Processing of Personal Data

This Privacy Policy has been prepared to explain how your personal data is processed during insurance application procedures, form submissions, payment transactions, policy issuance processes, premium collection transactions, application tracking procedures, support requests, communication processes, claim or assistance service-related procedures and website use carried out through our website.

When you visit our website, fill out an insurance application form, perform any transaction, track an application, start a payment transaction, request support, submit information relating to an insurance policy, premium payment, claim process or assistance service, or contact us, certain personal data may be processed and recorded.

Your personal data is processed only for the purposes specified in this Privacy Policy, in the Service Agreement available on our website and in the information notices shown to you during the insurance application process.

Mark Sigorta processes your personal data for the purposes of carrying out the insurance application process, reviewing application information, transmitting information to the relevant insurance company where necessary, issuing or acting as an intermediary for the issuance of the insurance policy, carrying out contract conclusion and premium collection processes, providing application-related communication, conducting payment and invoicing processes, ensuring security, preventing misuse and fulfilling legal obligations.

This website is operated by Mark Sigorta Aracılık Hizmetleri Anonim Şirketi.

Company Information:
Mark Sigorta Aracılık Hizmetleri Anonim Şirketi
Tax Office: Esenyurt
Tax Number: 6121516020
Address: Üçevler Mahallesi 955. Sokak No: 1 D: 38 P.K: 34513 Esenyurt / İstanbul / Türkiye

For the purposes of this Privacy Policy, the terms “Application Center”, “Company”, “Mark Sigorta”, “we”, “our website” or “website” refer to Mark Sigorta Aracılık Hizmetleri Anonim Şirketi.

Mark Sigorta acts as the data controller for personal data processed through this website and within its own insurance application, insurance brokerage, agency, policy issuance support, premium collection, payment, communication, support and record-keeping activities.

Insurance companies, assistance service providers, payment service providers, claim service providers and other authorized institutions may process personal data as separate data controllers or data processors within the scope of their own legal obligations, insurance activities and service processes.

Mark Sigorta operates as a registered and authorized insurance agency in Türkiye. Mark Sigorta may act as an intermediary for the conclusion of insurance contracts, carry out or support policy issuance processes and conduct premium collection processes within the scope of its authorization with insurance companies for which it is authorized or with which it has contracts, including Gulf Sigorta A.Ş. and Quick Sigorta A.Ş.

Insurance companies may also process your personal data within the scope of issued policies or policies requested to be issued, insurance coverages, claim processes, assistance services, statutory obligations and their own privacy notices. In this context, Gulf Sigorta A.Ş., Quick Sigorta A.Ş. or other authorized insurance companies relevant to the application may act as separate data controllers for their own activities.

Personal data processed by Mark Sigorta in its capacity as an insurance agency is processed only for carrying out insurance application, policy issuance, premium collection, support, communication, claim or assistance service-related processes.

Your personal data is processed lawfully and fairly, accurately and, where necessary, kept up to date, for specified, explicit and legitimate purposes, and in a manner that is relevant, limited and proportionate to those purposes.

We take care not to request personal data that is not necessary for carrying out insurance application, policy issuance, premium collection, payment, support, claim or assistance service and legal processes. The data you submit through our website is retained in connection with the purposes of processing and for as long as necessary.

Your personal data is not used for purposes other than those specified in this Privacy Policy and is not sold to third parties for commercial purposes.

Due to the nature of insurance application procedures, the information you share through our website may be recorded for the purposes of carrying out the insurance application process, evaluating application information, issuing or acting as an intermediary for the issuance of an insurance policy, conducting premium and payment processes, providing support and fulfilling legal obligations.

Within this scope, the following categories of data may be processed:

• Identity information: Name, surname, date of birth, place of birth, nationality, gender, identification number and similar information contained in the insurance application form or related documents.
• Passport and travel information: Passport number, passport issue date, passport expiry date, country of issuance, passport type, travel dates, destination country, duration of travel and other information required for travel health insurance applications.
• Contact information: Email address, phone number, address information and other contact information used to reach you during insurance application, policy issuance, payment, support or claim processes.
• Insurance application information: Information you provide in the insurance application form, insurance type, policy period, coverage information, insured person information, policyholder information, beneficiary information, application number, application status, application history and transaction records related to the insurance application process.
• Policy information: Policy number, policy date, premium information, coverage limits, insured person information, policyholder information, insurance company information, policy documents and records relating to issued insurance policies.
• Health and medical information: Health declarations, medical condition information, illness or injury information, treatment information, medical reports, health documents related to claim processes and other health data that may be required within the scope of insurance application, policy, assistance service or claim processes.
• Claim and assistance service information: Claim notifications, loss or incident information, medical assistance records, emergency assistance records, information relating to repatriation of remains, medical evacuation or assistance services, claim documents and correspondence relating to insurance coverages.
• Document information: Passport images, identity document images, insurance application documents, policy documents, medical documents, claim documents, supporting documents and other files relating to the insurance application or insurance service that you submit to us.
• Payment and invoicing information: Payment status, transaction number, payment date, payment method, premium amount, invoice information, refund records and limited transaction information transmitted by payment service providers.
• Technical data: IP address, access records, browser information, device information, operating system, referrer page information, visit date and time, security records, cookie records and transaction activities performed on our website.
• Communication records: Email correspondence, SMS notifications, support requests, insurance application-related messages, policy process-related messages, claim process-related messages, complaints, requests and records relating to customer service processes.

