Esin Attorney Partnership

Can Sözer is a partner of IT/C practice group
and head of Healthcare industry group at Esin Attorney Partnership. His main
areas of practice are data privacy, healthcare law, IT/C law, consumer
protection law, commercial law, contracts law, marketing law, regulatory,
environmental law, media &amp; entertainment law and product liability law. Can Sözer represents local and foreign
companies regarding day-to-day commercial matters as well as administrative
regulations of different sectors. He is also an active member of AmCham Healthcare
and Life Sciences Committee and Digital Economy Committee since 2016. Practice Areas &amp; Work Department





Information Technology &amp; Communications

International Commercial &amp; Trade

Healthcare 

Languages

Turkish 

English 

German 



Memberships

Admitted to Istanbul Bar, 2012.

Partner

Ünsal Law Firm is unique with its multiple jurisdiction bar
admissions in New York, England, Wales, and Turkey. Ünsal focuses on particular
fields of law and truly understands your business and priorities.Ünsal Law comes with its innovative, positive and
solution-oriented approach and skillfully navigates investors and entrepreneurs
through complex legal, commercial, corporate and regulatory procedures. Ünsal
Law provides services to leading international and local private and listed
companies, investors, entrepreneurs and government institutions.Ünsal Law is committed to providing high-quality services to
its clients in the areas of information technologies law, fintech, crypto &amp;
blockchain law, media &amp; entertainment law, data protection law, IP law,
mergers &amp; acquisitions and corporate law, healthcare &amp; life sciences
law.

Unsal Law

Mert Yaşar is the Partner of Unsal Law
Firm, particularly focusing his practice on data management, privacy, technology,
media and telecommunications law. Mert graduated from Istanbul University
Faculty of Law in 2015 and is admitted to practice law in Istanbul. Mert has
been focusing his practice on data management and protection, fintech,
e-commerce, intellectual property, corporate, technology, digital assets and
blockchain law.Mert Yaşar is recognized as one of the very
few Fellows of Information Privacy (FIP) in Turkey by IAPP. Mert is also an
accredited Certified Information Privacy Manager – CIPM and Certified
Information Privacy Professional for the EU – CIPP/E. Mert managed plenty of
data protection compliance projects under the relevant data protection
legislation (including the Turkish Personal Data Protection Law, the GDPR and the
CCPA) and continues to provide consultancy regarding any data privacy and
security matters to clients in various industries (e.g., health, pharmaceutical
and medical device as well as alcoholic beverages, aviation, telecommunication,
transportation industries etc.) and acts as a data protection officer.Mert also provides legal consultancy to
fintech companies as well as crypto asset issuers and crypto exchange service
providers regarding their crypto-assets transactions. Mert has received the
Mondaq Thought Leader Award in the field of Fintech, which attests to the fact that
Ünsal is a global pioneer in Fintech Law. Practice Areas &amp; Work Department

Data Management, Data Protection and Privacy

Information Technologies

Fintech 

Crypto Asset and Blockchain

Intellectual Property

E-Commerce

Corporate Governance

&nbsp; 

Languages

English 

German

Turkish

&nbsp; 

Memberships

Istanbul Bar

Fellow of Information Privacy, IAPP

CIPP/E, IAPP

CIPM, IAPP

Gökçe is an independent law firm with
 full-service capacity based in Istanbul. Gökçe offers a broad range of legal
 services with a pragmatic and business-minded approach to meet the needs of its
 diverse client base, ranging from the most reputable international banks to
 rapidly expanding international companies. Since its establishment in 2010,
 Gökçe has been experiencing constant progress. Established mostly with the aim
 to specialize in technology law, Gökçe has garnered a solid reputation for its
 expertise in technology and media. Moreover, Gökçe has become a go-to law firm
 for high-profile commercial disputes. Gökçe is the Turkish representative of
 Interlaw, a highly ranked international law firm network. Gökçe is also a member of Lawyers
 Associated Worldwide, a global resource of locally respected law firms. As the last groundbreaking progress,
 Gökçe team published the first E-Sports Law book in Turkey. Gökçe has bolstered its IP, media and
 entertainment practice in 2021.

















&nbsp; 

Main Areas of Practice

 

Technology, Media, Communication &amp;
 Privacy

Gökçe’s TMC &amp; Privacy team’s
 reputation is built on delivering commercial and practical legal advice to
 clients active in the digital sphere in various industries, ranging from
 multinational Global 2000 enterprises to venture capitals and start-ups. With a
 highly qualified team, Gökçe’s scope of services covers broad range of matters
 including matters of IT law, internet law, cybersecurity law,
 telecommunications law, intellectual property law, consumer law, e-commerce and
 data protection. Team members frequently provide mentoring to
 emerging growth companies at leading start-up incubators and accelerators
 including İTÜ Çekirdek and Endeavor Turkey. Clients such as Hilton, N11, Nimo.tv
 (HUYA), All Stars Music, Eternal Fire, Onedio, Inofab, Evreka, Figopara are all
 widely recognized game changers in their respective industries; and Gram Games
 (a Zynga company), Masomo, Miniclip, and Codeway Games, all prominent actors in
 the e-gaming industry. The TMC &amp; Privacy team is led by Turkish IT and
 Privacy Law “star” Dr. Bedii Kaya, along with his deep expertise in data
 analysis, data protection, cybersecurity, and internet law.&nbsp;In 2021, Gökçe strengthened its Media, Entertainment
 and IP practice with representing and providing legal consultancy to its
 international and domestic clients for their IP related projects including
 cross border licensing, IP portfolio management, linear channels and VOD
 platforms, NFT projects, IP/IT related dispute resolutions, due diligence
 processes, merger &amp; acquisitions in media &amp; entertainment sectors, data
 protection requirements in Turkey, local compliances and so on. Corporate, M&amp;A &amp; Venture Capital 
 Corporate, M&amp;A and Venture Capital
 team focuses on large to middle-market cross border and domestic corporate
 transactions in various industries. Gökçe advises on a range of corporate
 issues including mergers and acquisitions, joint ventures, venture capital
 transactions, corporate restructurings, spin-offs and corporate governance.
 Clients include Farasis Energy (Ganzhou), Figopara, Gedik Yatırım, hiVC,
 WorleyParsons, and Çelebi Holding. Team members are also highly adept in growth
 investment transactions and represent founder-led technology companies, from
 early stage all the way up to growth phase and exit.



