Protection of Personal Data

Recent technological developments that are accelerating every day exposed “personal data” to brand new dangers as these data means any and all data related to an identifiable or identified real person. This has reminded the necessity to raise awareness about certain concepts such as personal data protection, confidentiality and right to be forgotten.
After the Law on the Protection of Personal Data (LPPD) which was inspired by EU 95/46/EC Directive (EC) (the “Directive”) came in force in Turkey on 7 April 2016, data protection concept has gained popularity in Turkey.
The PDPL is the first code to introduced regulations in Turkey for the protection of personal data specifically. Bozoğlu-İzgi’s personal data protection team, which is frequently referred to as LPPD Attorneys, monitors the legislations in both Turkey and Europe and offers services in personal data protection focused and single-handedly; provides legal support in the matters below to guide the clients in their efforts to ensure that they will process, retain and store personal data lawfully and reliably in line with the LPPD and the secondary legislation derived from it and shall take necessary measures to protect personal data.

✓ To provide training courses in order for the client company employees to gain a common point of view about the data protection concept.
✓ To identify personal data flow channels and to make suggestions about the measures that should be taken pursuant to the LPPD.
✓ To determine processed personal data types, identify purpose of processing and retention times and to make recommendations about the necessary changes or arrangements pursuant to the LPPD in respect to the matters in question.
✓ To draft express consent forms for use in in-house operations where it is necessary and to prepare disclosure texts for use in every single area where personal data theme occurs.
✓ To draft personal data retention and destruction policy and to work out data inventories pursuant to meetings held with the relevant business units within the client organization.
✓ Ensuring clients that are obliged to registry to be registered with the Data Controllers Registration Information System (“VERBIS”).
✓ To maintain consultancy support to the clients to ensure a sustainable compliance with the LPPD and secondary legislation.

Bozoğlu İzgi has vast experience when it comes to Data Protection Compliance Projects. The majority of such experience comes from compliance projects undertaken for multinational pharmaceutical companies, cosmetic companies and insurance companies to which data protection is highly important.
With accomplished projects and a considerable pool of knowledge in terms of data transfer to abroad, security of digital data and reference data architectures in compliance with both European and Turkish legislation for IT systems, Bozoğlu İzgi represents and supports its clients in all processes, including full compliance with the personal data protection legislation, sustainable compliance and finding solutions in case of a potential claim or dispute as soon as possible.