{"id":61158,"date":"2023-12-04T11:16:41","date_gmt":"2023-12-04T02:16:41","guid":{"rendered":"https:\/\/monolith.law\/tr\/?p=61158"},"modified":"2024-04-14T13:35:05","modified_gmt":"2024-04-14T04:35:05","slug":"vendor-compensation","status":"publish","type":"post","link":"https:\/\/monolith.law\/tr\/it\/vendor-compensation","title":{"rendered":"Siber sald\u0131r\u0131lar sonucu zarar. Sistem tedarik\u00e7isinin tazminat sorumlulu\u011fu nedir? S\u00f6zle\u015fme \u00f6rne\u011fi ile a\u00e7\u0131klama"},"content":{"rendered":"\n<p>Son y\u0131llarda, \u015firketlere y\u00f6nelik siber sald\u0131r\u0131lar art\u0131\u015f g\u00f6stermektedir.<\/p>\n\n\n\n<p>\u00d6zel Kar Amac\u0131 G\u00fctmeyen Kurulu\u015f Japon A\u011f G\u00fcvenli\u011fi Derne\u011fi (JNSA)&#8217;nin ara\u015ft\u0131rmas\u0131na g\u00f6re, ki\u015fisel bilgi s\u0131z\u0131nt\u0131 olaylar\u0131n\u0131n haks\u0131z eri\u015fim oran\u0131, 2013 y\u0131l\u0131nda (Gregorian takvimine g\u00f6re) t\u00fcm\u00fcn\u00fcn %4.7&#8217;si iken, 2018 y\u0131l\u0131nda (Gregorian takvimine g\u00f6re) %20.3&#8217;e kadar artm\u0131\u015ft\u0131r (<a href=\"https:\/\/www.jnsa.org\/result\/incident\/2018.html\" target=\"_blank\" rel=\"noreferrer noopener\">2018 Bilgi G\u00fcvenli\u011fi Olaylar\u0131na \u0130li\u015fkin Ara\u015ft\u0131rma Raporu[ja]<\/a>).<\/p>\n\n\n\n<p>Bu makalede, siber sald\u0131r\u0131ya u\u011frad\u0131\u011f\u0131nda sistem tedarik\u00e7isinin sorumluluk alan\u0131n\u0131, ge\u00e7mi\u015f mahkeme kararlar\u0131na dayanarak a\u00e7\u0131kl\u0131yoruz. Ayr\u0131ca, tedarik\u00e7i ve kullan\u0131c\u0131lar\u0131n birlikte siber sald\u0131r\u0131lara kar\u015f\u0131 \u00f6nlem almak i\u00e7in, s\u00f6zle\u015fmede belirlenmesi gereken roller ve sorumluluk alanlar\u0131 hakk\u0131nda da, model s\u00f6zle\u015fmeye dayanarak a\u00e7\u0131klama yap\u0131yoruz.<\/p>\n\n\n\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_53 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Sistem_Saglayicilari_Siber_Saldirilardan_Kaynaklanan_Zararlarin_Tazminat_Sorumlulugunu_Ustlenir_mi\" title=\"Sistem Sa\u011flay\u0131c\u0131lar\u0131 Siber Sald\u0131r\u0131lardan Kaynaklanan Zararlar\u0131n Tazminat Sorumlulu\u011funu \u00dcstlenir mi?\">Sistem Sa\u011flay\u0131c\u0131lar\u0131 Siber Sald\u0131r\u0131lardan Kaynaklanan Zararlar\u0131n Tazminat Sorumlulu\u011funu \u00dcstlenir mi?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Sistem_Tedarikcisinin_Zarar_Tazminat_Sorumlulugu_ve_Sozlesme_Ornegi\" title=\"Sistem Tedarik\u00e7isinin Zarar Tazminat Sorumlulu\u011fu ve S\u00f6zle\u015fme \u00d6rne\u011fi\">Sistem Tedarik\u00e7isinin Zarar Tazminat Sorumlulu\u011fu ve S\u00f6zle\u015fme \u00d6rne\u011fi<\/a><ul class='ez-toc-list-level-3'><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Yazilim_Gelistirme_Sozlesmesi\" title=\"Yaz\u0131l\u0131m Geli\u015ftirme S\u00f6zle\u015fmesi\">Yaz\u0131l\u0131m Geli\u015ftirme S\u00f6zle\u015fmesi<\/a><ul class='ez-toc-list-level-4'><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Yuklenici_Sozlesmesi\" title=\"Y\u00fcklenici S\u00f6zle\u015fmesi\">Y\u00fcklenici S\u00f6zle\u015fmesi<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Yari_Taahhut_Sozlesmesi\" title=\"Yar\u0131 