Last Updated: 19/03/2023
Getir Netherlands B.V. and its group companies ("Getir", "we" or "us") respect your right to privacy. This Privacy Policy explains who we are, how we collect, share and use personal information about you, and how you can exercise your privacy rights. This Privacy Policy only applies to personal information that we collect through your use of the Getir mobile app ("App").
For information on the collection of personal information via our website, please see our Website Privacy Notice. If you have any questions or concerns about our use of your personal information, then please contact us using the contact details provided at the bottom of this Privacy Policy.
We recommend that you read this Privacy Policy in full to ensure you are fully informed. However, if you only want to access a particular section of this Privacy Policy, then you can click on the relevant link below to jump to that section.
Getir is an on-demand delivery service that offers customers the opportunity to purchase products and have them delivered directly to their door.
For more information about Getir, please visit our website at www.getir.com/nl and refer to Getir Terms and Conditions of Service.
Personal data is all data that can be related to you personally, e.g., name, address, e-mail addresses, user behaviour.
If we use contracted service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail about the respective processes below. In doing so, we will also state the defined criteria for the storage period.
The personal information that we collect about you falls into the following categories:
When you download our App, the required information is transferred to the App Store or Google Play Store, i.e. in particular user name, email address and customer number of your account, time of download, payment information and the individual device identification number. We have no influence on this data collection and are not responsible for it. We only process the data insofar as it is necessary for downloading our App to your mobile device.
When you download and use our App, we will collect personal information to register you and create an account. This includes:
Identity and contact details: your name, surname, delivery address, phone number and email address. We will also ask you to create a password for your account and we will store this password information with encryption.
Identity and contact details: your customer ID, and account details used to register as per the above;
Financial details: your payment information and payment methods;
Customer transaction details: your shopping history, order information, and invoice information as well as any enquiries, or complaints submitted to us, including call recordings if you call us and live support records from our customer services team;
Rating, Comment and Review Details: the ranking or rate you have scored your experience of using the App and Getir services, as well as any comments and reviews you have submitted to us and customer satisfaction survey responses.
If you (i) create an account with us or purchase goods or services via the App and (ii) provide your e-mail address, it may subsequently be used by us to send you marketing messages. In such cases, personalised advertising for our own similar goods and services may be sent via (i) our newsletters or (ii) social media platforms.
When you use our App, we will automatically collect information from your device.
Specifically, this includes:
Device details, such as your IP address, device type, unique device identification numbers, browser-type, device location, advertisement ID and other technical information including user transaction records, application usage information and commercial electronic communication consent logs;
We may also process personal data relating to your order history, product purchases and app usage for segmentation purposes. We do this using cookies and SDKs via client IDs for digital marketing activities (such as product-based push notifications).
In order for us to operate embedded Google Maps interfaces, we will also store your delivery addresses as pinned locations with latitude and longitude information. Please refer to Google Maps Privacy Policy for further information on how Google processes your personal data within the embedded mapping interfaces.
From time to time, we may receive personal information about you from third party sources (including social media companies, like Facebook), but only where you have chosen to connect your Getir account with your social media account or have used social media information to register with Getir. We only collect information from these third parties where we have checked that these third parties either have your consent or are otherwise legally permitted or required to disclose your personal information to us.
The types of information we collect from third parties include your name, age, gender, profile picture and profile information and we use the information we receive from these third parties to create an account with Getir using your social media login credentials.
In general, we will use the personal information we collect from you only for the purposes described in this Privacy Policy. However, we may also use your personal information for other purposes that are not incompatible with the purposes we have disclosed to you (such as archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes) if and where this is permitted by applicable data protection laws.
Within the scope of the App, you can enter, manage and edit your profile information. This information includes, in particular, your name, surname, email address, delivery address, payment information, billing information and password.
The app also requires the following authorisations:
Internet access: This is required in order for you to access and use our App.
User authentication: This is required to verify your identity as the account holder.
We may use your profile information, order and search history to recommend relevant products and services in the App.
The processing of your personal data is based on our legitimate interest in improving our customer experience, products and services.