Insurance application, travel health insurance, assistance service and claim processes may require the processing of health data, medical reports, illness or injury information and similar special categories of personal data.

Special categories of personal data are processed only where the conditions set out in the applicable legislation are met and only to the extent necessary for carrying out insurance application, policy issuance, assistance service, claim process or legal processes.

Where special categories of personal data must be processed, we act in accordance with the conditions prescribed by the applicable legislation and take the necessary technical and administrative security measures.

We recommend that you do not submit special categories of personal data through our website unless they are directly required for the insurance application, policy, assistance service or claim process.

When you visit our website or perform any transaction through our website, technical records such as your IP address, transaction time, pages accessed, device and browser information may be processed by our systems.

These records are kept for the purposes of ensuring website security, verifying application and payment transactions, preventing misuse, resolving technical issues, detecting fake or repeated transactions, fulfilling legal obligations and reviewing transaction history in the event of a dispute.

IP address and transaction records are important for carrying out insurance application, policy and payment processes securely. These data help record the transactions performed by the applicant on our website together with date and time information.

When you fill out insurance application forms available on our website, the information you enter in the form fields is recorded in our systems. Due to the nature of the insurance application process, identity information, passport information, travel information, health declarations, contact information, insured person information, policyholder information and other insurance-related information may be processed.

If you submit documents or files to us during the insurance application, policy issuance, premium collection, assistance service or claim process, the files you send may also be stored in our systems for the purpose of evaluating, checking, tracking and carrying out the necessary procedures relating to your insurance application or policy.

It is important that the information in the insurance application form is accurate, complete and up to date in order for the application, policy issuance and related insurance processes to be carried out properly. Missing, incorrect or outdated information may cause delays, the need for corrections, policy cancellation, premium or payment disputes, claim-related issues or negative consequences in the insurance process.

Your personal data may be processed for the following purposes:

• Receiving, recording, reviewing and tracking insurance application procedures,
• Checking the information provided in the insurance application form,
• Contacting the applicant, policyholder or insured person if missing, incorrect or inconsistent information is detected,
• Transmitting necessary application information to Gulf Sigorta A.Ş., Quick Sigorta A.Ş. or the relevant insurance company subject to the application,
• Transmitting information to assistance service providers, claim units or authorized service providers where necessary,
• Issuing or acting as an intermediary for the issuance of insurance policies,
• Carrying out contract conclusion, premium collection, payment, refund and invoicing processes,
• Providing information about the insurance application, policy, payment or claim process via email, SMS or other communication channels,
• Operating application and policy tracking systems,
• Carrying out payment, premium collection, refund, invoicing and accounting processes,
• Responding to customer support requests,
• Managing complaints, requests, objections, payment objections and dispute processes,
• Supporting claim notification, assistance service, emergency support or policy coverage processes where applicable,
• Ensuring the security of the website,
• Preventing fake applications, incorrect transactions, misuse, unauthorized access and fraud risks,
• Detecting and resolving technical errors,
• Improving service quality and analyzing website use,
• Fulfilling obligations arising from insurance legislation, tax legislation, commercial legislation, accounting rules and other applicable legislation,
• Responding to lawful requests from authorized official institutions, regulatory authorities, judicial or administrative authorities,
• Establishing, exercising or protecting our rights.

Your personal data may be collected electronically through forms on our website, application tracking screens, payment screens, document upload areas, cookies, technical records, email, SMS, support requests, call or messaging channels, insurance company systems, assistance service providers, payment service providers and transaction records received from our service providers.

Your personal data is processed on the basis of the legal grounds set out in Law No. 6698 on the Protection of Personal Data. These legal grounds include processing expressly provided for by law, processing necessary for the establishment or performance of a contract, processing necessary for compliance with legal obligations, processing necessary for the establishment, exercise or protection of a right, processing necessary for our legitimate interests provided that your fundamental rights and freedoms are not harmed, and your explicit consent where explicit consent is required.

Data processed within the scope of insurance application procedures, policy issuance processes, premium collection, payment processes, invoicing, support requests, security records, transaction logs, claim processes and legal obligations is processed on the basis of the legal grounds necessary for carrying out the relevant service and fulfilling legal requirements.

