The Data Protection Board published their guidelines on the measures to be taken for the protection of personal private data.
The purpose of the Law on Protection of Personal Data is to protect the fundamental rights and freedoms of persons, privacy of personal life in particular, while personal data are processed, and to set forth obligations of natural and legal persons who process personal data and procedures and principles to comply with for the same.
In this respect, the Board enacted new guidelines that clarify rules for the application of the Law, from confidentiality requirements to setting out separate procedures for data protection, to standards for data stored in electronic or physical environments.
With respect to crimes relating to personal data, provisions of articles 135 to 140 of Turkish Criminal Code shall apply. The multi layered sanctions entail harsher measure, including those applicable to those who do not delete or anonymize personal data in violation of the Law who shall be punished in accordance with article 138 of the Turkish Criminal Code.