1. Introduction
This Privacy Policy explains how personal data is collected, used, stored, and protected within the scope of the RawdahBooking platform.
All users who use RawdahBooking are deemed to have accepted this policy.
2. Data Controller
Your personal data is processed by Rawdahbooking as the data controller.
3. Data Collected
The following data may be collected during the use of the platform:
3.1 Identity and Operational Data
- First name, last name
- Date of birth
- Gender
- Passport information
- Visa / travel reference numbers
3.2 Transaction Data
- Reservation and application records
- Operational history
- In-platform transaction logs
3.3 Technical Data
- IP address
- Device information
- Browser information
- Usage logs
- System access records
4. Method of Data Collection
Data is collected;
- Through direct entry by users
- Via agencies and corporate users
- Via Excel / file upload systems
- Automatically during platform use
collected.
5. Purposes of Data Usage
Personal data is processed for the following purposes:
- Execution of tourism operations
- Provision of reservation and application processes
- Delivery and improvement of platform services
- Customer support processes
- Billing and accounting operations
- Ensuring system security
- Fulfillment of legal obligations
- Prevention of fraud and misuse
- Creation of evidence in legal disputes
6. Legal Basis
Data is processed based on the following legal grounds:
- Performance of the contract
- Fulfillment of legal obligations
- Legitimate interest
- Explicit consent when required
7. Data Sharing and Transfer
Personal data may be shared with;
- Cloud infrastructure providers
- Payment and billing services
- Technical service providers
- Public authorities in case of legal obligation
shared with.
Data is not sold, rented, or shared with unauthorized third parties.
8. International Data Transfer
In order to provide the service, data may be transferred to servers located outside of Turkey (e.g., cloud service providers).
This transfer is carried out in compliance with data security standards.
9. Data Retention Period
Personal data is retained;
- For the duration required by legal obligations
- As long as necessary for the performance of the service
retained.
At the end of the period, the data is deleted, anonymized, or destroyed.
10. Data Security
The Company protects data using;
- Access control systems
- Encryption technologies
- Logging and monitoring systems
protects data.
However, risks arising from user-induced errors, unauthorized access, or third-party breaches are entirely the responsibility of the user.
11. User Rights (KVKK + GDPR)
Users have the right to;
- Learn whether their personal data is being processed
- Request access to the data
- Request correction
- Request deletion
- Restrict processing
- Request data portability
have the rights.
12. Cookies and Tracking Technologies
The platform may use cookies and similar technologies for the purposes of;
- Session management
- Performance analysis
- User experience improvement
may use cookies and similar technologies.
13. Third-Party Services
The platform may use the following third-party services:
- Cloud service providers
- Payment infrastructures
- Analytics tools
- Security services
The respective privacy policies of these services also apply separately.
14. Data Responsibility Distinction
Agencies and corporate users may act as independent data controllers with respect to data belonging to their own customers.
Rawdahbooking may act as a data processor to the extent that it provides the technical infrastructure of the platform.
15. Children's Data
The platform processes data of individuals under the age of 18 only with the consent of a legal representative.
16. Changes
This Privacy Policy may be updated when necessary. Updates become effective as soon as they are published on the platform.
17. Contact
Users may submit requests regarding data protection through the platform or via the company's communication channels.