Data Protection


EU’s GDPR has been put into force as of 25th May 2018. GDPR applies to businesses located in the EU as well as any business outside of the EU that does any of the following:


• Offers goods and services to people in the EU,

• Monitors the behavior of people in the EU, or

• Processes and holds personal data of people in the EU for the purposes above.

It doesn’t matter where your company locates.

After having come into force on May 25, 2018, GDPR brought serious increases in administrative fines for companies. These penalties could be up to 4% of global annual income or up to EUR 20,000,000.

The Turkish Law on the Protection of Personal Data (KVKK) which has been transposed from EU’s 95/46/EC Directive. KVKK brought many obligations which include administrative fines to data controllers and data processors. In addition, the Turkish Criminal Code foresees imprisonment in that area. Therefore, data protection has become a more important area in Turkey.

JURCOM provides its clients with regulatory compliance projects, audit and risk assessment services, DPO and Representative services under GDPR as well as data discovery, data inventory management, data subject access request management and other management services through its in-house developed software concerning data protection in compliance with international standards across EU and Turkey.