2024 KVKK & GDPR January Newsletter Headings

2024 KVKK & GDPR January Newsletter Decision Summaries of The Month and News

You can read our KVKK & GDPR Newsletter to access the decisions, released data breach notifications made by the Turkish Personal Data Protection Authority (KVKK) about natural and legal persons, and decisions, announcements issued by the European Data Protection Board (EDPB) and all the other countries in the past month and have further information about the news relating to personal data protection from Türkiye and the world.

  • Dirk Rossmann Mağazacılık Ltd.Şti. Data Breach Notification
  • French Data Protection Authority Has Decided to Impose Administrative Fines on Amazon France Logistique
  • Luxembourg Data Protection Authority Has Decided to Impose Administrative Fine on a Company Providing Electronic Communication Services
  • Belgian Data Protection Authority Has Decided to Impose Administrative Fine on Black Tiger Belgium
  • Hungarian Data Protection Authority Has Decided to Impose Administrative Fines on an Airline Company
  • Belgian DPA Stated that a Baptized Person Has the Right to be Deleted from the Baptismal Register
  • Spanish Data Protection Authority Has Decided to Impose Administrative Fine on Eurocollege Oxford English Institute SL
  • Summary of the Decision of the Personal Data Protection Board Dated 24/08/2023 and Numbered 2023/1465 on Displaying Personal Data Belonging to a Third-Party During User Login on the Website of the Data Controller
  • Summary of the Decision of the Personal Data Protection Board Dated 24/08/2023 And Numbered 2023/1461 on Video and Audio Recording by an Educational Institution Through a Camera
  • Summary of the Decision of the Personal Data Protection Board Dated 17/08/2023 and Numbered 2023/1430 On Processing of Turkish ID Number in the Mobile Application of the Data Controller Providing Meal Card Service
  • Summary of the Decision of the Personal Data Protection Board Dated 31/08/2023 and Numbered 2023/1509 on Transfer of Personal Data of the Data Subject to Kredi Kayıt Bürosu A.Ş. by a Bank
  • Summary of the Decision of the Personal Data Protection Board Dated 17/08/2023 and Numbered 2023/1414 on Transfer of Sensitive Personal Data of the Data Subject by the Lawyer to the Court
  • Summary of the Decision of the Personal Data Protection Board Dated 03/08/2023 and Numbered 2023/1321 on Continued Processing of the E-mail Data of the Data Subject by the Data Controller Company of Which the data Subject was Previously a Partner
  • Summary of the Decision of the Personal Data Protection Board Dated 03/08/2023 and Numbered 2023/1310 on Processing of Personal Data by Processing Facial Data While Setting a Digital Password in The Bank Mobile Application
  • Summary of the Decision of the Personal Data Protection Board Dated 03/08/2023 and Numbered 2023/1309 on Unlawful Sharing of Personal Data of the Data Subject with Third Parties by an Airline Company
  • Protection Board Dated 07/09/2023 and Numbered 2023/1563 on Publication of the Name-Surname and Share Information on the Public Disclosure Platform Website Upon the Application Made by the Data Subject to Merkezi Kayıt Kuruluşu A.Ş. for the Conversion of The Shares in The Partnership Into Shares Traded On The Stock Exchange
  • Summary of the Decision of the Personal Data Protection Board Dated 20/07/2023 And Numbered 2023/1234 on Processing of Personal Data by Requesting a Findeks Report from the Data Subject by a Car Rental Company
  • Summary of the Decision of the Personal Data Protection Board Dated 14/09/2023 and Numbered 2023/1578 on Transferring the Sensitive Personal Data of The Data Subject in the Patient File to the Court
  • Summary of the Decision of the Personal Data Protection Board Dated 06/07/2023 and Numbered 2023/1130 On Sharing the Report and Medication Records of the Data Subject with the Ex-Spouse by the Pharmacy
