Allianz Sigorta A.Ş. is the data controller. In summary, in the data breach notification submitted to the Personal Data Protection Board by:

• The violation started on 07.03.2024 and ended on 18.03.2024,
• The violation was detected on 21.03.2024, when the National Cyber ​​Incident Response Center (USOM) reported that some information belonging to the data controller was offered for sale on the internet by the cyber attacker(s),
• As a result of the investigations, it was determined that the cyber attacker(s) had unauthorized access to the platform called "Service Desk", where data controller agents convey their requests and complaints to the data controller,
• The personal data affected by the breach cannot be determined exactly, but identity, visual and audio records, communication and financial (including credit card information) data and special personal data such as philosophical beliefs, religion, sect and other beliefs, health information and association membership data may have been affected by the breach,
• The exact number of people and records affected by the data breach cannot be determined,
• Relevant groups of people affected by the breach are employees, business partners, customers and potential customers,
• Relevant persons will be able to obtain information about the personal data breach via e-mail and call center.

information is included.

Although the investigation on the issue continues, it was decided to announce the data breach notification on the Authority's website with the Decision of the Personal Data Protection Board dated 28.03.2024 and numbered 2024/557.

Source of New: KVKK Public Announcement (Notification of Data Breach)