Showing Posts In "Turkey" Category





How To Increase Awareness About Personal Data Protection with Employees and Data Processors?

Personal data protection activities within companies are living processes. During many changes – such as the change of business processes, the departure of employees or the recruitment of new employees, or the acquisition of new partners – one thing to consider is the protection of personal data. Therefore, one of the most important and fundamental […]


Turkish DPA Publishes Guideline on Biometric Data

The Turkish Personal Data Protection Authority recently published the Guideline on Matters To Be Considered When Processing Biometric Data. One important aspect of the Guideline highlights how to define biometric data, including how data must meet certain conditions to be considered as biometric data. What are those conditions?

Read more


Turkey Introduces New Methods for Identity Verification in The Electronic Communications Sector

Turkey’s Regulation on Verification Process of the Applicant’s Identity in the Electronic Communications Sector introduces new methods and standards for identity verification in the electronic communications sector. The principles defined under the Regulation are expected to increase the security of the processes in the electronic communication sector. Operators and service providers might prepare an action […]


Two-minute Recap of Recent Developments In Turkish Personal Data Protection Law – July 2021

In July 2021, the Turkish Personal Data Protection Board published nine decisions and announced five data breach notifications. The Board was clearly focused on data breaches in July, as all its decisions last month relating to data breaches. The insurance industry came under scrutiny, as four of the nine published decisions relating to insurance companies. […]


TURKISH DATA PROTECTION BOARD ISSUES NEW DECISION REGARDING EMPLOYEE PERSONAL DATA

The Turkish Personal Data Protection Board imposed an administrative fine of TRL 250,000 against an employer following a complaint from an employee. The employee alleged that the employer did not provide the necessary information for the processing and storage of the personal data; made it obligatory for all employees to provide their fingerprint data but […]


TRANSFER OF DATA TO THIRD PARTY 

In Turkey, the Data Protection Law does not provide a definition for a third party; therefore, any individual or entity may be considered a third party. This creates a problem, especially in relation to transfers between data controllers and data processors, as there is no explicit provision in relation to data transfers between data controllers […]


TRANSFER OF DATA ABROAD 

In Turkey, sensitive and non-sensitive personal data can be transferred abroad if the explicit consent of the data subject is obtained. Yet, there is no solution for the transfer of personal data abroad except for obtaining explicit consent, and legal instruments, such as standard contractual clauses, alone, are not adequate for the transfer of personal […]


THE DEADLINE FOR REGISTERING WITH THE TURKISH DATA CONTROLLERS REGISTRY (VERBIS) HAS BEEN POSTPONED AGAIN

Turkey’s Personal Data Protection Board has postponed the registration deadline with the Turkish Data Controllers Registry until December 31, 2021 to meet the increasing requests of many data controllers as well as professional associations due to the Covid-19 pandemic. Which data controllers are required to register with VERBIS by December 31?

Read more


PROCESSING EMPLOYEE DATA IN LIGHT OF RECENT DPA AND COURT DECISIONS

Turkey’s Constitution protects private life, and in 2016 the Data Protection Law was enacted, furthering the protection of personal data. In disputes relating to the monitoring of employees’ personal data in the workplace, the courts and the Data Protection Authority (DPA), have based their decisions on the constitutional provisions. A new article outlines the legal […]


LAWFUL DATA PROCESSING

In Turkey, personal data can be processed based on what legal grounds? And how does the country’s Data Protection Law divide sensitive personal data?

Read more




SUBSCRIBE TO OUR NEWSLETTERS

the global background screener
the background buzz