  • Summary of the Decision of the Personal Data Protection Board Dated 15/06/2023 and Numbered 2023/1050 on Failure of the Data Controller Bank to Fulfill the Request to Provide the Voice Recording Transcript of the Conversation Between the Customer Representative and the Data Subject to the Data Subject Himself/Herself
  • Summary of the Decision of the Personal Data Protection Board Dated 15/06/2023 and Numbered 2023/1041 Regarding the Failure of the Data Controller to Duly Fulfill Its Obligation to Inform on Its Website and to Condition the Service It Provides on Explicit Consent
  • Summary of the Decision of the Personal Data Protection Board Dated 01/06/2023 and Numbered 2023/938 on Sending Daily E-Mails by a University to the E-Mail Address of a Student
  • Summary of the Decision of the Personal Data Protection Board Dated 01/06/2023 and Numbered 2023/932 on Processing of the Phone Number That the Data Subject Has Not Notified to the Bank as a Contact Number by Informing About Loan Transactions
  • Summary of the Decision of the Personal Data Protection Board Dated 28/09/2023 and Numbered 2023/1645 on Unlawful Processing of Personal Data by the Data Controller Who Is the Distributor and Sole Authorized Person in Türkiye of a Widely Participated Online Game
  • Summary of the Decision of the Personal Data Protection Board Dated 01/06/2023 and Numbered 2023/928 on Sharing the Document Containing the Personal and Sensitive Personal Data of the Data Subjects by a University with Third Parties in an E-Mail Attachment
  • Summary of the Decision of the Personal Data Protection Board Dated 01/06/2023 and Numbered 2023/924 on Unlawful Processing of Personal Data of the Person Concerned by the Parking Operator Data Controller and Failure to Fulfill the Obligation to Inform
  • Decision of the Personal Data Protection Board Dated 28/09/2023 and Numbered 2023/1653 on Processing of Personal Data for the Purpose of Sending SMS for Advertising Purposes to the Relevant Persons in the Store Belonging to the Data Controller
  • Summary of the Decision of the Personal Data Protection Board Dated 25/05/2023 and Numbered 2023/892 on the Complaint Regarding the Unlawful Processing of the Personal Data of the Data Subject Despite Leaving the Cooperative Partnership
  • Summary of the Personal Data Protection Board's Decision Dated 25/05/2023 and Numbered 2023/890 on Conditioning an Airline's Special Passenger Program Service on Explicit Consent
  • Summary of the Decision of the Personal Data Protection Board Dated 18/05/2023 and Numbered 2023/845 on Unlawful Processing of Personal Data by Sending a Text Message to the Phone of the Data Subject After the Delivery of Cargo by a Cargo Company Employee
  • Summary of the Decision of the Personal Data Protection Board Dated 11/05/2023 and Numbered 2023/767 on Processing of Sensitive Personal Data Containing Health Data of Married Couple by Publishing in the Newspaper
  • Summary of the Decision of the Personal Data Protection Board Dated 27/04/2023 and Numbered 2023/646 on Sharing the Personal Information of Employees Within a University with All Personnel
  • Summary Of the Decision of the Personal Data Protection Board Dated 11/04/2023 and Numbered 2023/570 on Requesting More Personal Data Than Necessary in Order to Increase the Level of the Membership of the Data Subject in the Crypto Asset Service Provider
  • Summary of the Decision of the Personal Data Protection Board Dated 11/04/2023 and Numbered 2023/567 on the Requirement to Record Credit/Debit Card Information in Order to Shop from an E-Commerce Site
  • Decision of the Personal Data Protection Board Dated 11/05/2023 and Numbered 2023/787 on the Notification That it is Unlawful for a Hospital to Obtain Explicit Consent from Patients Regarding the Processing of Personal Data, Including Health Data, Within the Scope of Advertising and Promotional Activities
  • Summary of the Decision of the Personal Data Protection Board Dated 02/05/2023 and Numbered 2023/692 on the Condition of Explicit Consent for the Health Service Provided by a Private Health Institution