Turkey: KVKK announces Dagi Giyim Sanayi ve Ticaret data breach
On August 17, 2023, the Personal Data Protection Authority (KVKK) announced a data breach that occurred within Dagi Giyim Sanayi ve Ticaret AŞ. In particular, the KVKK highlighted that Dagi Giyim Sanayi ve Ticaret, notified them of a data breach, in accordance with Article 12(5) of the Law on Protection of Personal Data No. 6698. Moreover, the KVKK noted that according to the breach notification, the breach occurred as a result of a cyberattack on the servers of Vodatech Information Technology Project Consultancy Industry and Foreign Trade Inc., where the data storage devices were made inaccessible with the use of encryption. Particularly, the breach occurred on July 25, 2023, and was detected on July 31, 2023.
Furthermore, the KVKK highlighted that the contact group affected by the breach are customers. In addition, the KVKK noted that the breach affected the Turkish Republic identification numbers, communication details, customer transaction information, and visual and audio recordings of 6,936 individuals.
You can read the press release, only available in Turkish, here.