Gökçe
 advised:

<ul style="list-style-type: square;"><li style="margin-left: 20px;">FIT Solutions (Foriba) founders on the sale of their shares to Sovos, a
 leading global tax compliance and regulatory reporting software company </li><li style="margin-left: 20px;"> Gram Games, a leading Turkish mobile game company on the acquisition by Zynga
 Inc 
 </li><li style="margin-left: 20px;">Four Mobile (Masomo) in the acquisition by Tencent owned mobile games
 developer Miniclip 
 </li><li style="margin-left: 20px;">Gameguru on the sale of one of its most downloaded hyper casual games
 (namely, Slap Kings) to Lion Studios 
 </li><li style="margin-left: 20px;">HI Venture Capital a licensed venture capital investment company in its
 establishment 
 </li><li style="margin-left: 20px;">Various emerging growth companies on financings by private equity giants and
 growth/venture capital investors such as EBRD, IFC, Revo Capital, Endeavor, 500
 Startups and Growth Circuit 
 </li><li style="margin-left: 20px;">Evreka, an outstanding waste collection solutions SaaS company 
 </li><li style="margin-left: 20px;">Neo Auvra, a pioneering medical health company 
 </li><li style="margin-left: 20px;">Figopara, a major fintech company acting as intermediary for trade finance
 transactions 
 </li><li style="margin-left: 20px;">Inofab, an innovative medical device company 
 </li><li style="margin-left: 20px;">Onedio, a prominent Turkish online content provider</li></ul>

 Banking &amp; Finance &amp; Capital Markets 
 Gökçe has extensive experience in
 banking &amp; finance and capital markets transactions, particularly in project
 financings.

On
 the banking side, Gökçe provides international and local banks with legal
 advice on daily operational issues, multilateral and bilateral institutional
 support, equity fund investment and credit enhancement. On the finance side,
 Gökçe acts for both Turkish and foreign banks in a large spectrum of financing
 transactions, including domestic and cross-border transactions. On the capital
 markets side Gökçe’s practice covers the full range of transactions.Team
 members have represented İş Bankası, Vakıfbank, Ziraat Bankası, OdeaBank, TSKB,
 T-Bank, Fibabanka, Gedik Yatırım, Worldpay, CBH Compagnie Bancaire
 Helvétiqueand Nurol Holding on various project finance and financial
 restructuring transactions including energy sector, infrastructure, real estate
 project financing, acquisition financing and other types of asset financing. Dispute Resolution 
 Gökçe has profound knowledge and
 experience in litigation, especially in commercial and IP related disputes.
 Gökçe represented N11(Doğuş), NRC International, FIT Solutions, Celebi
 Aviation, BBraun, V-Count, Onedio, Trendbox, ASB Modern, Seacor Holding on
 various commercial disputes.



Employment 
 Gökçe’s employment team has an extensive
 expertise in handling the full spectrum of employment and labour law issues. It
 advises numerous clients including Biopipe, Evreka, Gram Games (a Zynga
 company), Codeway Games, Alba Prestige, Alictus and various company
 directors/managers on:
 <ul style="list-style-type: square;"><li style="margin-left: 20px;">Employment Contracts</li><li style="margin-left: 20px;">Termination of Employment </li><li style="margin-left: 20px;"> Employment Disputes
 </li><li style="margin-left: 20px;">Settlement of Disputes
 </li><li style="margin-left: 20px;">Social Security Disputes</li></ul>

 Debt Recovery &amp; Debt Collection 
 Gökçe has a wide practice of debt
 collection activities including foreclosure proceedings, primarily conducted
 for high volume commercial receivables of its clients. Gökçe represents Çelebi
 Aviation, Alpla, Seacor Holding, Geniks Kongre, Özak Global, B-Braun.

Criminal Law 
 Gökçe’s criminal law team represents
 clients in complex criminal law matters in relation to commercial fraud, white
 collar, financial, cyber, reconstruction crimes and data protection offenses.
 Gökçe’s criminal law clientele includes well-known individuals in Turkey.

Gökçe

Dr. Kaya works as a full-time faculty member with the
 Department of Information and Technology Law of Istanbul University Faculty of
 Law. He holds LLB from Istanbul Bilgi University Faculty of Law, LLM in
 Internet Law from Istanbul Bilgi University and PhD in Law from the University
 of Nottingham (UK) School of Law. 

&nbsp; 

His expertise covers a wide range of IT
 law matters and his principal research interest lies in the fields of Internet
 law, cyber-security law, data protection law, digital forensics, electronic
 communications law, with a particular focus on the correlation between
 technology and law. 

&nbsp; 

His research interests currently
 revolve around law, governance, and ethics, in particular the role law and
 technology play in data analytics and emerging technologies. In the area of
 Internet law, he has special research interest and expertise on intermediary
 liability, Internet content regulations, deep packet inspection (DPI)
 technologies, and digital surveillance in general. He currently heads up IT Law
 research team at Istanbul Bilgi University IT Law Institute which is also a
 member of Network of Interdisciplinary Internet &amp; Society Research Centers
 (Network of Centers).

&nbsp; 

Dr. Kaya has 4 different books, namely
 "Electronic Commercial Law-Commercial Messages", "Internet
 Law", "Personal Data Protection Law" and "Blocking Internet
 Access". Dr. Kaya has updated his work “Internet Law” within 2021 and 2022
 by including the novice regulations, decisions and such work has become an
 inevitable resource for everyone practicing in this field. In addition, he has
 researches and articles in different fields such as domain name disputes,
 European Union cyber security regulations and protection of personal data in
 public services. Practice Areas &amp; Work Department

Fintech 

Media &amp; Entertainment 

Startup Law &amp; Entrepreneurship

Technology &amp; Telecoms

&nbsp; 

Languages

Turkish

English

&nbsp; 

Memberships

Network of Interdisciplinary Internet &amp; Society
 Research Centers (Network of Centers)

Global Internet Governance Academic Network (GigaNet)

Public Procurement Law Academic Network (PLAN)

Partner and Head of TMT&Privacy 

Görkem is a graduate of Uskudar
 American Academy and Istanbul University Law School. As a part of his graduate
 studies, he took commercial law courses at Harvard University, US. After
 working for a reputable Turkish law firm as an intern and Dentons as an
 associate respectively, in 2010, he decided to continue his career through his
 own practice and established Gokce Attorneys at Law which later became Gokce
 Attorney Partnership. Görkem was involved in a variety of international mergers
 and acquisitions, joint venture, private equity, and venture capital and
 project finance transactions as well as privatizations in Turkey. He
 represented local and international clients before Turkish courts on various
 commercial disputes. He has key expertise in technology and internet-based
 businesses. He has also extensive experience in aviation law. Görkem advised
 various multi-national companies. Görkem is a member of the <a name="_Hlk121144153" style="">British – Turkish Lawyers Association </a>and acted as the
 Secretary to the Association between 2008 and 2009. He is also a member of <a name="_Hlk121144174" style="">International Technology Law Association</a>, acts as
 Turkey’s Local Representative. Görkem is the first Associate Member from Turkey
 admitted to the <a name="_Hlk121144198" style="">Esports Bar Association</a> and is the
 founding Chairman of <a name="_Hlk121144226" style="">Turkish Internet and Technology
 Law Association</a>. He is a Supervisory Board member at <a name="_Hlk121144251" style="">Endeavor
 Turkey</a>. He has been giving lectures on administrative law at the Training
 Center of the <a name="_Hlk121144272" style="">Istanbul Bar Association</a> since 2009.
 He is a regular speaker at Turkish law schools.

