Select Page

Author: Norton Rose Fulbright LLP

Data Protection Regime in Turkey Takes Shape

Turkey continues to develop a legal framework on data protection. On October 28, 2017, the Turkish Data Protection Authority (the “Authority”) published an important regulation supplementing the Law on Protection of Personal Data (the “Data Protection Law”), namely the Regulation on the Deletion, Destruction and Anonymization of Personal Data (the “Regulation”). The Regulation was then followed by a set of guidelines detailing the process and methods of deletion, destruction and anonymization of personal data (the “Guidelines”). On November 16, 2017, the authority published another regulation setting out the rules applicable to its operation and working procedures. Establishment of the...

Read More

Data privacy in Turkey

This article was written by Ekin Inal and Cansu Kahya, lawyers of Bilgiç Attorney Partnership, a partnership registered with the Istanbul Bar Association, with which Norton Rose Fulbright has a professional association. Turkey continues to further develop its data protection regime. Recent developments include publication of a regulation and a guideline focusing on deletion, destruction and anonymization of personal data. These new pieces of legislation provide guidance on the methods to be used to remove personal data, which was previously processed and is no longer needed. Data controllers are now required to maintain an inventory of processed data and...

Read More

Vicarious liability in UK data breach-related litigation – is Morrisons a game-changer?

The High Court in London has handed down a judgment establishing that, as a matter of English law, a company can be held vicariously liable in respect of data breaches caused by its employees. This means that a company can be held liable to compensate affected data subjects for loss – including non-pecuniary loss such as upset and distress – caused by a data breach, even when the breach was caused by an employee with no wrongdoing having been committed on the part of the company. The judgment will be welcomed by activist data subject groups seeking greater means of redress...

Read More