Turkiye: Ruling handed to Amazon Turkiye for failing to obtain consent on the processing of personal data

On 7 May 2020, the Data Protection Authority of Turkiye (KVKK) sanctioned Amazon Turkiye with a fine of TRY 1.2 million. The reason for this was a violation of the Regulation of Electronic Commerce (Law No. 6563) since Amazon Turkiye did not obtain express consent before sending electronic commercial messages, as would have been required by law. Furthermore, Amazon Turkiye also did not comply with the information or explicit consent requirements regarding cookies. Amazon Turkiye was further handed a cease-and-desist order, under which it needs to adapt its privacy notice, terms of use and sale, as well as its cookie notice and then publish these on its website.