Privacy Policy

This policy explains the principles for processing personal data collected through the yalovasmrturizm website.

It covers data processed in booking, contact, technical security, and customer support processes.

Identity and contact data: full name, email address, phone number.

Transaction data: booking dates, room preferences, booking code, payment status.

Technical data: IP, device information, session and security logs.

Contract performance: creating bookings, confirmations, and managing accommodation operations.

Legitimate interests and security: fraud prevention, system security, and service quality improvements.

Legal obligations: responding to competent authorities and retention requirements.

Only required data may be shared with payment service providers during checkout.

Limited data transfers may occur for infrastructure, email, and hosting services.

Data minimization and security principles are applied in all transfer processes.

Personal data is retained as long as necessary for processing purposes and as required by applicable law.

At the end of the retention period, data is deleted, destroyed, or anonymized.

Under applicable data protection laws, you may have rights such as access, correction, deletion, restriction, and objection.

You may submit data rights requests through the contact channels listed on the contact page.