Legal
Privacy & Personal Data Protection Policy
Last updated
At Zümrütü Anka Cave Hotel, we value the privacy of our guests and website visitors. This policy explains how we process your personal data in accordance with Turkish Personal Data Protection Law No. 6698 (KVKK) and applicable data protection rules.
1. Data Controller
Your personal data is processed by Zümrütü Anka Cave Hotel (the "Hotel"), operating in Cappadocia / Ürgüp, Nevşehir, Türkiye, acting as data controller. The full legal name and contact details of the business are available on our Contact page.
2. Personal Data We Collect
- Identity data: first and last name, national ID / passport number, date of birth, nationality
- Contact data: email address, phone number, address
- Reservation and stay data: check-in / check-out dates, room preferences, accompanying guest details, special requests
- Financial data: payment method and invoice details (card data is stored by the payment provider, not by the Hotel)
- Transaction and security data: IP address, cookie data, CCTV recordings
3. Purposes and Legal Grounds
Your data is processed for the provision of reservation and accommodation services, the establishment and performance of a contract, compliance with legal obligations, ensuring the physical security of the premises and -only where you have given separate explicit consent- marketing communication, based on the legal grounds set out in Articles 5 and 6 of the KVKK.
4. Legal Reporting Obligation (KBS)
Under Turkish Identity Notification Law No. 1774, all accommodation facilities are obliged to report guests' identity information to law enforcement through the Identity Notification System (KBS) and to retain it for the period required by law. This processing is a legal obligation and is not subject to consent.
5. Transfer of Personal Data
Your data may be transferred to authorised public institutions within the scope of legal obligations, and to payment providers, reservation platforms and suppliers we work with for the performance of the service, with the security measures required by the KVKK in place.
6. Retention Period
Your personal data is retained for as long as the processing purpose requires and for the legal retention periods set out in the relevant legislation; upon expiry it is deleted, destroyed or anonymised.
7. Cookies
Our website uses cookies. For detailed information, please review our Cookie Policy.
8. Your Rights
Under Article 11 of the KVKK, you have the right to learn whether your personal data is being processed, to request information, to learn the purpose of processing, to request correction of incomplete or inaccurate data, to request erasure where the conditions are met, and to claim compensation if the processing is unlawful. You may submit your requests through the channels on our Contact page.
9. Data Security
The Hotel takes the necessary administrative and technical measures to protect your personal data against unlawful access, loss and alteration.
10. Updates
This policy may be updated from time to time. The current version is always published on this page.
Related documents