Taahh\u00fct S\u00f6zle\u015fmesi\">Yar\u0131 Taahh\u00fct S\u00f6zle\u015fmesi<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Sistem_Bakimi_ve_Isletme_Sozlesmesi\" title=\"Sistem Bak\u0131m\u0131 ve \u0130\u015fletme S\u00f6zle\u015fmesi\">Sistem Bak\u0131m\u0131 ve \u0130\u015fletme S\u00f6zle\u015fmesi<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Bulut_Hizmetleri_Kullanim_Sozlesmesi\" title=\"Bulut Hizmetleri Kullan\u0131m S\u00f6zle\u015fmesi\">Bulut Hizmetleri Kullan\u0131m S\u00f6zle\u015fmesi<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Sistem_Saglayicilarin_Zarar_Tazminat_Sorumlulugunun_Belirlenme_Kriterleri\" title=\"Sistem Sa\u011flay\u0131c\u0131lar\u0131n Zarar Tazminat Sorumlulu\u011funun Belirlenme Kriterleri\">Sistem Sa\u011flay\u0131c\u0131lar\u0131n Zarar Tazminat Sorumlulu\u011funun Belirlenme Kriterleri<\/a><ul class='ez-toc-list-level-3'><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Gelistirme_Sirasindaki_Teknik_Seviyeye_Uygun_Onlemler_Aliniyor_mu\" title=\"Geli\u015ftirme S\u0131ras\u0131ndaki Teknik Seviyeye Uygun \u00d6nlemler Al\u0131n\u0131yor mu?\">Geli\u015ftirme S\u0131ras\u0131ndaki Teknik Seviyeye Uygun \u00d6nlemler Al\u0131n\u0131yor mu?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Kullanici_Tarafi_Sirketin_Kusuru_Var_mi\" title=\"Kullan\u0131c\u0131 Taraf\u0131 \u015eirketin Kusuru Var m\u0131?\">Kullan\u0131c\u0131 Taraf\u0131 \u015eirketin Kusuru Var m\u0131?<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Guvenli_Sistem_Gelistirmenin_3_Anahtari\" title=\"G\u00fcvenli Sistem Geli\u015ftirmenin 3 Anahtar\u0131\">G\u00fcvenli Sistem Geli\u015ftirmenin 3 Anahtar\u0131<\/a><ul class='ez-toc-list-level-3'><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Kamu_Kurumlarinin_Belirttigi_Siber_Riskleri_Anlamak\" title=\"Kamu Kurumlar\u0131n\u0131n Belirtti\u011fi Siber Riskleri Anlamak\">Kamu Kurumlar\u0131n\u0131n Belirtti\u011fi Siber Riskleri Anlamak<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Her_Iki_Tarafin_da_Guvenlik_Gerekliligini_Anlamasi\" title=\"Her \u0130ki Taraf\u0131n da G\u00fcvenlik Gereklili\u011fini Anlamas\u0131\">Her \u0130ki Taraf\u0131n da G\u00fcvenlik Gereklili\u011fini Anlamas\u0131<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Her_Iki_Tarafin_da_Siber_Saldirilara_Karsi_Birlikte_Mucadele_Etmesi\" title=\"Her \u0130ki Taraf\u0131n da Siber Sald\u0131r\u0131lara Kar\u015f\u0131 Birlikte M\u00fccadele Etmesi\">Her \u0130ki Taraf\u0131n da Siber Sald\u0131r\u0131lara Kar\u015f\u0131 Birlikte M\u00fccadele Etmesi<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Ozet_Sistem_Gelistirme_Sozlesmesi_Olusturma_Icin_Bir_Avukata_Danisin\" title=\"\u00d6zet: Sistem Geli\u015ftirme S\u00f6zle\u015fmesi Olu\u015fturma \u0130\u00e7in Bir Avukata Dan\u0131\u015f\u0131n\">\u00d6zet: Sistem Geli\u015ftirme S\u00f6zle\u015fmesi Olu\u015fturma \u0130\u00e7in Bir Avukata Dan\u0131\u015f\u0131n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-16\" href=\"https:\/\/monolith.law\/tr\/it\/vendor-compensation\/#Buromuz_Tarafindan_Alinan_Onlemler\" title=\"B\u00fcromuz Taraf\u0131ndan Al\u0131nan \u00d6nlemler\">B\u00fcromuz Taraf\u0131ndan Al\u0131nan \u00d6nlemler<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Sistem_Saglayicilari_Siber_Saldirilardan_Kaynaklanan_Zararlarin_Tazminat_Sorumlulugunu_Ustlenir_mi\"><\/span>Sistem Sa\u011flay\u0131c\u0131lar\u0131 Siber Sald\u0131r\u0131lardan Kaynaklanan Zararlar\u0131n Tazminat Sorumlulu\u011funu \u00dcstlenir mi?