Special categories of personal data, non-essential cookies, marketing communications or other data processing activities requiring explicit consent are processed only with your explicit consent where required by the applicable legislation or on the basis of other processing conditions prescribed by law.

Due to the nature of the insurance application and policy issuance process, your application information, policy information, payment records, health declarations, medical documents, claim information and other relevant documents may be shared, to the extent necessary, with Gulf Sigorta A.Ş., Quick Sigorta A.Ş. or other insurance companies subject to the application.

Your personal data may also be shared with assistance service providers, claim units, medical service providers and other parties involved in the insurance service, only to the extent necessary for carrying out the relevant service.

This sharing is carried out only for the purposes of evaluating the insurance application, issuing or managing the insurance policy, carrying out premium collection and payment processes, providing assistance services, processing claims, fulfilling legal obligations or responding to lawful requests from authorized parties.

Insurance companies may process your personal data as separate data controllers within the scope of insurance legislation, policy management, claim processes, assistance services, regulatory obligations and their own privacy notices.

Due to the nature of insurance activities and legal obligations, your personal data may be shared, to the extent necessary, with authorized official authorities, regulatory authorities, judicial and administrative authorities, insurance-related public institutions, professional organizations and legally authorized systems.

Within this scope, your data may be shared with the Insurance and Private Pension Regulation and Supervision Agency, the Financial Crimes Investigation Board, the Insurance Information and Monitoring Center, judicial and administrative authorities, tax authorities, audit authorities and other institutions authorized by applicable legislation.

This sharing is carried out only for the purposes of conducting insurance activities, fulfilling legal obligations, complying with regulatory requirements, responding to lawful requests and protecting legal rights.

Your personal data is not shared with official authorities or third parties except where required by the insurance process and for lawful data processing purposes.

Your personal data may be shared with third parties from whom we receive services, or processed by such parties on our behalf, to the extent necessary for operating our website and carrying out insurance application, policy, payment, support, communication, claim, assistance service and security processes.

Within this scope, your data may be shared, on a limited basis, with payment service providers, banks, hosting and server service providers, email and SMS service providers, technical support providers, security service providers, analytics service providers, accounting and invoicing service providers, legal advisors, insurance service providers, assistance service providers, claim service providers and other service providers necessary for carrying out the relevant service.

Such sharing is carried out only to the extent necessary for providing the relevant service. Your personal data is not sold to third parties for commercial purposes.

When you make a payment through our website, the information required to complete the payment transaction may be processed by the relevant payment service providers and financial institutions.

Your card details are not stored on our website or in Mark Sigorta systems. Payment transactions are carried out through the secure payment infrastructures of payment service providers.

Limited records relating to payment transactions may be processed for the purposes of verifying payment status, carrying out insurance application procedures, policy issuance, premium collection, invoicing, accounting, refund transactions, payment security, fraud prevention and dispute resolution.

If you fill out an insurance application form, track an application, make a payment, request support or contact us through our website, notifications regarding your insurance application, policy, premium payment, support request or claim process may be sent to you via email, SMS or other communication channels.

Notifications such as application number, policy information, application status, missing information notice, payment status, premium collection information, application tracking link, policy document access, support request response, claim-related notice or other notifications necessary for carrying out the insurance process may be sent within the scope of service communication.

Promotional, campaign or marketing communications are sent only if the conditions prescribed by the applicable legislation are met. If you do not wish to receive such communications, you may use the opt-out methods included in the relevant communication or contact us.

Our website may use cookies, known as technical communication files. Cookies may be used for the purposes of ensuring that the website works properly, maintaining security, carrying out insurance application and payment processes, remembering your user preferences, measuring site performance and improving user experience.

Essential cookies are necessary for the secure and proper functioning of the website. Without essential cookies, some basic functions of the website may not work.

Analytics, performance, advertising or marketing cookies may be used depending on your preferences or explicit consent where required by the applicable legislation. You may manage your preferences regarding non-essential cookies through the cookie preference tool if such a tool is provided on our website, or through your browser settings.

You may delete cookies or block certain cookies. However, if some cookies are disabled, certain parts of our website or insurance application processes may not function properly.

Our website may use various analytics software to measure visitor activity, evaluate site performance, detect technical issues, improve user experience and enhance service quality.

Within this scope, Google Analytics, Yandex Metrica, Matomo or similar analytics tools may be used.

These analytics tools may generate reports based on technical usage data such as pages visited, visit duration, device and browser type used, traffic sources, transaction flows and similar data. These reports are used to improve the technical performance and user experience of our website.

You may obtain information about the operation, data processing methods and preference options of analytics tools from the information resources of the relevant analytics providers.

Certain technical checks may be carried out through automated systems for the purposes of ensuring the security of our website, payment security, detecting fake transactions, preventing misuse, identifying technical errors and conducting the insurance application process in an orderly manner.