&nbsp; 

He has key expertise in technology and
 internet-based businesses, he also represents his clients on several complex
 and voluminous commercial disputes. He provides legal consultancy on
 compliance, intellectual property, internet, IT and technology sectors to
 several Turkish and foreign clients.

&nbsp; 

Görkem is the author of the first book
 on e-sports law in Turkey. Also, his book on space law, namely “Space Law:
 Yesterday, Today, Tomorrow” has recently been published within 2022. Practice Areas &amp; Work Department

Commercial, Corporate and M&amp;A

Fintech

Media &amp; Entertainment

Startup Law &amp; Entrepreneurship

Technology &amp; Telecoms

&nbsp; 

Languages

Turkish

English

&nbsp; 

Memberships

British
 – Turkish Lawyers Association

International
 Technology Law Association

E-Sports
 Bar Association

Turkish
 Internet and Technology Law Association

Endeavor
 Turkey

Istanbul
 Bar Association

European
 Criminal Bar Assocation

European
 Fraud and Compliance Lawyers

International
 Association of Entertainment Lawyers

Managing Partner

Technology & Telecoms

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">The NIS 2 Directive on the security of networks and information systems adopted by the European Commission was
published in the European Union (&lt;/span>&lt;strong>EU&lt;/strong>&lt;span style="font-size: 14px;">) Official Journal on 27 December 2022 and entered into force on 16 January
2023. The NIS2 Directive aims to harmonize cybersecurity regulations and the implementation of cybersecurity measures in member states. In this context, the NIS2 Directive constitutes a significant step towards strengthening cyber
security in EU.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;br>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>Why a New NIS Directive?&lt;/strong>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">The new NIS2 Directive will replace the NIS Directive, which regulates the EU’s rules on the security of networks and
information systems. The NIS Directive, adopted on 6 July 2016, is known for being the first cyber security legislation
adopted by the EU.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">The rapid digitalization process and the increasing malicious cyber activities at the global level and the need for legal
regulations for these activities had brought up the need to update the NIS Directive. Insufficient cyber resilience regulations, lack of agreement among member states on key risks and challenges, and the lack of a coordinated crisis response were among the main problems of the NIS Directive.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;br>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>Key Elements of NIS2 Directive&lt;/strong>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Some key elements of NIS2 Directive, which establishes the minimum standards for cyber risk management and reporting obligations, are compiled below:&lt;/span>&lt;/span>&lt;/p>&lt;ul style="list-style-type: square;">&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Broader application than the NIS Directive by including additional industries and covering medium and large organizations.&lt;/span>&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">A list for security measures to be implemented.&lt;/span>&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Obligation to submit an initial notification within 24 hours to the relevant competent authority in case of significant cyber threat.&lt;/span>&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Strengthened supply chain cybersecurity for key information and communication technologies.&lt;/span>&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Member states may conduct coordinated risk assessments of essential supply chains in collaboration with the Commission and the European Union Agency for Cybersecurity.&lt;/span>&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Stricter enforcement requirements with administrative fines up to 10 million EUR or 2% of the total global annual turnover of the company.&lt;/span>&lt;/span>&lt;/li>&lt;/ul>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;br>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>What Will be the Next Steps?&lt;/strong>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">NIS2 Directive entered into force on 16 January 2023. Member states are obliged to take the necessary measures within 21 months from the entry into force of the directive. In this context, the process of incorporating the provisions of the
NIS2 Directive into the national laws of the member states will be completed on 17 October 2024.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">You can reach the full text of NIS2 Directive &lt;/span>&lt;span style="font-size: 14px;">&lt;a href="https://www.europarl.europa.eu/doceo/document/TA-9-2022-0383_EN.pdf" target="_blank" rel="nofollow" style="color: rgb(3, 102, 132);">here&lt;/a>&lt;/span>&lt;span style="font-size: 14px;">.&lt;/span>&lt;/span>&lt;/p>&lt;hr>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; color: rgb(170, 87, 122); font-size: 14px;">&lt;strong style="">&lt;span style="color: rgb(152, 0, 0);">The Turkish version of this article is available on&lt;/span>&lt;span style="font-size: 14px;">&nbsp;&lt;/span>&lt;/strong>&lt;/span>&lt;span style="font-family: Arial, Helvetica, sans-serif; color: rgb(170, 87, 122); font-size: 14px;">&lt;a href="https://turkishlawblog.com/insights/detail/nis2-direktifi-abde-yeni-siber-guvenlik-kurallari" target="_blank" style="color: rgb(3, 102, 132);">&lt;strong>NIS2 Direktifi: AB’de Yeni Siber Güvenlik Kuralları&lt;/strong>&lt;/a>&lt;/span>&lt;br>&lt;/p>

The NIS 2 Directive on the security of networks and information systems adopted by the European Commission was published in the European Union (EU) Official Journal on 27 December 2022 and entered into force on 16 January 2023. The NIS2 Directive aims to harmonize cybersecurity regulations and the implementation of cybersecurity measures in member states. In this context, the NIS2 Directive constitutes a significant step towards strengthening cyber security in EU.

NIS2 Directive: New Cyber Security Rules in the EU

Elif obtained her law degree from
Istanbul Bilgi University as an “Honor Student” with full scholarship and
graduated from Ted Istanbul College as a “High Honor Student”. She holds a
certificate on “Corporate Law and Governance” issued by London School of
Economics.Elif is currently pursuing her master’s
degree (LL.M.) on Business Law in Istanbul Bilgi University Law School.She currently pursues her work on data
protection law, internet law, media law, information technologies,
cyber-security law, intellectual property law and commercial contracts. She
closely works with startups, venture capitals and technology companies
particularly within mergers and acquisitions and compliance projects.Elif participated in a plethora of
acquisition projects in different sectors including games, e-transformation,
information technologies, tourism and leisure and took part in Turkey’s most
sizable transactions. She has also provided support to many of Gökçe’s notable
clients as a part of the data protection team, who are leaders in their
sectors.Since January 2017, she has been
working as a member of TMC &amp; Privacy team. Practice Areas &amp; Work Department

Fintech

Media
 &amp; Entertainment

Startup
 Law &amp; Entrepreneurship

Technology
 &amp; Telecoms

&nbsp; 

Languages

English
 

&nbsp; 