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2023\/02\/shutterstock_134919143.jpg\" alt=\"Sistem Sa\u011flay\u0131c\u0131lar\u0131 Siber Sald\u0131r\u0131lardan Kaynaklanan Zararlar\u0131n Tazminat Sorumlulu\u011funu \u00dcstlenir mi?\" class=\"wp-image-58926\" \/><\/figure>\n\n\n\n<p>Bir \u015firketin kullan\u0131c\u0131 taraf\u0131 siber sald\u0131r\u0131ya u\u011frad\u0131\u011f\u0131nda ve zarar meydana geldi\u011finde, ilk olarak sorumluluk ara\u015ft\u0131r\u0131lmas\u0131 gereken siber sald\u0131r\u0131n\u0131n failidir. Ancak, sistem geli\u015ftirme ve i\u015fletme hatalar\u0131 nedeniyle sald\u0131r\u0131ya daha a\u00e7\u0131k hale gelmi\u015f olabilirse, kullan\u0131c\u0131 taraf\u0131ndan sistem sa\u011flay\u0131c\u0131ya kar\u015f\u0131 tazminat talebi kabul edilebilir.<\/p>\n\n\n\n<p>Sistem sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n sorumlulu\u011funu ara\u015ft\u0131ran tazminat taleplerinin temeli a\u015fa\u011f\u0131dakiler olabilir:<\/p>\n\n\n\n<ul>\n<li>S\u00f6zle\u015fme Uygunlu\u011fu Sorumlulu\u011fu<\/li>\n\n\n\n<li>\u0130yi Y\u00f6netim Y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fcn\u00fcn \u0130hlali<\/li>\n<\/ul>\n\n\n\n<p>Ancak, kullan\u0131c\u0131 taraf\u0131n\u0131n ihmali nedeniyle, zarar\u0131n geni\u015flemesi de m\u00fcmk\u00fcnd\u00fcr. Bu durumda, kullan\u0131c\u0131 taraf\u0131n\u0131n sorumlulu\u011fu da kabul edilir. Ger\u00e7ek mahkeme durumlar\u0131nda, bu t\u00fcr durumlar kusurun kar\u015f\u0131lanmas\u0131 olarak dikkate al\u0131n\u0131r ve sistem sa\u011flay\u0131c\u0131ya kar\u015f\u0131 tazminat s\u0131n\u0131rlanabilir.<\/p>\n\n\n\n<p>\u0130lgili Makale: <a href=\"https:\/\/monolith.law\/corporate\/categories-of-cyber-crime\" target=\"_blank\" rel=\"noreferrer noopener\">Siber Su\u00e7lar\u0131n 3 S\u0131n\u0131fland\u0131rmas\u0131 Nedir? Avukat, Her Modelin Zarar \u00d6nleme Stratejilerini A\u00e7\u0131kl\u0131yor[ja]<\/a><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Sistem_Tedarikcisinin_Zarar_Tazminat_Sorumlulugu_ve_Sozlesme_Ornegi\"><\/span>Sistem Tedarik\u00e7isinin Zarar Tazminat Sorumlulu\u011fu ve S\u00f6zle\u015fme \u00d6rne\u011fi<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Sistem tedarik\u00e7isi ve kullan\u0131c\u0131 olan \u015firketler aras\u0131ndaki IT sistem s\u00f6zle\u015fmelerinin \u00f6nde gelen \u00f6rnekleri a\u015fa\u011f\u0131daki 3&#8217;t\u00fcr:<\/p>\n\n\n\n<ol>\n<li>Yaz\u0131l\u0131m Geli\u015ftirme S\u00f6zle\u015fmesi<\/li>\n\n\n\n<li>Sistem Bak\u0131m ve \u0130\u015fletim S\u00f6zle\u015fmesi<\/li>\n\n\n\n<li>Bulut Hizmetleri Kullan\u0131m S\u00f6zle\u015fmesi<\/li>\n<\/ol>\n\n\n\n<p>Zarar tazminat sorumlulu\u011fu, ba\u015flang\u0131\u00e7taki s\u00f6zle\u015fmeye ba\u011fl\u0131 olarak belirlenir, bu nedenle a\u015fa\u011f\u0131da s\u00f6zle\u015fme t\u00fcrlerine g\u00f6re a\u00e7\u0131klama yapaca\u011f\u0131z.