processing of the contact request and its treatment, your details are processed based on measures taken before entering into a contract, Art. 6 (1b) GDPR, when you contact us (by contact form, e-mail, telephone, or WhatsApp). Legal foundation Art. 6 (1b) GDPR, actions conducted at the request of the data subject before entering into a contract
Purpose: To protect our legitimate interests or the legitimate interests of third parties, we process your access data (see Sources and data we use). We pursue the following legitimate interests in particular:
- We also retain the IP address if someone writes unlawful content using the comment function (insults, prohibited propaganda, etc.). We need to be able to confirm the author’s identity for our legal protection.
- Unless you have objected to your data being used for advertising or market and opinion research.
- Legal claim assertion and defense in the event of a legal dispute;
Art. 6 (1f) GDPR is part of balancing interests to protect legitimate interests.
When you check the Consent Declaration box on the contact form, you are giving your explicit consent for the collection, processing, and use of the personal information, including your health data, that you provide to us for this purpose for us to obtain information on the medical services that you are interested in and the costs associated with them. This includes sending your information to hospitals, clinics, and other healthcare providers within and outside the EU/EEA.
Note: You may revoke this permission with future effect by notifying us of your decision.
5- Your Data Access
Entities inside the business who require access to your data to fulfill our contractual and regulatory obligations can do so. Additionally, we may give processors (Art. 28 GDPR) access to data for the above objectives. These are businesses in the IT, printing, telecommunications, sales, and marketing industries. Suppose we use processors to deliver our services. In that case, we will take the necessary legal precautions and technological and organizational steps to secure personal data compliance with the law. We will only do any data transfer to third parties following legal regulations. We will only transfer user data with third parties if it is required, for example, under Art. 6 (1) (b) GDPR for contract purposes or based on legitimate interests under Art. 6 (1) (f) GDPR in the economic and successful running of our business, or if you have given your consent to the data transfer. We usually do not share any data with third parties if the Website is used solely for informative purposes.
6- Your Data Retention
Log-file information is kept for four weeks for security reasons (e.g., investigating abusive or fraudulent activity) before being erased (see Sources and data we use). Data that We must keep indefinitely for evidentiary purposes is exempted from deletion until the issue is fully resolved. We process and preserve your personal data for the duration of our commercial relationship, which may include, for example, the commencement and fulfillment of a contract via the contact form or by e-mail. Furthermore, we are bound by several retention and documentation duties, including those imposed by the Turkish Commercial Code (TCC), No 6102, and the Turkish Tax Code (TIN). The retention and documentation deadlines indicated range from two to ten years. Finally, the retention time is determined by the statutory limitation periods, which usually are three years under the Turkish Civil Code (COE) but can be as long as thirty years in some situations, even though the standard limitation period is three years.
7- Your Data Transfer
The information supplied is processed in Turkey and the United States for Google Analytics, Twitter, and Meta. Please note that in the case of data recipients in countries where the Commission has not issued an adequacy decision according to Art. 45 GDPR, such as the United States, we either ensure that they are certified under the EU-US Privacy Shield (such as Google) or that we have agreed on EU standard data protection clauses with such recipients. This is done to secure your data and ensure that your personal data is adequately protected. You may request a copy of the EU standard data protection provisions or read them online. Please get in touch with us if required.
8- Your Data Protection Rights
Every data subject has the following characteristics:
• Under Article 15 of the GDPR, the privilege to access
• According to Article 16 of the GDPR, you have the right to correction.
• According to Article 17 of the GDPR, you have the privilege to be forgotten.
• According to Article 18 of the GDPR, you have the right to have your data processed in a certain way.
• Art. 20 GDPR offers you the right to data portability.
• Furthermore, you can cancel permission in principle with immediate effect. You have the choice of filing a complaint with a supervisory authority.
9- Automated Individual Decision-making and Profiling
In general, we do not utilize completely automated decision-making following Art. 22 GDPR in the context of access to our Website or communication through form or e-mail. Suppose we have to use such measures in a specific situation. In that case, we will tell you individually if the law requires it. We do not automatically process your data to analyze particular personal characteristics (profiling).
10- Obligation to Provide Data
For technical or IT security concerns, you must give our Website personal data to use it. You will not be able to use our Website until you supply the information listed above. You need to provide the personal data necessary to complete your request when contacting us through form or e-mail. We will not be able to process your request otherwise.
Cookies are little pieces of data sent from our web server or third-party web servers to users’ web browsers and kept for later retrieval. Cookies are tiny files or other forms of data storage that are used to save information. Cookies are used for security, website functionality (e.g., to display the Website optimally on different terminals), and to preserve your decision when confirming our cookie banner. We utilize “session cookies,” which are cookies that are only saved for the length of the current visit to our Website and are required to access our Website in the first place—a session cookie stores a randomly generated unique identifying number known as a session ID. A cookie also carries information about where it came from and how long it will be kept. Session cookies are automatically cleared when you close your browser after accessing our Website. The next part will go over how cookies are used in website tracking. Suppose you don’t want cookies to be kept on your computer. In that case, you may disable the corresponding option in your browser’s system settings. Cookies that have been saved can be removed using the browser’s system settings. Please be aware that deactivating cookies may impair the Website’s operation. You can object to cookies through the network advertising initiative for website tracking and advertising reasons.