Memberships

Istanbul
 Bar Association

Managing Associate

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">NIS2 Direktifi: AB’de Yeni Siber Güvenlik Kuralları
Avrupa Komisyonu tarafından kabul edilen ağ ve bilgi sistemlerinin güvenliğine ilişkin NIS 2 Direktifi 27 Aralık 2022 tarihinde Avrupa Birliği (&lt;strong>AB&lt;/strong>) Resmî Gazetesi’nde yayımlandı ve 16 Ocak 2023’te yürürlüğe girdi. NIS2 Direktifi, üye devletlerde siber güvenlik düzenlemelerini ve siber güvenlik önlemlerinin uygulanmasını uyumlu hale getirmeyi amaçlıyor.
Bu kapsamda NIS2 Direktifi, AB’de siber güvenliği güçlendirme yönünde atılmış oldukça önemli bir adım.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;br>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>Neden Yeni Bir NIS Direktifi?&lt;/strong>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Yeni NIS2 Direktifi, AB’nin ağ ve bilgi sistemlerinin güvenliğine ilişkin kurallarını düzenleyen NIS Direktifi’nin yerini alacak. 6 Temmuz 2016 tarihinde kabul edilen NIS Direktifi, AB tarafından kabul edilen ilk siber güvenlik mevzuatı olması
ile biliniyor.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Hızlı yaşanan dijitalleşme süreci ve küresel düzeyde artan kötü niyetli siber faaliyetlere karşın yasal düzenlemelere olan
ihtiyaç NIS Direktifi’nin güncellenmesini gündeme getirmişti. Yetersiz düzeyde siber dayanıklılık düzenlemeleri, üye
devletler arasında anlaşma eksikliği ve koordineli bir kriz müdahalesinin öngörülmemesi NIS Direktifi’nin temel sorunları arasındaydı.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;br>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>NIS2 Direktifi’ndeki Önemli Düzenlemeler&lt;/strong>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Siber risk yönetimi ve raporlama yükümlülükleri için asgari standartları belirleyen NIS2 Direktifi’nde öne çıkan başlıca
düzenlemeler şu şekilde:&lt;/span>&lt;/p>&lt;ul style="list-style-type: square;">&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Ek endüstrilerin dahil edilmesi ve orta ve büyük şirketlerin kapsama alınması sayesinde NIS Direktifi’nden daha
geniş bir uygulama alanı öngörülmesi.&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Uygulanacak güvenlik önlemleri için bir liste sağlanması.&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Önemli bir siber tehdit durumunda, 24 saat içinde ilgili yetkili makama ilk bildirimde bulunma zorunluluğu getirilmesi.&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Temel bilgi ve iletişim teknolojileri için güçlendirilmiş tedarik zinciri siber güvenliğinin sağlanması. Böylece üye devletler, Komisyon ve Avrupa Birliği Siber Güvenlik Ajansı ile iş birliği içinde temel tedarik zincirlerinin koordineli risk
değerlendirmelerini yürütebilecektir.&lt;/span>&lt;/li>&lt;li style="margin-left: 20px; text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">10 milyon Euro veya şirketin toplam küresel yıllık cirosunun %2’sine varan daha yüksek idari para cezalarının düzenlenmesi.&lt;/span>&lt;/li>&lt;/ul>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;br>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>Sonraki Adım Ne Olacak?&lt;/strong>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">NIS2 Direktifi 16 Ocak 2023’te yürürlüğe girdi. Üye devletler ise direktifin yürürlüğe girmesinden itibaren 21 ay içinde
gerekli önlemleri almakla yükümlü. Bu kapsamda üye devletlerin NIS2 Direktifi hükümlerini ulusal yasalarına dahil etme
süreci 17 Ekim 2024’te tamamlanmış olacak.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">NIS2 Direktifi’nin tam metnine &lt;/span>&lt;span style="font-size: 14px;">&lt;a href="https://www.europarl.europa.eu/doceo/document/TA-9-2022-0383_EN.pdf" target="_blank" rel="nofollow" style="color: rgb(3, 102, 132);">buradan&lt;/a>&lt;/span>&lt;span style="font-size: 14px;"> ulaşabilirsiniz (&lt;/span>&lt;em style="font-size: 14px;">Yalnızca İngilizcesi mevcuttur&lt;/em>&lt;span style="font-size: 14px;">).&lt;/span>&lt;/span>&lt;/p>&lt;hr>&lt;div class="post" style="box-sizing: border-box; font-style: normal; font-variant-ligatures: normal; font-variant-caps: normal; letter-spacing: normal; orphans: 2; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-text-stroke-width: 0px; background-color: rgb(255, 255, 255); text-decoration-thickness: initial; text-decoration-style: initial; text-decoration-color: initial; font-size: 16px;">&lt;div class="mantine-Text-root blog-text mantine-1pbxw0k" style="box-sizing: border-box; -webkit-tap-highlight-color: transparent; line-height: 22px; text-decoration: none; overflow-wrap: break-word; opacity: 0.8; font-size: 14px;">&lt;div style="box-sizing: border-box;">&lt;p style="color: var(--priamary-color); font-weight: 400; box-sizing: border-box; font-family: Inter, sans-serif !important; font-size: 14px;">&lt;strong style="font-size: 14px;">&lt;span style="color: rgb(152, 0, 0); font-size: 14px;" dm="" sans",="" sans-serif;="" color:="" rgb(170,="" 87,="" 122);"="">Bu yazının İngilizce versiyonuna &lt;/span>&lt;span style="font-size: 14px;" dm="" sans",="" sans-serif;="" color:="" rgb(3,="" 102,="" 132);"="">&lt;a href="https://turkishlawblog.com/insights/detail/nis2-directive-new-cyber-security-rules-in-the-eu" target="_blank" style="color: rgb(3, 102, 132);">NIS2 Directive: New Cyber Security Rules in the EU&lt;/a>&lt;/span>&lt;/strong>&lt;span style="font-size: 14px;" dm="" sans",="" sans-serif;="" color:="" rgb(170,="" 87,="" 122);"=""> &lt;span style="color: rgb(147, 42, 88);">&lt;strong style="color: rgb(152, 0, 0);">üzerinden ulaşabilirsiniz.&lt;/strong>&lt;/span>&lt;/span>&lt;/p>&lt;/div>&lt;/div>&lt;/div>

NIS2 Direktifi: AB’de Yeni Siber Güvenlik Kuralları Avrupa Komisyonu tarafından kabul edilen ağ ve bilgi sistemlerinin güvenliğine ilişkin NIS 2 Direktifi 27 Aralık 2022 tarihinde Avrupa Birliği (AB) Resmî Gazetesi’nde yayımlandı ve 16 Ocak 2023’te yürürlüğe girdi. NIS2 Direktifi, üye devletlerde siber güvenlik düzenlemelerini ve siber güvenlik önlemlerinin uygulanmasını uyumlu hale getirmeyi amaçlıyor. Bu kapsamda NIS2 Direktifi, AB’de siber güvenliği güçlendirme yönünde atılmış oldukça önemli bir adım.

