Boss Governance (a CottGroup® company), the local payroll partner of ADP in Turkey, participated in the annual "ADP Partner Executive Convention" held in Vienna, Austria during November 6-8, 2019. Every year, the conventions are based on a metaphoric approach, enhancing the partnership between ADP and its local partners. This year, "music" was used as a metaphor to enhance the harmony of the collaboration between ADP, its local partners and the clients on the delivery of the payroll services, just as how an orchestra interacts its all parts to produce a piece that relies on the best musicians and instrumentalists to please its audience
CottGroup® organized the seminar titled "The Affects of KVKK-GDPR on Companies" in Cooperation with Ulutek
By organizing a seminar at Bursa Ulutek Technology Development Zone on 09-10-2019 about the affects of KVKK (“Personal Data Protection Law”) and GDPR on the companies in Turkey; CottGroup® shared with the participants the rights and responsibilities of real and legal persons within the scope of the legislation in the first place, and then the requirements that companies have to fulfill in order to complete their compliance processes. In addition to compliance processes, the administrative and technical measures were shared with the participants, that must be taken by the companies to comply with the law.
CottGroup® member companies earned ISAE 3402 Type II certification, referred to as GDS 3402 according to the Turkish Standards (formerly known as SAS 70) as per to the audits held by PKF International.
The ISAE 3402 Type II certification guarantees that the service vendor offers its services and operates according to the quality standards and security measures with international standards.
What is ISAE 3402 Standard?
This standard is a proof measure, showing the service vendor has implemented highest level of control mechanisms implemented to the services being rendered, along with having these services optimized and continuous under any circumstance. An independent auditor agency holds extended analysis and reporting to assure that the mechanisms implemented are accurate and are rightly practiced.
The Audit Report for ISA 3402 contains high degree of information on security and confidentiality along with granting safe guards on data access, security levels, physical access controls, infrastructure and preventive measures on breach and technical attacks; to the parties. Thus, the Report justifies the vendor has met the required and expected standards on business flows and security layers.
CottGroup® holds its both local and global clients and business partners sensitive - critical data within its systems. Therefore, due to the nature of the business processes and having sensitive data in possession, CottGroup® is regularly audited by its clients, business partners, financial and insurance institutions. As per to the outcomes of these regular audits, the infrastructure and security systems are constantly being developed and improved.
ISAE 3402 Type II Report can be acknowledged as a handbook which facilitates easier and safer ways to access information regarding the audit processes.
CottGroup® has participated in the seminar on “Turkish Personal Data Protection Law and GDPR Compliancy” at Bursa, Ulutek R&D Center on 26.12.2018. The participants were instructed by CottGroup with an emphasis on introduction and comparison of both data protection laws and which companies located in Turkey are liable to GDPR along with Turkish Data Protection Law.