ASEXECUTIVE Consulting
Success is not final,
Failure is not fatal:
The key is the courage to keep going.
Winston Churchill
about us
Comprehensive Innovation - Process - Strategy - People
From strategy to execution.. ASEXECUTIVE is now a recognized Small Business, thanks to its ability to appeal to a broad audience of executives and leaders. With the establishment of ASE YÖNETİM DANIŞMANLIK in 2022, by taking the first step towards the target, its aim is to grow your company, to develop it with a comprehensive transformation, to make it competitive, and to provide you with end-to-end service in determining your strategy and implementing them. In addition, our business partners and stakeholders have had the privilege of providing managerial coaching, career coaching, and expertise in business management.
Don't Take Risk, Process and Store Your Data Safely
European Union General Data Protection Regulation
«General Data Protection Regulation»
GDPR
GDPR is the most important change in data security in the last 20 years.
The implementation date of the law, which was approved on 14 June 2016, is 25 May 2018.
Regarding compliance with GDPR, it imposes extremely heavy penalties on organizations that do not comply with the law.
KVKK - GDPR Comparison
There are many differences, big or small, between KVKK and GDPR. One of the most important differences relates to liability for violations. It also imposes a responsibility on the data controller, the data controller and the data processor, which is also classified as a data processor, on the legal entity whose counterpart is the data controller within the scope of the KVKK, which is called the data controller in GDPR.
As a result of any violation, the person who suffers material or moral damage is held responsible for this damage, and the data controller has the right to receive compensation in data works. Data controllers can also be applied to data jobs. The data controller is the person who obtains the data from the data subject for the first time. The data processor is the company with which the data controller shares personal data when necessary to carry out its activities.
For example;when a company that sells goods is itself a data controllerIf the company works with an external financial advisor while doing internal works related to its own business, the subject naming related to the situation in that relationship with financial advisory can be classified as financial affairs. There is not much information within the scope of KVKK because the law is new. There is no clear line about what is explained and how much.
It is not clear who is the data controller and who is not. In GDPR, everyone is responsible.We try to mold companies into some patterns because if data can be classified and named as a processor, some obligations may be waived. In GDPR this is not possible.
Only the person responsible for the administrative fines stipulated in the KVKK is the data controller. The data controller can then make a recourse to the data affairs under the general courts. “This happened because of you.”, “You are responsible for this violation and damage.” It can be said, but an uncertain process emerges.
What is responsible in the first place is more important.Since there is no process like GDPR, molding can be entered in the KVKK part. In agreements made between companies, when specified as a data processor, the other party becomes a data processor. The naming between us doesn't have much value either. What matters is the decision of the Personal Data Protection Authority.
The institution decides as a result of the naming of the personal data activity.It doesn't matter what the company and KVKK consultants say on this matter, but they still try to make names among themselves. In GDPR, whether you are a data controller or a data processor, you have a responsibility, in case of a possible mishap, you may be sued for compensation.
The situation of filing a compensation lawsuit in KVKK is not clear.Of course, lawsuits can be filed, but as with GDPR, it is not very clear whether the injured person is entitled to compensation.
In KVKK, there is a lawsuit for compensation, but there are more penalties and the enforcement of these penalties is mostly in the form of administrative fines.
In the future, it will become more common for a natural person with personal data to also sue for compensation.KVKK processes may also change when our citizens have more information about personal data and become familiar with the subject.
ASE Executive Consulting
Kocaeli Ofis
Kemalpaşa Mah. Gümrükçüler Cd.
Fazlıoğlu İş Hanı Kat:6 No:83
Konak Mah. 1. Badem Sk.
No: 26B Nilüfer / Bursa
0224 334 05 52