NIS2 Direktifi: AB’de Yeni Siber Güvenlik Kuralları

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Artificial
intelligence is used in a wide range of capacities in business today and it is
already fundamentally changing almost every business activity.&nbsp;In general, AI refers to any sort of computer
software that performs humanlike tasks like planning, learning, and
problem-solving.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Since AI is
increasingly becoming an integral part of businesses, it captures the attention
of people globally, including legislators. We see that governments and
international organizations engage in regulatory work to draw the legal
framework regarding AI. Within this regulatory work, there were two important
developments that we would like to highlight in the first month of 2023.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;br>&lt;/span>&lt;/p>&lt;ul style="list-style-type: square;">&lt;li style="margin-left: 20px;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>NIST
to release AI Risk Management Framework&lt;/strong>&lt;/span>&lt;/li>&lt;/ul>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">The
National Institute of Standards and Technology (&lt;/span>&lt;strong style="font-size: 14px;">NIST&lt;/strong>&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">) will release the
first version of its Artificial Intelligence Risk Management Framework (&lt;/span>&lt;strong>AI
RMF&lt;/strong>&lt;span style="font-size: 14px;">) on 26 January 2023. AI RMF is intended for voluntary use, which means
it is not binding. However, it is a crucial document that aims to improve the
ability to incorporate trustworthiness considerations into the design,
development, use, and evaluation of AI products, services, and systems.&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">NIST had
been developing the framework since July 2021 and had been gathering feedback
through workshops and public comment. In this context, Elham Tabassi, NIST’s IT
Laboratory Chief of Staff emphasizes the fact that AI RFM maps the AI’s risks
to organizations, people and society in general.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Of course,
it is inevitable that the technology and standards landscape for AI will
continue to evolve. In this regard, Tabassi reports that NIST intends for AI
RMF to be updated over time to reflect new knowledge, awareness and practices.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">You can
reach the official announcement of NIST &lt;/span>&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;a href="https://www.nist.gov/itl/ai-risk-management-framework" target="_blank" rel="nofollow" style="color: rgb(3, 102, 132);">here&lt;/a>&lt;/span>&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;br>&lt;/span>&lt;/p>&lt;ul style="list-style-type: square;">&lt;li style="margin-left: 20px;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong style="">ICO
addresses concerns on use of AI&lt;/strong>&lt;/span>&lt;/li>&lt;/ul>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">In a blog
post, U.K. Information Commissioner’s Office (ICO) Deputy Commissioner
Stephen Bonner addressed concerns on use of AI. Bonner explains that ICO did
not find evidence of discrimination or unlawful usage of AI in its inquiries.
However, Bonner further explains that there are concerns around the fairness of
these technologies, and compliance with data protection legislation.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">In order to
respond the concerns, ICO suggests that local authorities and central
government should follow and ensure that following steps are taken when using
algorithms or AI:&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>(1)&lt;/strong>&lt;span style="font-size: 14px;"> Taking
a data protection by design as a default approach and using AI is in compliance
with data protection laws,&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">
&lt;strong>(2) &lt;/strong>&lt;span style="font-size: 14px;">Being
transparent with people about how data is used,&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>(3) &lt;/strong>&lt;span style="font-size: 14px;">Identifying
the potential risks to people’s privacy stemming from using AI.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">In
addition, Bonner confirms that ICO will continue to work with and support the
public sector to ensure that the use of AI is lawful.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">You can
reach the blog post &lt;/span>&lt;span style="font-size: 14px;">&lt;a href="https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2023/01/blog-addressing-concerns-on-the-use-of-ai-by-local-authorities/" target="_blank" rel="nofollow" style="color: rgb(3, 102, 132);">here&lt;/a>&lt;/span>&lt;span style="font-size: 14px;">.&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">AI
technologies are becoming more and more widespread as they maintain a
competitive edge for businesses. However, they also raise legal problems in
various areas such as, commercial contracts, products liability, privacy and
data security. In this regard, we can say that new regulations will come up on
our agenda.&lt;/span>&lt;/span>&lt;/p>

Artificial intelligence is used in a wide range of capacities in business today and it is already fundamentally changing almost every business activity. In general, AI refers to any sort of computer software that performs humanlike tasks like planning, learning, and problem-solving.

