Privacy and Data Protection

Despite the increasing complexness and instability due to digital transformation, we continue to strengthen our security systems in order to ensure information security and to keep our defense against cyber attacks at the highest level. We audit compliance with the ISO 27001 Information Security Management System, in which we have completed the certification process in the past years to ensure more effective management of information security across the bank in line with international standards.

We enlighten our customers in accordance with the Personal Data Protection Law, offer open consent options, and ensure the creation of personal data inventory. In addition, we periodically inform our customers via text messages and e-mails regarding data security, methods of protection from fraud and protection of customer data.

In order to develop our technological infrastructure and create an effective and efficient security culture; we conduct regular vulnerability screening tests within the scope of the behavior-based attack prevention system (APT) and end-user zero-day malware detection systems in the cyber security infrastructure that we have put into use in the previous years, and regular risk analyzes within the scope of Information Technology Risk Analysis.