Establishment of Cybersecurity Presidency in Turkey is declared in the circuit of the Official Gazette dated January 8, 2025 and numbered 32776. Turkey took a significant step to fulfill the gap in the lack of an institutional framework combating cybercrimes.
The formation of the Turkish Cybersecurity Presidency was reported in the Official Gazette.
Introduction
It is significant to note at the outset that Turkey ranks 55th in the National Cyber Security Index and 11th in the Global Cybersecurity Index. Over the years, Turkey has been a frequent target of cyberattacks, highlighting its vulnerabilities stemming from regulatory and institutional shortcomings in cybersecurity. The rapid proliferation of Information Technologies (IT) across all sectors has further amplified the risks and challenges related to cybersecurity. Indeed, Turkey is regarded as very weak because of regulatory and institutional gaps in relation to cybersecurity. The proliferation of Information Technologies (IT) for all sectors causes additional troubles and concerns in the issue of cybersecurity. From that sense, the establishment of the Cybersecurity Presidency in Turkey is an important improvement.This article aims to outline the core developments and potential next steps for cybersecurity in Turkey.
Regarding the Information Technologies, see our work on Information Technologies
What is the full meaning of cybersecurity in Turkey?
In short, cybersecurity is used to refer to the usage of sophisticated IT technologies, controlling systems to safeguard any attacks aiming at unauthorized exploitation of data and networks.
Cybersecurity refers to the use of sophisticated IT technologies and control systems to safeguard data and networks from unauthorized access, exploitation, or attacks. It encompasses measures designed to protect against theft, loss, or illegal use of sensitive information and systems.
What is the cybersecurity law in Turkey?
Turkey was criticized on the grounds of lack of a targeted cybersecurity legislation applicable to cyber issues. That was worsened by the lack of any superior independent authority dealing with cybercrimes. Since data privacy provides a set of rules to protect data from illegal access and illegal actions including theft or loss of personal data, data privacy norms were used under very limited circumstances.
It necessarily follows that Turkey was suffering from an institutional framework combating cyber threats. The cybersecurity regulatory regime has been changed by a Presidential Decree, circuited in the Official Gazette dated January 8, 2024 and numbered 32776.
Turkey has faced criticism for the lack of targeted cybersecurity legislation specifically addressing cyber issues. Previously, data privacy regulations provided a limited set of rules for protecting data from illegal access and actions such as theft or loss. This left significant gaps in the regulatory framework for combating cyber threats.
To address these concerns, the regulatory landscape has been transformed by a Presidential Decree published in the Official Gazette dated January 8, 2025, numbered 32776. This decree establishes the Cybersecurity Presidency within the framework of the Office of the Presidency, providing a much-needed institutional mechanism to tackle cybersecurity challenges.
Taking into account those criticisms, a Cybersecurity Presidency is established under the framework of the Office of the Presidency.
Establishment of Cybersecurity Presidency in Turkey: What are 5 core missions of Cybersecurity Presidency?
Cybersecurity Presidency is mandated to
- formulate strategies and policies,
- to produce action plans,
- to work on upcoming regulations on cybersecurity,
- to provide coordination,
- to trace necessary steps
It becomes clear that the new Decree addresses the formation, governance, operational authority and responsibilities of the new Presidency.
The Cybersecurity Presidency has been tasked with several critical responsibilities, including:
- Formulating Strategies and Policies: Developing national strategies and comprehensive policies for cybersecurity.
- Producing Action Plans: Creating actionable frameworks to address current and emerging cybersecurity threats.
- Drafting Regulations: Preparing and refining legislative instruments to ensure a robust cybersecurity regime.
- Ensuring Coordination: Facilitating collaboration among government agencies, private sectors, and international stakeholders.
Monitoring and Implementation: Tracking and assessing the effectiveness of measures taken to safeguard national cybersecurity.
The Presidential Decree provides a detailed outline of the formation, governance, operational authority, and responsibilities of the new Presidency, ensuring a structured and effective approach to cybersecurity.
Conclusion
Turkey took an enormous step dedicated to improving its institutional framework against cyber threats. Establishment of Cybersecurity Presidency is a critical milestone in Turkey’s journey to strengthen its defenses against cyber risks and adapt to the rapidly evolving landscape of information technology.This development holds significant promise for Turkey’s cybersecurity future, setting the stage for further advancements in protecting national and individual digital assets.
Undoubtedly, the effectiveness of the new Presidency can be achieved only through a legal instrument. That will be the primary job before the agenda of the Cybersecurity Presidency. The establishment of the Cybersecurity Presidency represents a significant progress for all emerging developments in Turkey.
Turkey has taken a major step toward enhancing its institutional framework against cyber threats with the establishment of the Cybersecurity Presidency. This move addresses longstanding criticisms of regulatory and institutional deficiencies in the field. However, the efficiency of this new body will largely depend on the adoption of comprehensive legal instruments to support its functions.