Artificial Intelligence: New Day New Developments

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Yapay zekâ günümüzde birçok farklı sektörde kullanılmaya
ve neredeyse her ticari faaliyeti temelden değiştirmeye başladı. Genel olarak
tanımlamak gerekirse, yapay zekâ, planlama, öğrenme ve problem çözme gibi insani
görevleri yerine getiren her türlü bilgisayar yazılımı olarak ifade edilebilir.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Yapay zekâ giderek daha fazla sektörün iş
sürecinin ayrılmaz bir parçası haline geldiğinden, yasa koyucuların dikkati de
dahil küresel olarak dikkatleri üzerine çekmeye başladı. Hem devlet
otoritelerinin hem de uluslararası kuruluşların yapay zekâ ile ilgili yasal
çerçeveyi çizmek adına regülasyon çalışmaları yaptığına şahit oluyoruz. Bu
kapsamda, 2023'ün ilk ayında sizlere aktarmak istediğimiz iki önemli gelişme yaşandı.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;br>&lt;/span>&lt;/p>&lt;ul style="list-style-type: square;">&lt;li style="margin-left: 20px;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;strong>NIST’in yapay zekâ risk yönetim
çerçevesini yayımlanacak.&lt;/strong>&lt;/span>&lt;/li>&lt;/ul>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">Amerika Birleşik Devletleri Ulusal Standartlar
ve Teknoloji Enstitüsü (&lt;/span>&lt;strong style="font-size: 14px;">NIST&lt;/strong>&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">), 26 Ocak 2023 tarihinde Yapay Zekâ Risk
Yönetimi Çerçevesi'nin (&lt;/span>&lt;strong>Risk Yönetim Çerçevesi&lt;/strong>&lt;span style="font-size: 14px;">) ilk versiyonunu yayımlayacak.
Risk Yönetim Çerçevesi, bağlayıcı bir yasa niteliğinde değil. Bununla birlikte,
yapay zekâ ürünleri, hizmetleri ve sistemlerinin tasarımına, geliştirilmesine,
kullanımına ve değerlendirilmesine güvenilirlik faktörünü dahil etme amacında
olan önemli bir belge.&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">NIST’in, Temmuz 2021'den bu yana Risk Yönetim
Çerçevesi’nin hazırlık sürecinde olduğu, kolektif çalışmalar ve kamuoyu görüşleri
aracılığıyla geri bildirimleri topladığı biliniyordu. Bu bağlamda, NIST'in IT Laboratuvarı
Direktörü Elham Tabassi, Risk Yönetim Çerçevesi’nin yapay zekanın kuruluşlara,
insanlara ve genel olarak topluma yönelik risklerini tespit ettiğini vurguluyor.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Elbette yapay zekâ teknolojilerinin ve
standartlarının değişmeye ve gelişmeye devam edeceği açık. Bu doğrultuda
Tabassi, Risk Yönetim Çerçevesi’nin de yeni bilgileri, farkındalığı ve
uygulamaları yansıtacak şekilde zaman içinde güncelleneceğini bildiriyor.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">NIST’in konuya ilişkin resmi duyurusuna &lt;/span>&lt;span style="font-size: 14px;">&lt;a href="https://www.nist.gov/itl/ai-risk-management-framework" target="_blank" rel="nofollow" style="color: rgb(3, 102, 132);">buradan&lt;/a>&lt;/span>&lt;span style="font-size: 14px;">
ulaşabilirsiniz. (&lt;/span>&lt;em style="font-size: 14px;">Yalnızca İngilizcesi mevcuttur.&lt;/em>&lt;span style="font-size: 14px;">)&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;br>&lt;/span>&lt;/span>&lt;/p>&lt;ul style="list-style-type: square;">&lt;li style="margin-left: 20px;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>ICO yapay zekâ kullanımına
ilişkin açıklamalarda bulundu.&lt;/strong>&lt;/span>&lt;/span>&lt;/li>&lt;/ul>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">Birleşik Krallık Bilgi Komiserliği Ofisi (&lt;/span>&lt;strong>ICO&lt;/strong>&lt;span style="font-size: 14px;">)
Komiser Yardımcısı Stephen Bonner, bir blog yazısında yapay zekâ kullanımına
ilişkin endişeleri gidermek için açıklamalarda bulundu. Bonner yazıda ICO'nun
araştırmalarında yapay zekanın ayrımcılığa veya yasa dışı kullanımına dair
kanıt bulamadığını aktardı. Ancak bu teknolojinin adil kullanımı ve veri koruma
mevzuatına uygunluğu konusunda endişelerin varlığını da inkâr etmediğini ifade
etti.&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">Bu kapsamda ICO, yerel otoritelerin ve merkezi
hükümetin algoritmaları veya yapay zekayı kullanırken aşağıdaki adımları
izlemesini ve bunlara uymasını tavsiye ediyor:&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>(1)&lt;/strong>&lt;span style="font-size: 14px;"> Tasarımda
gizlilik (privacy by design) ilkesini temel ilke olarak benimsemek ve
yapay zekâ kullanımının veri koruma yasalarına uygun olmasını sağlamak&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>(2)&lt;/strong>&lt;span style="font-size: 14px;"> Verilerin
nasıl kullanıldığı konusunda ilgili kişilere karşı şeffaf olmak,&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;strong>(3)&lt;/strong>&lt;span style="font-size: 14px;"> Gizliliğe
yönelik yapay zekâ kullanımından kaynaklanan potansiyel riskleri belirlemek.&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">Ayrıca, Bonner yazısında ICO'nun yapay zekâ
kullanımının yasal çerçevede kalmasını sağlamak için kamu sektörüyle iş birliği
içinde çalışmaya devam edeceğini de bildirdi.&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">ICO’nun yazısına &lt;/span>&lt;span style="font-size: 14px;">&lt;a href="https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2023/01/blog-addressing-concerns-on-the-use-of-ai-by-local-authorities/" target="_blank" rel="nofollow" style="color: rgb(3, 102, 132);">buradan&lt;/a>&lt;/span>&lt;span style="font-size: 14px;">
ulaşabilirsiniz. (&lt;/span>&lt;em style="font-size: 14px;">Yalnızca İngilizcesi mevcuttur&lt;/em>&lt;span style="font-size: 14px;">.)&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">&lt;span style="font-size: 14px;">Sonuç olarak, yapay zekâ, işletmeler için
rekabet avantajı sağladıkça kaçınılmaz olarak daha yaygın kullanılır hale
gelmekte. Fakat bu yaygın kullanım aynı zamanda ticari sözleşmeler, ürün
sorumluluğu, gizlilik ve veri güvenliği gibi çeşitli alanlarda hukuki sorunları
da gündeme getirmekte. Bu konuda yeni yasal düzenlemelerin ileride gündemimize
geleceğini söyleyebiliriz.&lt;/span>&lt;/span>&lt;/span>&lt;/span>&lt;/p>

Yapay zekâ günümüzde birçok farklı sektörde kullanılmaya ve neredeyse her ticari faaliyeti temelden değiştirmeye başladı. Genel olarak tanımlamak gerekirse, yapay zekâ, planlama, öğrenme ve problem çözme gibi insani görevleri yerine getiren her türlü bilgisayar yazılımı olarak ifade edilebilir.

