Privacy Policy

Privacy Policy

Last Update: 28 March 2025

As Helsa Agency, personal data privacy and security are of great importance to us. This Privacy Policy explains how your personal data is collected, used and protected when you visit our website or use our services.

1. Collected Information

As Helsa Agency, we may collect the following personal information from you:

  • Identity Information: Name, surname, date of birth, gender
  • Contact Information: Email address, phone number, address
  • Health Information: Health status, medical history and photos required for health services
  • Travel Information: Passport information, flight details, accommodation preferences
  • Website Usage Data: IP address, browser type, visited pages, visit duration, click data

2. Information Usage

We use the personal information we collect for the following purposes:

  • Providing the health tourism services you request
  • Evaluating your suitability for medical procedures
  • Scheduling appointments with affiliated clinics and doctors
  • Organizing your travel and accommodation
  • Providing pre- and post-treatment follow-up services
  • Responding to your questions and requests
  • Developing and improving our services
  • Fulfilling legal obligations

3. Information Sharing

We may share your personal information with third parties in the following situations:

  • Affiliated Health Institutions: Clinics and doctors who will perform medical procedures
  • Travel and Accommodation Providers: Hotels, transfer companies and other travel service providers
  • Service Providers: Companies providing web hosting, email services, customer relationship management services, etc.
  • Legal Requirements: When fulfilling a legal obligation, protecting our rights, or responding to a legal process

We do not share your personal information for marketing purposes without your explicit consent.

4. Explicit Consent and Notice Process

We process the personal data of our international visitors only after presenting our GDPR-compliant clarification text and obtaining their explicit consent. In this context:

  • Every contact or appointment form on our website includes a link to the clarification text and a consent checkbox; the form cannot be submitted without providing consent.
  • For requests received via phone, email or messaging tools, we keep digital logs proving that the individual has been informed and has explicitly consented, and we store these logs securely.
  • You may withdraw your explicit consent at any time and request the termination of data processing.

Signed physical consent forms are kept in secure archives that are accessible only to authorized staff.

5. Secure Data Transfer and Infrastructure

We implement technical and administrative measures to ensure the secure transfer and storage of your personal data:

  • Our website uses TLS/SSL certificates so that information submitted via forms reaches us through encrypted channels.
  • Access to our databases is restricted through role-based authorization, and access logs are reviewed regularly.
  • When data must be transferred domestically or abroad, we apply contractual safeguards and encrypted file-sharing methods.
  • Additional authentication and encryption steps are used whenever we exchange data with external service providers.

These measures aim to protect your personal data in compliance with the GDPR and applicable legislation.

6. Data Security

We take appropriate technical and organizational measures to ensure the security of your personal data. These measures include:

  • Using secure SSL connections
  • Limiting access to data
  • Regular security assessments
  • Employee training and awareness programs

However, please note that no data transmission or storage system is 100% secure.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and analyze site usage. For more information on these technologies, please refer to our Cookie Policy.

8. Your Rights

You have the following rights regarding your personal data:

  • Accessing your personal data
  • Requesting the correction of incorrect or incomplete data
  • Requesting the deletion of your personal data under certain conditions
  • Raising objections to the processing of your personal data
  • Requesting the portability of your data
  • Withdrawing your previously given consent

You can exercise these rights by contacting us at info@helsaagency.com.

9. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from individuals under the age of 18. If we discover that we have collected personal information from an individual under the age of 18, we will take steps to delete that information from our systems.

10. International Data Transfers

As Helsa Agency, we are based in Turkey and your personal data is stored in Turkey. However, your data may be transferred to countries outside the European Economic Area (EEA) through our service providers or partners. We take appropriate measures to ensure that your data is protected at an appropriate level during such transfers.

11. Changes to the Privacy Policy

We may update this Privacy Policy from time to time. If we make significant changes to the policy, we will post a notice on our website and will notify you via email if necessary. We recommend regularly reviewing our Privacy Policy.

12. Contact Us

If you have any questions or concerns regarding this Privacy Policy or the processing of your personal data, please contact us:

Helsa Agency
Aşağı Dudullu, Kaptani Derya Sk. No:6 Kat 2
34664 Ümraniye/İstanbul
Tel: +90 (0546) 659 18 87
E-Mail: info@helsaagency.com

Please Contact Us

24/7 Support
Contact Us Now
+90 (0546) 527 34 31
Helsa Agency uses cookies to provide you with better service. By using this site, you accept our use of cookies. For detailed information, you can review our Privacy Policy and GDPR Clarification Text.