Showing Posts In "Turkey" Category
Personal data protection activities within companies are living processes. During many changes – such as the change of business processes, the departure of employees or the recruitment of new employees, or the acquisition of new partners – one thing to consider is the protection of personal data. Therefore, one of the most important and fundamental […]
The Turkish Personal Data Protection Authority recently published the Guideline on Matters To Be Considered When Processing Biometric Data. One important aspect of the Guideline highlights how to define biometric data, including how data must meet certain conditions to be considered as biometric data. What are those conditions?
Turkey’s Regulation on Verification Process of the Applicant’s Identity in the Electronic Communications Sector introduces new methods and standards for identity verification in the electronic communications sector. The principles defined under the Regulation are expected to increase the security of the processes in the electronic communication sector. Operators and service providers might prepare an action […]
In July 2021, the Turkish Personal Data Protection Board published nine decisions and announced five data breach notifications. The Board was clearly focused on data breaches in July, as all its decisions last month relating to data breaches. The insurance industry came under scrutiny, as four of the nine published decisions relating to insurance companies. […]
The Turkish Personal Data Protection Board imposed an administrative fine of TRL 250,000 against an employer following a complaint from an employee. The employee alleged that the employer did not provide the necessary information for the processing and storage of the personal data; made it obligatory for all employees to provide their fingerprint data but […]
In Turkey, the Data Protection Law does not provide a definition for a third party; therefore, any individual or entity may be considered a third party. This creates a problem, especially in relation to transfers between data controllers and data processors, as there is no explicit provision in relation to data transfers between data controllers […]
In Turkey, sensitive and non-sensitive personal data can be transferred abroad if the explicit consent of the data subject is obtained. Yet, there is no solution for the transfer of personal data abroad except for obtaining explicit consent, and legal instruments, such as standard contractual clauses, alone, are not adequate for the transfer of personal […]
THE DEADLINE FOR REGISTERING WITH THE TURKISH DATA CONTROLLERS REGISTRY (VERBIS) HAS BEEN POSTPONED AGAIN
Turkey’s Personal Data Protection Board has postponed the registration deadline with the Turkish Data Controllers Registry until December 31, 2021 to meet the increasing requests of many data controllers as well as professional associations due to the Covid-19 pandemic. Which data controllers are required to register with VERBIS by December 31?
Turkey’s Constitution protects private life, and in 2016 the Data Protection Law was enacted, furthering the protection of personal data. In disputes relating to the monitoring of employees’ personal data in the workplace, the courts and the Data Protection Authority (DPA), have based their decisions on the constitutional provisions. A new article outlines the legal […]
SUBSCRIBE TO OUR NEWSLETTERS
The Global Background Sreener
The Background Buzz!
(U.S. Background Screening