Sometimes 2min is plenty, even for law
Sometimes 2 min is plenty,
even for law.
  • Two-minute recap of recent developments in Turkish Data Protection Law

September ’22

  • Turkish Data Protection Law
Reading time: 92 seconds

October 2022 – In September 2022, the Turkish Personal Data Protection Authority (“DPA”) held several seminars and announced six data breach notifications, but released no decisions.

On 10 September, at an event organised by the Istanbul Bar Association Personal Data Protection Commission and Bahçeşehir University Faculty of Law, the President of the DPA stated that the DPA is preparing good practice guidelines for the protection of personal data in various sectors, including tourism, aviation, telecommunications and advertising.

DP law amendment coming soon!

A year ago, the Ministry of Justice established a Scientific Commission to amend Turkish Data Protection Law numbered 6698 in order to harmonise the local legal system with the EU’s GDPR.

In September, the Scientific Committee’s academic members announced that provisions on data transfers abroad and the processing of special categories of personal data have been prioritised. Parliament is expected to discuss these provisions during its next legislative session, which starts in October.

Seminars on machine learning and big data

On 21 September, the DPA held a seminar on the opportunities and risks of big data applications. The following issues were highlighted:

  • matching of user profiles between social networks;
  • using data in algorithms to create popularity and ranking characteristics relating to content on social platforms;
  • making data-driven decisions through data analysis;
  • risks of data storage units (i.e., cloud systems).

Earlier in the month, on 7 September, the DPA held a seminar on the processing of personal data in the context of machine learning. The following issues were highlighted:

  • problems that machine learning may cause in terms of personal data;
  • the need of cloud systems to store large amounts of data;
  • cross-border data transferring issues in connection with cloud systems;
  • data minimisation and personal data protection problems due to the large amount of data processing in machine learning processes;
  • difficulties in fulfilling the obligation to inform and obtain explicit consent.
The DPA announced the following data breach notifications in September:
Data Controller Affected Data Subjects Affected Personal Data Number of Data Subjects
Flo Mağazacılık ve Pazarlama A.Ş. Website users Identity, Financial and Transaction Security Data 3,500
Özel Keystone Eğitim ve Eğitim Dan. A.Ş. Employees, Users, Subscribers / Members, Students, Customers and Potential Customers Identity, Communication, Financial Data, Personnel Information, Information on Legal Processes, Risk Management and Other N/A
Marmara University Employees and Users Identity, Communication Data and Personnel Information 5,698
Fuudy Elektronik İletişim Perakende Gıda Lojistik Anonim Şirketi N/A Identity and Communication Data 81,452
Biblos Alaçatı Turizm Yatırımları A.Ş. Employees, Customers and Potential Customers Identity, Communication, Customer Transaction, Financial and Marketing Data, Audio and Visual Records, Health and Biometric Data 450
Posta ve Telgraf Teşkilatı Biriktirme ve Yardım Sandığı Members Identity and Transaction Security Data 38,000

 

For more information please contact Ceren Ceyhan, Associate, at cceyhan@gentemizerozer.com, and Hatice Nur Arslan, Legal Intern, at narslan@gentemizerozer.com.

  • All Turkish Data Protection Law

September 15, 2023

August ’23

August 13, 2023

July ’23

July 13, 2023

June ’23

June 13, 2023

May ’23

May 10, 2023

April ’23

April 12, 2023

March ’23

March 8, 2023

January & February ’23

January 8, 2023

December ’22

December 13, 2022

November ’22

November 12, 2022

October ’22

October 12, 2022

September ’22

September 8, 2022

August ’22

August 5, 2022

July ’22

July 5, 2022

June ’22

June 5, 2022

May ’22

May 5, 2022

April ’22

April 5, 2022

March ’22

March 3, 2022

February ’22

February 3, 2022

January ’22

January 3, 2022

December ’21

December 3, 2021

November ’21

November 3, 2021

October ’21

October 3, 2021

September ’21

September 3, 2021

August ’21

August 2, 2021

July 21′

July 3, 2021

June ’21

June 13, 2021

May ’21

May 3, 2021

April ’21

April 3, 2021

March ’21

March 2, 2021

February ’21

February 2, 2021

January ’21

Found this interesting? Subscribe to our monthly Turkish Data Protection Law newsletter to get the latest news delivered to your inbox.

For detailed information on how we processes your personal data, please see the Clarification Text here.

© 2022 2minrecap.com | All rights reserved.

developed by mare.design