The Directive (EU) 2022/2555 on measures for a common level of cybersecurity across the Union (the “NIS2 Directive“) was published in December 2022 and entered into force on 16 January 2023. It repealed the previous Directive (EU) 2016/1148 on measures for a high common level of security of network and information systems across the Union, […]
Artificial Intelligence-Based Services and Security of Company Data
While we talk about the many benefits of AI technology, we should not ignore the data protection and privacy concerns raised by services that use this technology. After all, artificial intelligence is a technology that feeds on the data provided by users and constantly trains itself. Chatbots, which are very popular nowadays, use the content […]
New Adequacy Decision for EU-US Data Privacy Framework
The European Commission has adopted an adequacy decision for the European Union – United States (EU-US Data Privacy Framework (DPF). Within the framework of this adequacy decision; starting from July 10, 2023, personal data will be freely and securely transferred between the European Union and participating United States companies. Background of the decision Since 2021, […]
Best Practices For Clickwrap Agreements
Clickwrap agreements are online agreements where users agree to the terms by clicking a button. Clicking a button expressing consent is deemed to be acceptance of the terms of the agreement. The most common examples of clickwrap agreements are website terms of use of websites and end-user licences for Services as a Software (SAAS) and […]
Tips on Software as a Service (SAAS) Contracts
Software as a service (SAAS) contracts are different than regular ordinary service agreements or license agreements. To put it simply, software license agreements allow the buyers to copy the software on their devices whereas SAAS contracts allow the users to access the software via a web browser and benefit from it as a service during […]
Amazon Turkey Decision and its implications on data transfers to third countries
The Turkish Personal Data Protection Board (“Board”) adopted a decision regarding Amazon Turkey at the beginning of this year, on the 27th of February (“Amazon Turkey Decision”). Amazon Turkey Decision has touched upon several issues regarding Turkish Data Protection Law but this article focuses only on the sections regarding transfer of personal data to third countries. […]
