Turkey: KVKK announces YOYO Bilgi Teknolojileri ve Turizm Ticaret data breach
On August 10, 2023, the Personal Data Protection Authority (KVKK) announced a data breach that occurred at YOYO Bilgi Teknolojileri ve Turizm Ticaret AŞ. In particular, the KVKK highlighted that YOYO, notified them of a data breach, in accordance with Article 12(5) of the Law on Protection of Personal Data No. 6698. Moreover, the KVKK noted that according to the breach notification, the breach occurred as a result of a cyberattack on the servers of Vodatech Information Technology Project Consultancy Industry and Foreign Trade Inc., where the data storage devices became inaccessible due to encryption. Specifically, the breach occurred on August 3, 2023, and was detected on the same day.
Further, the breach affected the personal data of customers of YOYO, including names and surnames, affecting a total of 5,464 individuals.
You can read the press release, only available in Turkish, here.