Yapay Zekâ: Her Güne Yeni Bir Gelişme

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Değiştirilemez
dijital varlık olan tanımlanan NFT’lerin, son yıllarda ortaya çıkan en popüler
dijital varlıklardan biri olduğu söylenebilir. NFT’ler hızla büyüyen oyun,
finansal teknoloji, sağlık ve sanat gibi birçok sektöre damgasını vurmuş
durumda. Bu kapsamda NFT, çok sayıda sanatçı, koleksiyoncu ve yatırımcıyı da
kendine çekiyor.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">NFT’lerin
hızlı gelişimi ve yaygınlaşması dünya çapında büyük bir pazar oluşmasına yol
açtı. NFT’lerin bu popülerliği uyuşmazlıkları da kaçınılmaz hale getirdi. Hukuk
sistemleri ise bu hızlı gelişime henüz ayak uyduramadı. Dolayısıyla ve doğal
olarak halihazırdaki regülasyonlar, NFT'leri çevreleyen birçok önemli yasal
sorunu ele almakta yetersiz kaldı.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Her ne
kadar NFT’lere dair kapsayıcı regülasyonlar bulunmasa da uygulamada NFT’lere
ilişkin mevcut uyuşmazlıklar ve yargı kararları yol gösterici nitelikte. Bunun
en önemli örneklerinden birisi ise Türkiye’de bir ilk teşkil eden, müvekkilimiz
Emrah Karaca’nın vekili olarak takip ettiğimiz uyuşmazlıkta 21 Haziran 2022’de
İstanbul 3. Fikri Sınai Haklar Hukuk Mahkemesi (Mahkeme) tarafından
hükmedilen ihtiyati tedbir kararı.
&nbsp;
İlgili
uyuşmazlığın tarafları Türkiye’nin en bilinen sanatçılarından biri olan merhum
Cem Karaca’nın mirasçısı ve oğlu Emrah Karaca ile Cem Karaca’nın portresini
çizen ve bu portreyi NFT formatında satışa sunan sanatçı Yiğit Mohaç Yücel.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Davacı
Emrah Karaca, babası Cem Karaca’nın yer aldığı portrenin hukuka aykırı şekilde
NFT başta olmak üzere çeşitli yollarla satışa sunulduğuna, ticari amaçlarla
sosyal medya platformlarında paylaşıldığına ve sergilendiğine dayanarak ilgili
uyuşmazlığı Mahkeme’ye taşıdı. Bu kapsamda Emrah Karaca, ilgili portrenin
satışa sunulmasının, ticari amaçla paylaşılmasının ve sergilenmesinin Fikir ve
Sanat Eserleri Kanunu ve Türk Medeni Kanunu kapsamında kişilik hakkı ihlali
teşkil ettiği iddiasında bulunarak portrenin satışının durdurulmasını ve
yayımlandığı platformlardan kaldırılmasını istedi. Bu kapsamda davacı Emrah
Karaca, Mahkeme’den bu hususlara ilişkin delil tespiti yapılmasını ve portrenin
NFT satışının engellenmesi yönünde ihtiyati tedbir kararı verilmesini talep
etti.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Mahkeme
ise bilirkişi aracılığıyla gerçekleştirdiği incelemelerin ardından davacının
iddialarını haklı bularak ihtiyati tedbir talebinin kabulüne karar verdi ve Cem
Karaca’nın tasvir edildiği portrenin izinsiz kullanıldığı platformlara erişimin
engellenmesi ve dünyanın en çok kullanılan NFT satış platformu olan OpenSea
platformu aracılığıyla NFT formatında satışa sunulan portrenin satışının
durdurulmasına hükmetti. Kararın ardından ise NFT formatında satışa sunulan portre
OpenSea platformundan kaldırıldı.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">İlgili
ihtiyati tedbir kararı Türkiye’de bir ilk olması açısından oldukça önemli ve
gelecek dönemde benzer uyuşmazlıklarda da emsal teşkil edecek nitelikte. Zira
ilgili karar NFTlerin icra edilebilir kararlara konu olabileceğini ortaya
koymuştur. Aynı şekilde ilgili portrenin OpenSea platformundan kaldırılması ve
satışının durdurulması da Türk mahkemelerinin kararlarının ne denli
uygulanabileceği ve kararların icra edilip edilemeyeceğine ilişkin örnek teşkil
etmektedir.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Mahkeme’nin
ihtiyati tedbir kararında her ne kadar NFT’nin teknik özelliklerine ilişkin
detaylı değerlendirmeler yer almasa da NFT formatının hak ihlallerinde nasıl
değerlendirildiğini göstermesi açısından önemli. Bu kapsamda Türkiye’de NFT’ye
ilişkin herhangi bir düzenleme bulunmamasına rağmen mahkemelerin NFT’ye ilişkin
icrai kararlar verebileceğini, hak ihlallerinde NFT formatının da ihlal teşkil
edebileceğini göstermesi açısından söz konusu ihtiyati tedbir kararı kritik bir
öneme sahip olmuştur.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Davalı
Yiğit Mohaç Yücel ise ilgili karara itiraz etti, itirazı Mahkeme tarafından
reddedilmesi ardından ise konuyu İstanbul Bölge Adliye Mahkemesine taşıdı.
İkinci derece mahkemesi ise Mahkeme ile aynı doğrultuda karar vererek ihtiyati
tedbir kararının hukuka uygun olduğuna hükmetti. Böylece NFT’ye ilişkin ilk
ihtiyati tedbir kararı kesinleşmiş oldu.
&nbsp;
Karar,
NFT’lerin hukuki statüsüne dair Türkiye’de verilen ilk mahkeme kararı olması
sebebiyle önem taşıyor. Kararın yakın gelecekte NFTlerin hukuki statüsüne yönelik
getirilecek regülasyonları nasıl etkileyeceği ise merak konusu.&lt;/span>&lt;/p>

Değiştirilemez dijital varlık olan tanımlanan NFT’lerin, son yıllarda ortaya çıkan en popüler dijital varlıklardan biri olduğu söylenebilir. NFT’ler hızla büyüyen oyun, finansal teknoloji, sağlık ve sanat gibi birçok sektöre damgasını vurmuş durumda. Bu kapsamda NFT, çok sayıda sanatçı, koleksiyoncu ve yatırımcıyı da kendine çekiyor.

İstinaf Kabul Etti: NFT’ye İlişkin Tedbir Kararı

Aslıhan obtained her law degree from
Istanbul University Law Faculty as an “Honor Student”. Aslıhan is a member of
Istanbul Bar Association and mainly engages in the areas of commercial law,
consumer law and labor law. Aslıhan is the senior associate of the Litigation
and Employment team of Gökçe.Aslıhan represents reputable companies
from different sectors ranging from aviation, textile to pharmacy in litigation
and alternative dispute resolution. She pursues various lawsuits regarding bankruptcy
and enforcement law, trademark law and patent law. Aslıhan is also a certified
mediator in the fields of civil and criminal law before the Ministry of
Justice. Practice Areas &amp; Work Department

Commercial
 &amp; Corporate 

Startup
 Law &amp; Entrepreneurship

&nbsp; 

Languages

English
 

&nbsp; 

Memberships

Istanbul
 Bar Association

Senior Associate

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">NFTs, defined as non-fungible digital assets, are
possibly one of the most popular digital assets that have emerged in recent
years. They have become prominent in the rapidly growing gaming industry, as
well as health and art sectors. In this regard, NFTs are appealing to many
artists, collectors and investors.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The rapid development and popularity of NFTs has led
to the creation of a large worldwide market. NFTs’ popularity has rendered
disputes inevitable. Legal systems, on the other hand, were unable to keep up
with this rapid development. Thus, naturally, current regulations have fallen
short of addressing many of the key legal issues regarding NFTs.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Even though there are no regulations fully regulating
NFTs, existing disputes and jurisprudence regarding NFTs are guiding the
practice. One of the most significant examples of this is the interim
injunction decision within the dispute that we have been representing our
client Emrah Karaca, at Istanbul 3rd Civil Court of Intellectual and Industrial
Rights (Court) ruled on 21 June 2022 which was a first in Turkey. 
The parties of the dispute are the inheritor and the
son of deceased Cem Karaca who is one of the most well-known artists in Turkey,
Emrah Karaca and Yiğit Mohaç Yücel, an artist who illustrated a portrait of Cem
Karaca and put it up for sale in the form of an NFT.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Plaintiff Emrah Karaca brought the relevant dispute to
the Court, since the portrait of his father, Cem Karaca, was unlawfully offered
for sale by various means, primarily through NFT, and had been shared and
exhibited on social media platforms for commercial purposes. In this context,
Emrah Karaca claimed that the display and sharing of this portrait with
commercial purposes constitutes a violation of personal rights under the
Turkish Civil Code and the Law on Intellectual and Artistic Work and demanded
cease of the sale of this portrait and that be removed from the platforms where
it was published. In order to prevent the NFT from being sold, and get a
recording of evidence, plaintiff Emrah Karaca requested an interim injunction.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Upon reviewing an experts’ examination, the Court
accepted the request for interim injunction, as it found that the request was
well-founded. As a result, the Court decided to blockade access to the URL to
the portrait on one of the most widely used NFT platforms on the Internet,
OpenSea and the prevention of sale of Cem Karaca’s portrait on the same
platform. Upon receiving the judgment, the portrait was taken down from the NFT
platform OpenSea.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The interim injunction decision of the Court is
crucial as it is a first in Turkey and since it could set a precedent for
similar disputes in the future, as it shows that NFTs could be subject of
enforceable decisions. Likewise, the removal of the portrait from OpenSea and
halt of its sale, also shows how executable Turkish court decisions are on the
matter and whether they can be enforceable or not.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Even though the technical details about the properties
of NFT is not assessed in detail in this interim injunction, this decision is
significant in the way that it shows how courts could examine rights violations
under the relevant law. In this regard, although there is no regulation in
Turkey regarding NFTs, this interim injunction is crucial as it shows NFTs can
be subject to executable decisions by courts and that NFTs can also constitute
rights violations under Turkish law.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The defendant Yiğit Mohaç Yücel however, objected to
the decision of the Court and upon its rejection, brought it before Istanbul
Regional Court of Appeal. The second instance court decided in favour of the
court of first instance and approved the interim injunction. Thus, the first
interim injunction related to NFTs became final.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The decision of the court of second instance is
crucial as it is the first court decision regarding the legal status of NFTs in
Turkey. However, how this decision will affect the legal status of NFTs in the
upcoming regulations in Turkey in the near future is a matter of curiosity.&lt;/span>&lt;/p>