You may voluntarily subscribe to our electronic newsletters at any time. You may opt out of receiving our newsletter or marketing e-mails by following the unsubscribe instructions in the e-mail or contacting us. You will, however, continue to receive critical transactional e-mails.
13- Do Not Track signals
Some browsers offer a Do Not Track function that tells websites you visit that you don’t want your online activities to be recorded. Using or collecting information connected to a website is not the same as tracking. Tracking refers to gathering personally identifiable information from customers who use or visit a website or online service over time as they travel between multiple websites. Our Website does not keep track of its visitors over time or between websites. On the other hand, some third-party sites may keep track of your browsing behaviors while serving you material, allowing them to personalize what they offer to you.
14- Data Breach
We reserve the right to take reasonable measures, including, but not limited to, investigation and reporting, as well as notification to and cooperation with law enforcement authorities, if we become aware that the Website’s security has been compromised or users’ Personal Information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud. If we deem there is a real risk of damage to the user due to the breach, or if the disclosure is otherwise required by law, we shall make reasonable attempts to inform affected persons. We’ll put a notification on the Website once we’ve done so.
15- Information Security
We keep the information you give us on computer servers in a controlled, secure environment. It is safe from unauthorized access, use, or disclosure. We maintain appropriate administrative, technological, and physical precautions to secure Personal Information within our control and custody against unauthorized access, use, alteration, or disclosure. Data transmission through the Internet or a wireless network, on the other hand, cannot be assured. While we make every step to safeguard your Personal Information, you acknowledge that the Internet has security and privacy limitations beyond our control; (ii) the security, integrity, and privacy of any information and data traded between you and our Website cannot be guaranteed; and (iii) any such information and data may be viewed or meddled with in transit by a third-party, despite our best measures.
16- Legal Disclosure
If required or permitted by law, such as to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request, we will disclose any information we collect, use, or receive. Your user account and personal data will most likely be among the assets transferred if we go through a business transition, such as a merger or acquisition by another firm or a sale of all or a part of our assets.
17- Changes and Amendments
We retain the right to change this Policy about the Website or Services. An updated version of this Policy is effective upon publication on the Website. We’ll edit the new date at the base of this page once we’ve done so. Resumed use of the Website following any such changes constitutes your acceptance of such changes.
18- Acceptance of This Policy
You imply that you have read and agree to the terms and conditions. You agree to be bound by this Policy by using the Website or its Services. You are not permitted to use or access the Website or its Services if you do not agree to comply with the terms of this Policy.
19- Google Analytics
We utilize the online analytics tool Google Analytics of Google Inc. based on our legitimate interests, i.e., our interest in improving and economically operating our Website (“Google”). Cookies are used by Google Analytics, a site analytics service. These cookies send information about how you use our Website to a Google server in the United States, where it is kept. Google is accredited under the EU-US Privacy Shield Agreement (https://www.privacyshield.gov), ensuring conformity with European data protection legislation. Google utilizes this information on our behalf to assess how our users use our Website, generate a report on website activity, and provide us with other services related to website usage.
Pseudonymous user profiles can be created using the processed data. We use Google Analytics with IP anonymization turned on. This implies that Google shortens users’ IP addresses within countries that have signed the European Economic Area Agreement. In unusual situations, the complete IP address is transferred to a Google server in the United States and abbreviated there. The IP address sent by the user’s browser is not combined with other Google information. Users can disable the hold of cookies in their browser software, data collection created by cookies and its transmission to Google, and Google’s processing of such data. By downloading and installing the browser plug-in available underneath the following link: http://tools.google.com/dlpage/gaoptout?hl=de. For more details about data processing by Google, settings, and choices to object, please visit the Website of Google at: https://www.google.com.
20- Facebook Custom Audience Re-Targeting
Our Website uses Facebook’s Website, Custom Audience, which is run by Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94394, USA (“Facebook”). Our Facebook members’ online visitors can use this technology to view relevant advertisements and offers for our services on the Facebook website. Our Website contains Facebook re-targeting pixels, which allows Facebook to identify a member as a visitor of our Website based on pseudonymous data and use that information to display our ads or offers in the Facebook Ads network. Because this does not entail collecting personally identifiable information, we cannot identify you on Facebook. The pseudonymous data obtained using retargeting pixels will not be linked to any personally identifiable information. You can find more information on Facebook “Custom Audience” retargeting and how you can adjust your sets at: https://www.facebook.com/settings/?tab=ads and https://www.facebook.com/about/privacy. You can refuse Facebook Custom Audiences at:
21- Other Services
We utilize third-party services on our Website as part of our legitimate interests, as defined by Art. 6 (1) (f) GDPR, i.e., our desire for a better website. Such third-party services receive the user’s IP address. Technically, the IP address is necessary for the data to be shown. Web pixels (invisible visuals, often known as “web beacons”) may be used by third-party providers for assessment or marketing purposes. The web pixels can be used to assess data, such as the Website’s traffic. Third parties may keep information on users’ devices in cookies. On our Website, we utilize the following third-party providers:
Instagram’s features have been integrated into our online offering. Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA, provides these services. By clicking on the Instagram button while logged in to your Instagram account, you may link the contents of our site to your Instagram profile. This enables Instagram to link your visit to our site to your Instagram account. Please be aware that we, as website providers, do not know the content of the transferred data or its uses concerning Instagram. http://instagram.com/about/legal/privacy/. Data protection declaration: http://instagram.com/about/legal/privacy/.
If you have any inquiries about this Policy, please get in touch with us.