Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

Turkey: KVKK announces Pınar Tekstil data breach

On May 9, 2024, the Personal Data Protection Authority (KVKK) disclosed a data breach involving Pınar Tekstil Tuhafiye İnşaat ve Pazarlama Ltd. Şti. The KVKK highlighted that Pınar Tekstil notified them of the breach, as required by Article 12(5) of the Law on Protection of Personal Data No. 6698.

According to Pınar Tekstil's report, the breach occurred between April 23, 2024, and April 25, 2024, with detection on April 24, 2024. It resulted from unauthorized access to the data controller's system by a cyberattacker who obtained the user credentials of an admin account.

Furthermore, the breach impacted personal data categories including identity (name and surname), contact details (mobile phone number and email address), and customer transaction records (shopping history of both individuals and legal entities). The breach affected 36,956 individuals, primarily customers of Pınar Tekstil.

You can read the press release, only available in Turkish, here.