Logo

PRIVACY POLICY

Last Updated: January 1, 2026

1. Data Controller

This Privacy Policy covers the data processing activities carried out by Uçuş Tazmin Danışmanlık ve Teknoloji Limited Şirketi (“UçuşTazmin”, the “Company”, “we”, “us”, or “our”).

UçuşTazmin acts as a data controller within the scope of the Turkish Personal Data Protection Law No. 6698 (“KVKK”) and the European Union General Data Protection Regulation (“GDPR”).

Contact Information:
Email: iletisim@ucustazmin.com
Website: www.ucustazmin.com

2. Our Service Model

UçuşTazmin pursues passengers’ compensation claims in cases of flight delays, cancellations, and overbooking under:

  • EU Regulation 261/2004
  • SHY-PASSENGER Regulation (SHY-YOLCU)
  • Turkish Consumer Protection Law No. 6502

Our service model may include:

  • Assignment of receivables
  • Collection authorization
  • Legal proceedings (including enforcement and court processes)
  • Mediation and administrative applications

In the event of successful recovery, a service fee is collected based on the percentage specified in the agreement.

3. Personal Data Collected

3.1 Identity and Contact Data

  • First and last name
  • Turkish ID number (when required)
  • Passport information (when required)
  • Phone number
  • Email address
  • Address information

3.2 Flight and Claim Data

  • Flight number
  • Flight date
  • Departure and arrival airports
  • Airline information
  • Ticket and reservation details
  • Boarding pass and supporting documents
  • Delay/cancellation details

3.3 Financial Data

  • IBAN information (for payment transfers)

3.4 Technical Data

  • IP address
  • Device and browser information
  • Cookie data
  • Page visit and interaction information
  • Traffic source

4. Purposes of Processing Personal Data

Your personal data is processed for the following purposes:

  • Conducting compensation eligibility analysis
  • Managing legal application and follow-up processes
  • Corresponding with airline companies
  • Initiating enforcement and court proceedings
  • Managing mediation processes
  • Collecting payments and transferring funds
  • Fulfilling legal obligations
  • Preventing fraud
  • Improving website performance

5. Legal Basis for Processing

Your data is processed based on the following legal grounds:

  • Establishment and performance of a contract (KVKK Art. 5/2-c, GDPR Art. 6/1-b)
  • Compliance with legal obligations
  • Establishment, exercise, or protection of legal claims
  • Legitimate interest
  • Explicit consent (for marketing activities)

6. Data Sharing

Your personal data may be shared, to the extent necessary, with:

  • Airline companies
  • Mediators
  • Courts and enforcement offices
  • Authorized public institutions
  • Legal representatives
  • Banks
  • Technical infrastructure and hosting providers

Our hosting infrastructure is provided through cloud-based systems. These providers act as data processors and are subject to contractual data security obligations.

7. International Data Transfers

Within the scope of transactions with EU-based airlines and service providers, your data may be transferred abroad. Such transfers are carried out in compliance with GDPR and KVKK provisions and appropriate security measures.

8. Data Security

Our Company implements technical and administrative measures such as:

  • SSL certificates
  • Access control systems
  • Authorization protocols
  • Log records
  • Encryption techniques

However, no method of transmission over the internet can be guaranteed to be completely secure.

9. Data Retention Period

Personal data may be retained for up to 10 years, taking into account:

  • Turkish Commercial Code
  • Tax Procedure Law
  • Statutes of limitation
  • Enforcement and litigation processes

Once the legal retention period expires, data is deleted, destroyed, or anonymized.

10. Cookies and Analytics

Cookies are used on our website.

Google Tag Manager and similar analytics tools may collect data such as:

  • Page views
  • Form interactions
  • Traffic sources
  • Device information

You may manage your cookie preferences through your browser settings.

11. Your Rights (Under KVKK and GDPR)

You have the following rights:

  • To request access to your personal data
  • To request correction of inaccurate data
  • To request deletion (except where legally required)
  • To request restriction of processing
  • To request data portability
  • To object to processing
  • To withdraw explicit consent
  • To lodge a complaint with the Turkish Data Protection Authority under KVKK

You may submit your requests to: iletisim@ucustazmin.com

12. Children’s Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect data from children.

13. Policy Changes

This Policy may be updated. The updated version enters into force on the date it is published on our website.