These checks are used to increase the security of the insurance application and payment processes and ensure uninterrupted service. Where necessary, the applicant, policyholder or insured person may be contacted and additional information or verification may be requested.

If you believe that an adverse result has arisen against you through the analysis of your personal data exclusively by automated systems, you may exercise your rights under the applicable legislation.

Within the scope of insurance application and policy processes, personal data of children may be processed only to the extent necessary for carrying out the insurance application, policy issuance, assistance service or claim process.

If an insurance application is made on behalf of a child, it is deemed that the application has been made by a parent, guardian or person authorized to make the application. When processing personal data of children, we act in accordance with the protection and security measures prescribed by the applicable legislation.

Mark Sigorta takes the necessary technical and administrative security measures to protect your personal data against unauthorized access, loss, misuse, alteration, unlawful processing or sharing with unauthorized parties.

Within this scope, secure connection technologies, access authorizations, server security, logging and monitoring mechanisms, payment security measures, data access restrictions and controls for preventing misuse may be applied.

However, no data transmission over the internet or electronic storage method can guarantee absolute security. If any data security incident occurs, necessary investigation, precautions and notification processes required under the applicable legislation are carried out.

Our website may contain links directing to third-party websites in connection with information, payment, insurance, insurance company, assistance service, analytics, support or application processes.

These links may be provided solely for user convenience or informational purposes. Mark Sigorta has no control over the content, security practices, data processing methods or privacy policies of third-party websites.

Before visiting third-party websites or performing any transaction through such websites, you are advised to review the privacy policy and terms of use of the relevant website.

Your personal data is retained for as long as required by the purposes of processing and limited to the statutory retention periods prescribed by the applicable legislation.

Insurance application records, policy records, application documents, payment and invoice records, support correspondence, claim-related records, transaction records, IP records and security logs may be retained for as long as necessary for carrying out the insurance application process, policy issuance, assistance service or claim processes, fulfilling legal obligations, completing accounting and invoicing processes, resolving possible disputes, exercising or defending rights and meeting security needs.

When the retention period expires or the purpose of processing ceases to exist, your personal data is deleted, destroyed or anonymized in accordance with the applicable legislation.

Due to the technical infrastructure of our website, analytics tools, payment services, email or SMS notifications, security services, insurance service providers, assistance service providers or other service providers, some of your personal data may be processed through technical infrastructures located abroad or shared on a limited basis with service providers located abroad.

Where data transfer abroad is required, such transfer is carried out only to the extent necessary for providing the relevant service and in accordance with the applicable legislation on the protection of personal data.

Within this scope, to the extent applicable, one of the mechanisms prescribed by the relevant legislation, such as an adequacy decision, appropriate safeguards, standard contract, exceptional transfer conditions or explicit consent mechanisms, is used. Where data transfer abroad occurs through non-essential analytics, advertising or marketing cookies, your explicit consent is obtained where required by the applicable legislation.

You have certain rights regarding your personal data under Article 11 of Law No. 6698 on the Protection of Personal Data. These rights may include the following, subject to the conditions prescribed by the applicable legislation:

• Learning whether your personal data is processed,
• Requesting information if your personal data has been processed,
• Learning the purpose of processing your personal data and whether it is used in accordance with that purpose,
• Knowing the third parties to whom your personal data is transferred domestically or abroad,
• Requesting correction of your personal data if it has been processed incompletely or incorrectly,
• Requesting deletion or destruction of your personal data within the framework of the conditions prescribed by the applicable legislation,
• Requesting notification of correction, deletion or destruction operations to third parties to whom your personal data has been transferred,
• Objecting to any result arising against you through the analysis of processed data exclusively by automated systems,
• Requesting compensation for damages if you suffer damage due to unlawful processing of your personal data.

You may contact us to exercise these rights. Your applications will be evaluated within the procedures and periods prescribed by the applicable legislation.

Additional information or documents may be requested from you in order to finalize your application securely and verify your identity.

You may contact us through our contact page regarding the processing of your personal data, our privacy practices, your insurance application records, policy records, premium payment records, claim process-related records or this Privacy Policy.

Your contact requests will be evaluated as soon as possible depending on the nature of the request.

Mark Sigorta may update this Privacy Policy from time to time. The updated Privacy Policy becomes effective as of the date it is published on our website.

If significant changes are made to the Privacy Policy, notification may be provided through appropriate methods. We recommend that you check this page regularly to stay informed about our current privacy practices.

This Privacy Policy should be read together with the Service Agreement available on our website and other information notices shown during insurance application, policy issuance, premium collection, payment, assistance service or claim processes.

Before starting the insurance application process, you are advised to carefully review the Privacy Policy, the Service Agreement and the information notices shown during the application.