Abstract

The rapid increase in digitalization and the widespread sharing of data has made the protection of personal data an important issue. This study aims to analyse the current practices regarding the protection of personal data in Türkiye in a comparative manner with the regulations adopted at international and European level. The study evaluates the effectiveness of the Law KVKK in Türkiye and offers suggestions on how this law can be aligned with international standards such as the EU's General Data Protection Regulation (GDPR). Based on important regulations such as the GDPR and the OECD's Data Protection Principles, the study aims to analyse the legal and policy instruments in Türkiye in depth. The similarities and differences between the GDPR and the LPPD are emphasized, especially on issues such as data transfer abroad, data processing processes and protection of sensitive data. The study analyses the process of aligning Türkiye's personal data protection regulations with EU standards and develops forward looking policy recommendations in terms of data security in the digital age.