KVKK, “Personal Data Protection Law “, which came into force on 7 April 2016, is an arrangement made to protect the privacy of the users with their fundamental rights and freedoms in the use of their data. Personal data is composed of any action taken by users over the internet and covers this data completely and is therefore evaluated within the scope of KVKK. Processing of personal data, such as obtaining data, storing the data, making changes and deleting the data. KVKK has made “explicit consent” a necessity for data processing and limits the actions that can be taken even if it has explicit consent, with the aim of protecting user data against possible cyber attacks. One of these requirements is the trainings to be made to inform the personnel working in your company about this subject.

KVKK is a law based on GDPR, the European privacy law called “The General Data Protection Regulation”. Click here for detailed information about the regulations of KVKK.

Salesforce and KVKK

Salesforce emphasizes trust, the number one value, on its website. Salesforce underlines that the success of the customers and the protection of their data are priorities for them. Salesforce ,the world's number one CRM company, provide trust to your customers and serve your customers better policy.

As industry leader of CRM, Salesforce has some of the standards for its services are as follows:

• ISO standarts (International Organization for Standardization); ISO 27001 and ISO 27018 standarts
• American Institute’s CPAs (AICPA)
• System and Organization Control (SOC) reports
• Payment Card Industry Data Security Standards (PCI)
• TÜV Rheinland Certified Cloud Service
• UK Cyber Essentials Scheme

IaaS Characteristics

Characteristics that define IaaS include:

• Resources are available as a service
• Cost varies depending on consumption
• Services are highly scalable
• Multiple users on a single piece of hardware
• Organization retain complete control of the infrastructure
• Dynamic and flexible

In addition, Salesforce's services were examined by TRUSTe and earned a TRUSTe certificate.

Salesforce has a multi-tier security system that works in an organized way to keep your customers' data safe. Your company's data is protected from unauthorized access from outside the company, ie cyber attacks, and Salesforce's security layers protect against improper use of your own employees. It is important that you check that your employees have access to the right data. Some measures that organizations can apply to protect personal data:

• Encryption
• Creating a username instead of a name when users signed up for your website
• Assigning a Data Controller
• The data controller must be able to maintain compliance with GDPR policies by keeping a log

In addition, Salesforce allows you to provide privacy for each of your customers wherever they are in the world. Salesforce Turkey as a very important partner for Rapitek confidence of its customers. Together with Salesforce, Rapitek gives a real importance to KVKK.

References

- Salesforce

- Trailhead