Sensitive personal data of approximately 85 million Turkish citizens and residents has been compromised through a website called Sorgu Paneli, raising significant concerns about data security and privacy protection in Turkey.
The website, which allows unrestricted access to personal information in exchange for a free membership, exposed sensitive details such as identification numbers, names, addresses, telephone numbers, and even bank account details. The Media and Law Studies Association (MLSA) intends to take legal action against those responsible, including the Interior Minister, for failing to safeguard the data.
Sorgu Paneli, operating under the domain address Sorgu.live, currently has over 5,000 users and promotes its services on various platforms, including Twitter. By conducting a simple search using a person’s name and surname, anyone can access this sensitive information with just an email registration.
Veysel Ok, Co-Director of the MLSA, highlighted the severity of the crime, condemning both the data thieves and state authorities for the violation of the Personal Data Protection Law and the Turkish Penal Code.
The breach compromises personal data of not only individuals but also their relatives, including bank details, title deed information, and addresses of every resident in Turkey. The MLSA plans to file a compensation and criminal lawsuit against the Interior Ministry, responsible for safeguarding personal data, urging affected individuals to assert their legal rights by pursuing compensation lawsuits and filing criminal complaints.
This incident further highlights the need for improved data protection measures and accountability in Turkey, following a previous alleged data breach in the country’s e-Government Gateway system. However, the Digital Transformation Office of the Presidency has claimed that no evidence of data leakage was found during detailed checks.