NFTs, defined as non-fungible digital assets, are possibly one of the most popular digital assets that have emerged in recent years. They have become prominent in the rapidly growing gaming industry, as well as health and art sectors. In this regard, NFTs are appealing to many artists, collectors and investors.

Court of Appeal Approved the Injunction Regarding NFT

&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">A significant decision was published by the European Court of Justice (ECJ) on 8 December 2022. The decision concerns
search engine operators with respect to processing requests for dereferencing webpages and image thumbnails, along
with the burden of proof regarding the dereferencing. &lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The applicants are persons who are in the managing positions in in private companies. The dispute arose when three
articles focusing on corruption were published on a website criticising the companies and the applicants, along with
pictures depicting them in luxury vehicles. &lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The applicants requested Google to dereference these articles as they were inaccurate and lead to defamatory opinions.
Google refused the request and argued that they were unaware of the inaccuracy of the information provided in the
articles.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Subsequently, the case was brought before the European Court of Justice by the Federal Court of Justice of Germany,
requesting an interpretation on GDPR and the Directive on the Protection of Individuals with regards to the Processing
of Personal Data and on the Free Movement of Such Data.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">As a preliminary point the Court of Justice referred to its previous rulings, in which it has ruled that the processes and
activities of a search engine constitute “data processing” and in this capacity, Google is a data controller. Also, in these
decisions, it was pointed out that the extent of responsibilities of the search engine do not arise from personal data
appearing on a third-party’s page. Instead, it results from internet users conducting web searches with an individual’s
name, will result with a display of a list that has the potential to significantly affect the data subject’s fundamental rights
to privacy and to the protection of the personal data.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">However, ECJ also decided that search engine operators should not be expected to actively investigate the truthfulness
ofi the request. Instead, only the “prima facia”, found it sufficient to make an evaluation by adhering to the criteria of
apparent accuracy and to remove it from the list if the condition exists. According to the Court, investigating the actual
situation in detail is a burden that ultimately falls on administrative or judicial bodies.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">In the second question posed by the Federal Court of Germany, the image thumbnails are discussed. Court underlined
that images have the capacity to relay information about a person’s chief characteristics. In this manner, it finds that a
separate inquiry must be carried out about the images of a dereferencing request.&lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">Accordingly, the Court dictates that the image dereferencing must be carried out alongside webpage dereferencing. &lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">The European Court of Justice “inter alia” imposes a new responsibility for search engine operators with this decision.
It is stated that the search engine provider must entail information on the references of web searches if they are made
aware of any judicial proceeding taking place. &lt;/span>&lt;/p>&lt;p style="text-align: justify;">&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">You can reach the full text of the decision &lt;/span>&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">&lt;a href="https://curia.europa.eu/juris/document/document.jsf?text=&amp;docid=268429&amp;pageIndex=0&amp;doclang=EN&amp;mode=lst&amp;dir=&amp;occ=first&amp;part=1&amp;cid=259132" target="_blank" style="color: rgb(61, 133, 198);">here&lt;/a>&lt;/span>&lt;span style="font-family: Arial, Helvetica, sans-serif; font-size: 14px;">.&lt;/span>&lt;/p>

A significant decision was published by the European Court of Justice (ECJ) on 8 December 2022. The decision concerns search engine operators with respect to processing requests for dereferencing webpages and image thumbnails, along with the burden of proof regarding the dereferencing.

Latest European Court of Justice Ruling on Dereferencing from Search Engines

Yağmur obtained her law degree as a
high honor student and pursued her master’s degree (LL.M.) on commercial law
and information law in Istanbul University Law School. During her master's
degree, she completed her thesis on “Protection of Websites” – which is the
first academic study in Turkey that approaches the protection of websites in
the scope of intellectual property law.Yağmur’s main areas of expertise are
internet and technology law, electronic commerce law, data security law, and
media and entertainment law. She has advanced her academic and professional
career on information technology law and in the digital world.Yağmur is the senior associate of
Gökçe’s TMC&amp;Privacy team. She is also one of the authors of the first book
on e-sports law in Turkey.During her career, Yağmur has
represented many technology-oriented national and multi-national companies and
taken part in projects on everyone’s radar. She has worked in joint projects
with several foreign law firms such as DLA Piper, K&amp;L Gates, Fieldfisher
LLP, Osborne Clarke, and Bristows and has been a team leader in international
data protection compliance projects.Since 2016 January, she has been
working as an associate of TMC &amp; Privacy team. Practice Areas &amp; Work Department

Fintech

Media
 &amp; Entertainment

Startup
 Law &amp; Entrepreneurship

Technology
 &amp; Telecoms

&nbsp; 

Languages

English
 

&nbsp; 

Memberships

Istanbul
 Bar Association

Insights Technology & Telecoms

Esin Attorney Partnership

CONTACTS

Unsal Law

CONTACTS

Gökçe

CONTACTS

NIS2 Directive: New Cyber Security Rules in the EU

NIS2 Direktifi: AB’de Yeni Siber Güvenlik Kuralları

Artificial Intelligence: New Day New Developments

Yapay Zekâ: Her Güne Yeni Bir Gelişme

İstinaf Kabul Etti: NFT’ye İlişkin Tedbir Kararı

Court of Appeal Approved the Injunction Regarding NFT

Latest European Court of Justice Ruling on Dereferencing from Search Engines