Privacy Policy

Last Updated: 26.08.2025

Max Aesthetics (“we,” “us,” “our”), a service provided by Max Group Tourism Dış Ticaret Limited Şirketi, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website maxaesthetics.tr, use our online booking services, contact us, or engage with us as a patient or client.

By using our services, you consent to the data practices described in this policy. If you do not agree with the terms, please do not access the site or provide us with your personal information.

1. Information We Collect

We collect information that you provide directly to us and automatically when you use our services.

A. Information You Provide Voluntarily:

  • Contact Information: Name, email address, phone number, country of residence.

  • Demographic Information: Age, gender.

  • Health Information (Special Category Data): This is collected during consultations or inquiries to determine treatment suitability. It may include medical history, current health conditions, medication use, aesthetic concerns, and photos you provide. We obtain your explicit, informed consent before collecting and processing this sensitive data.

  • Booking and Inquiry Information: Your preferred procedures, desired dates for consultation or treatment, and any questions you submit.

  • Payment Information: If you make a purchase (e.g., for products or deposits), our payment processor (Iyzico) handles your card details. We do not store full credit card information on our servers.

  • Communication Records: Copies of your communications with us via email, WhatsApp, contact forms, or phone calls.

B. Information Collected Automatically:

  • Usage Data: Information about your interaction with our website, such as your IP address, browser type, device information, pages visited, time spent on pages, and referring website addresses. This is collected through cookies and similar tracking technologies.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To schedule, manage, and confirm your consultations and appointments.

  • To facilitate your medical tourism journey, including travel and accommodation logistics.

  • To assess your suitability for requested aesthetic procedures and to provide information to the independent medical professionals who will treat you.

  • To respond to your inquiries, comments, and requests.

  • To process transactions and send you related information, including confirmations and invoices.

  • To send you administrative information, such as updates to our policies.

  • For Marketing Purposes: To send you information about services, offers, and promotions that we believe may be of interest to you, but only if you have given us explicit consent to do so. You can opt-out of marketing communications at any time.

  • To analyze and improve our website, services, and marketing strategies (see Section 4 on Cookies).

  • To protect our rights, property, or safety, and that of our users and third parties.

  • To comply with legal and regulatory obligations.

3. Legal Basis for Processing (GDPR & KVKK)

We process your personal data based on the following legal grounds:

  • Performance of a Contract: To fulfill our obligations related to your booking and service arrangement.

  • Consent: For sending marketing communications, for using non-essential cookies, and for processing special category health data. You can withdraw your consent at any time.

  • Legitimate Interests: For operating our website, analyzing user data, and ensuring security, provided your fundamental rights do not override these interests.

  • Legal Obligation: To comply with Turkish health tourism and tax regulations.

4. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to collect and use personal information about you, including to serve interest-based advertising.

  • What Are Cookies: Cookies are small data files that are placed on your computer or mobile device when you visit a website. They are widely used to make websites work more efficiently and to provide reporting information.

  • Types of Cookies We Use:

    • Essential Cookies: Necessary for the website to function and cannot be switched off. They are usually only set in response to actions you take, such as setting your privacy preferences or filling in forms.

    • Analytical/Performance Cookies: Allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us know which pages are popular and how visitors move around the site. We use Google Analytics for this purpose.

    • Targeting Cookies: These cookies may be set through our site by our advertising partners (like Meta Pixel). They may be used by those companies to build a profile of your interests and show you relevant advertisements on other sites. They do not store direct personal information but are based on uniquely identifying your browser and internet device.

  • How to Control Cookies: You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. You can also opt-out of Google Analytics by installing Google’s opt-out browser add-on, and adjust your Facebook ad preferences through your Facebook account settings.

5. How We Share Your Information

We may share your information with:

  • Independent Medical Professionals and Clinics: We share necessary health and contact information with the licensed doctors and clinics in Turkey who will perform your consultation and treatment. These medical providers are required to archive patient records for 20 years.

  • Service Providers: Trusted third parties who assist us in operating our website, conducting our business, and serving you. This includes:

    • Iyzico: Our payment processing partner.

    • Google Analytics & Meta: For website analytics and advertising tracking.

    • IT services, hotel partners, and translators.
      These parties are obligated to keep your information confidential.

  • Legal Requirements: We may disclose information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

  • Business Transfers: In connection with a merger, acquisition, or sale of all or a portion of our assets.

6. International Data Transfers

As a health tourism company, your data will be transferred to and processed in the Republic of Türkiye. We ensure all data transfers are protected by appropriate safeguards as required by data protection laws.

7. Data Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this policy, and to comply with our legal obligations.

  • Patient Medical Records: We facilitate the transfer of your medical data to the operating hospital or clinic, who are independently required by Turkish law to retain these records for 20 years.

  • Other Personal Data: We will retain other personal data (e.g., contact information, inquiries, booking details) for a period necessary to fulfill our contractual obligations, provide you with services, and comply with our legal and tax obligations (typically 10 years from the date of last interaction, unless a longer period is required by law).

After the retention period ends, your data will be securely deleted or anonymized.

8. Your Data Protection Rights

Depending on your location and applicable law (like GDPR or KVKK), you have the right to:

  • Access and receive a copy of your personal data.

  • Rectify inaccurate or incomplete data we hold about you.

  • Erase your personal data (“right to be forgotten”) under certain conditions.

  • Restrict the processing of your data.

  • Object to processing based on legitimate interests.

  • Data Portability: Receive your data in a structured, machine-readable format.

  • Withdraw Consent at any time, where we rely on your consent to process your data.

  • Opt-out of Marketing Communications: You can unsubscribe from our marketing emails by clicking the “unsubscribe” link they contain.

To exercise any of these rights, please contact us using the details provided in the “Contact Us” section below.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee its absolute security.

10. Children’s Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with data, please contact us, and we will delete it.

11. Changes to This Privacy Policy

We may update this policy from time to time. The updated version will be indicated by a new “Last Updated” date and will be effective immediately upon posting. We encourage you to review this policy periodically to stay informed about how we are protecting your information.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Max Group Tourism Dış Ticaret Limited Şirketi
15 TEMMUZ MAH. BAHAR CAD. TOYA NEXT A2 NO: 3 -5/2 IÇ
KAPI NO: 223 BAGCILAR/ ISTANBUL
Email: click here to send e-mail
Phone: +90 545 450 4976