Personal data protection in turkey: Technical and managerial controls

Abstract

In the European Union and some other countries legal directives are in progress which consist of regulations about personal data protection, processing such personal data resulting with any expression of opinion about the individual. Also in Turkey a draft Personal Data Protection Act which was prepared in 2003 and waiting to be approved includes new practices for individuals, public bodies and corporates. During the identification of these practices and compliance gaps, how much the bodies are ready for this act, how will the requirements of this act be supplied by the bodies, and the differences between sectoral practices must be investigated for Turkey. This paper consists of the new applications which individuals, public bodies and corporates will face as a result of the draft act, the compliance with the current international standards from a general perspective, ways in which the system security countermeasures may ensure the act's requirements. © 2008 Atilla Elçi