You have the right to opt-out of these processing activities by contacting us via privacy@getir.com.
We may use your device data and app interactions to: a) display product recommendations or ads on the App or via third-party service providers (including social media platforms); and b) measure the effectiveness of such ads.
This processing of your personal data is based on your consent.
You can easily change your preferences from the Data Management section under the Account Settings on your Profile Page.
As indicated in our Terms and Conditions of Service, you must be aged 18 years or older to download and use the App. We do not sell products for purchase by children. We may sell children’s products for purchase by adults.
Getir processes the personal information above for the following purposes:
We may disclose your personal information to the following categories of recipients:
Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.
However, we will collect and process your personal information
If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information).
If we collect and use your personal information in reliance on our legitimate interests, this interest will normally be to operate our App and communicating with you as necessary to provide our services to you and for our legitimate commercial interest, for instance, when responding to your queries, or improving our App. In addition to the legitimate interests described in this Privacy Policy, we may have other legitimate interests and if appropriate we will make clear to you at the relevant time what those legitimate interests are.
If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided under the “How to contact us” heading below.
We use cookies and similar tracking technology, including SDKs (collectively, “Cookies”) to collect and use personal information about you, including to serve interest-based advertising. For further information about the types of Cookies we use, why, and how you can control Cookies, please see our Mobile App Cookie Policy.
We use appropriate technical and organisational measures to protect the personal information that we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information. Specific measures we or our third-party service providers use include anti-virus software and firewalls, access controls, encryption and detection and prevention software to detect and prevent cyber-attacks.
The service providers and business partners are carefully selected by us with particular regard to the suitability of the technical and organizational measures taken by them and checked for their compliance. We process the data in the European Economic Area (“EEA”) as a matter of principle. However, it is possible that your data may be transferred to controllers or processors in a country outside the European Union or the EEA (so-called "third country"). These countries may not have the same level of data protection as the EEA. However, we are obliged to ensure that the personal data processed by us, our group companies and our partners outside the EEA are protected in the same way as if they were processed within the EEA. Therefore, if your data is processed outside the EEA, there are certain safeguards in place.
In this case, we will provide suitable guarantees to ensure that the respective service providers protect the data appropriately, such as entering into the EU model clauses with the recipient of such data. We ensure similar protection by ensuring that at least one of the following safeguards is in place:
Your personal data may be processed in the United States of America (US), United Kingdom (UK), India and Turkey.
Your personal information will be stored and retained for us in accordance with the applicable laws on data protection, and to the extent necessary for the processing purposes set out under this Privacy Policy or resulting from such laws. We retain personal information we collect from you to provide you with our services or to comply with applicable legal, tax or accounting requirements. For example:
When it is no longer necessary to process your personal information for the purposes for which it is processed, we will either aggregate, delete or anonymise it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
Notwithstanding the above provisions of this Privacy Policy, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
We use technologies involving algorithms and automated decision processing to provide our services, based on real-time decision process or on analytics or the categorization of various usage of our service. However, we will not make any automated decisions about an individual which would produce legal affects or similarly significantly affects on the data subject, unless where it is (i) necessary for entering into, or the performance of, a contract, (ii) or pursuant to individual’s prior consent, or (iii) required by applicable law.
You have the following data protection rights:
In addition, you have the right to opt-out of marketing communications we send you at any time. You can exercise this right by (i) clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send you or (ii) unticking the communication channels you wish to opt-out under the Profile - Communication Preferences section in our App.
We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
We may update this Privacy Policy from time to time in response to changing legal, technical or business developments. When we update our Privacy Policy, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Policy changes if and where this is required by applicable data protection laws.
You can see when this Privacy Policy was last updated by checking the “updated on” date displayed at the top of this Privacy Policy.
If you have any questions or concerns about our use of your personal information, or you wish to exercise your rights under this Privacy Policy or the applicable law on data protection, please contact us using the following details: (i) privacy@getir.com; (ii) Keizersgracht 572, 1017 EM Amsterdam
The responsible party within the meaning of the GDPR and other national data protection laws of the EU member states as well as other data protection regulations is Getir Netherlands B.V..