HAVE YOU DONE YOUR KVKK (Personal Data Protection Law) RISK ANALYSIS ?

With the Personal Data Protection Law No.6698 (KVKK), it is aimed to protect the fundamental rights and freedoms of individuals, especially the privacy of private life, and to regulate the obligations of the persons who process these data in the processing of personal data. As of 07.10.2016, which is the effective date, this law brings along many responsibilities for all organizations that process personal data

KVKK RISK ANALYSIS

You can determine how you are in the face of your Obligations regarding the KVKK Law that you are obliged to apply in your institution with the test below. Answer each question in the test correctly for your company. At the end of the test, your ‘risk rate’ will be determined.

    1. THIRD EYE AUDIT AND REPORTING SERVICE

    Inspection Within the Frame of Law No. 6331Inspection Under the Labor Law No. 4857Inspection within the Scope of SSI Law No. 5510Inspection Under the Environmental Law No. 2872Integrated Management Systems External Audit

    2. OCCUPATIONAL HEALTH AND SAFETY ENGINEERING AND MEDICAL SERVICES

    Management Plan Preparation ServiceRisk Analysis Evaluation and Reporting ServiceExplosion Protection Document Preparation ServiceOSGB ServiceOccupational Safety Specialist EmploymentOccupational Physician Employment ServiceOther Health Personnel Employment ServiceRecruitment Health ReportHealth TestsMobile Health ServiceAmbulance Service

    3. OCCUPATIONAL HEALTH AND SAFETY TRAINING SERVICES

    Occupational Safety Board Practice TrainingOccupational Safety Basic Training ServiceFire trainingFire Detection and Warning System TrainingFire Risk Analysis and TrainingTraining for the First to See the FireSpecial Fire TrainingEmergency and Action Training (Earthquake, Sabotage and Flood Disaster” “First aid trainingHygiene educationOccupational Health and Safety Law No. 6331 TrainingOccupational Health and Safety Inspection Practices in Working LifeImplementation of Minutes, Reports and Results of Occupational Safety Inspectors, Penal Sanctions to EmployersFirst Legal Actions and Procedures in Work AccidentsVocational Qualification Training and Certification ServiceTolbax TutorialsCoronavirus Outbreak and Hygiene Training for Accommodation Facility Personnel

    4. ENVIRONMENTAL ENGINEERING CONSULTING SERVICES

    Environmental Consulting ServiceEnvironmental Impact Assessment ReportEnvironmental Officer AssignmentPreparing Waste Management PlanPreparation of Waste Declaration Forms

    5. LABOR AND SOCIAL SECURITY LAW CONSULTING SERVICES

    Labor and Social Security Law ConsultancyBusiness Law TrainingsSGK Legislation Implementation TrainingsSocial Security Law Information TrainingSgk Legislation Sanctions TrainingMonthly Premium and Service Certificate Application TrainingWorkplace Registration, Business Codes and Work Accidents Information TrainingFollowing the Legal Process of Worker LawsuitsMediation Services on Behalf of the WorkerExamination of Worker's Complaints in Terms of Rights and CalculationSSI Incentive InquiryBusiness Law Risk Analysis

    6. WORKING AT HEIGHT ADVANCED CERTIFICATION TRAINING

    Working at Height TrainingGWO TutorialsIRATA-SPRAT TrainingsRope Access ServiceNDT (Non-Destructive Testing Service)PPE (Personal Protective Equipment Service)High Building Exterior CleaningAVM Interior / Exterior Surface DecorationWind Turbines Corrosion and Repair WorksSetting the Safety NetScaffolding Installation, Maintenance and Dismantling

    7. MACHINERY, EQUIPMENT AND EQUIPMENT PERIODIC CONTROL SERVICES

    Machine Equipment Periodic Test-ControlLifting Tools Tests and ControlsPressure Vessels Periodic Tests and ControlsGrounding Tests and MeasurementsElectrical Installation Periodic Controls”

    8. MEASUREMENT AND LABORATORY SERVICES

    Personal Exposure Ambient MeasurementLighting Measurement ServiceThermal Comfort Measurement ServiceNoise MeasurementsDust MeasurementsIndoor Gas-Vapor (VOC) MeasurementsInstant Gas MeasurementsNoise MappingEmission (Flue Gas) MeasurementImission (Air Quality) MeasurementEnvironmental Noise Measurement

    9. MANAGEMENT SYSTEMS SERVICES

    ISO 45001 Occupational Health and Safety Management SystemISO 9001 Quality Management SystemISO 14001 Environmental Management SystemInternal Auditor Training ISO 45001-ISO 14001-ISO 9001Practice Training ISO 45001-ISO 14001-ISO 9001

    10. OCCUPATIONAL HEALTH AND SAFETY SOFTWARE and KVKK (PDP) CONSULTING SERVICES

    IBYS Integration Software (Our software, which was prepared as an Audit Portal under the name of ISG6331, is Accredited by the Ministry of Family and Labor and Social Security)Distance Education SystemEbis (Electronic Information System)KVKK (PDP) Consultancy

    11. OTHER CONSULTING SERVICES

    Mining ConsultingCarbon ConsultingEnergy Efficiency ConsultingCollective Bargaining Agreement Execution ConsultancyPrivate Employment and Brokerage ServicesOverseas Personnel Work Permit ProceduresKVKK (PDP) Consultancy

    If any, the note you want to forward

    HOW YOU CAN KEEP YOUR DATA SAFE FOR KVKK COMPATIBILITY ?

    • DATA CONTROL

      You have to know how all the data your company has is used. You need to view where sensitive data has been moved, who is using it and for what purpose

    • DATA USAGE RULES

      You should establish precise rules about who can work with personal data and in what way. These rules should not be kept in words, they should be implemented effectively

    • TRAINING OF EMPLOYEES

      Every employee should know what data should be used and in what way. You can set data usage limits by informing employees about your security policy

    • ENCRYPTION

      All data containing personal information must be encrypted. You must spread the use of encryption throughout your company, including endpoints.

    • DATA LEAK PREVENTION (DLP)

      Data leakage prevention must be implemented effectively and cover all communication channels. Removable devices such as e-mail, printers, USB, DVD and other communication channels should be checked to ensure that only certain data can go outside the company.

    WHAT WILL CHANGE WITH KVKK ?

      • Many heavy sanctions; Administrative fines and prison sentences ranging from 5,000 to 1,000,000 TL.
      • All organizations that process personal data are affected by this regulation, without any discrimination.
      • The necessity to take necessary technical and administrative measures to ensure data security.
      • The data cannot be processed without the express consent of the persons in line with their intended use
      • Obligation to determine a “Data Supervisor” for organizations that process data systematically.
      • Businesses have to inform the KVK Authority within 15 days at the latest in case of requesting information about data usage.