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Yazilim_Gelistirme_Sozlesmesi\"><\/span>Yaz\u0131l\u0131m Geli\u015ftirme S\u00f6zle\u015fmesi<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Yaz\u0131l\u0131m geli\u015ftirme s\u00f6zle\u015fmesi, kullan\u0131c\u0131 taraf\u0131ndaki \u015firketin kendi sistemlerinin geli\u015ftirilmesi i\u015fini bir yaz\u0131l\u0131m sat\u0131c\u0131s\u0131na devretti\u011fi durumlarda yap\u0131lan bir anla\u015fmad\u0131r.<\/p>\n\n\n\n<p>Bir \u015firketin kullan\u0131c\u0131 taraf\u0131 siber sald\u0131r\u0131ya u\u011frad\u0131\u011f\u0131nda ve yaz\u0131l\u0131m\u0131n zay\u0131fl\u0131\u011f\u0131 zarar\u0131n geni\u015flemesine neden olduysa, kullan\u0131c\u0131dan sat\u0131c\u0131ya sorumluluk talep edilebilir.<\/p>\n\n\n\n<p>Sistem sat\u0131c\u0131s\u0131n\u0131n ta\u015f\u0131d\u0131\u011f\u0131 sorumluluklar, yaz\u0131l\u0131m geli\u015ftirme s\u00f6zle\u015fmesinin t\u00fcr\u00fcne ba\u011fl\u0131 olarak a\u015fa\u011f\u0131daki iki \u015fekilde olabilir:<\/p>\n\n\n\n<ul>\n<li>Y\u00fcklenici S\u00f6zle\u015fmesi: S\u00f6zle\u015fme Uyumsuzlu\u011fu Sorumlulu\u011fu<\/li>\n\n\n\n<li>Yar\u0131 Taahh\u00fct S\u00f6zle\u015fmesi: \u0130yi Y\u00f6netim Dikkat Y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc \u0130hlali<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Yuklenici_Sozlesmesi\"><\/span>Y\u00fcklenici S\u00f6zle\u015fmesi<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p>Y\u00fcklenici s\u00f6zle\u015fmesi, sistemin tamamlanmas\u0131n\u0131 taahh\u00fct eden ve bu sonu\u00e7 i\u00e7in \u00f6deme yap\u0131lan bir anla\u015fmad\u0131r.<\/p>\n\n\n\n<p>Teslim edilen sonu\u00e7 &#8220;s\u00f6zle\u015fmenin amac\u0131na uygun de\u011filse&#8221;, teslimattan belirli bir s\u00fcre sonra, y\u00fckleniciye S\u00f6zle\u015fme Uyumsuzlu\u011fu Sorumlulu\u011fu (<a href=\"https:\/\/elaws.e-gov.go.jp\/document?lawid=129AC0000000089\" target=\"_blank\" rel=\"noreferrer noopener\">Japon Medeni Kanunu&#8217;nun 559 ve 562. maddeleri[ja]<\/a>) do\u011far.<\/p>\n\n\n\n<p>Yani, bir siber sald\u0131r\u0131 kolayca sistem ar\u0131zas\u0131na neden olan bir sonu\u00e7 &#8220;s\u00f6zle\u015fmenin amac\u0131na uygun de\u011fildir&#8221; ve kullan\u0131c\u0131 taraf\u0131ndan S\u00f6zle\u015fme Uyumsuzlu\u011fu Sorumlulu\u011fu nedeniyle tazminat talep edilebilir.<\/p>\n\n\n\n<p>Bu talebin kabul edilip edilmeyece\u011fi, taraflar\u0131n \u00f6nceden belirledi\u011fi yaz\u0131l\u0131m\u0131n g\u00fcvenlik seviyesine ba\u011fl\u0131d\u0131r.<\/p>\n\n\n\n<div class=\"wp-block-group has-background is-layout-constrained wp-block-group-is-layout-constrained\" style=\"background-color:#f4f4f4\"><div class=\"wp-block-group__inner-container\">\n<p>\u3010S\u00f6zle\u015fme Uyumsuzlu\u011fu Sorumlulu\u011fu \u00d6rne\u011fi\u3011<\/p>\n\n\n\n<p>Madde X: \u00d6nceki maddenin kabul\u00fcnden sonra, teslim edilen \u00fcr\u00fcnlerde sistem \u00f6zellikleri ile uyumsuzluk (hatalar dahil. A\u015fa\u011f\u0131da bu maddede &#8220;S\u00f6zle\u015fme Uyumsuzlu\u011fu&#8221; olarak an\u0131lacakt\u0131r.) bulunursa, A, B&#8217;ye s\u00f6z konusu S\u00f6zle\u015fme Uyumsuzlu\u011funu d\u00fczeltme veya tamamlama (a\u015fa\u011f\u0131da bu maddede &#8220;Tamamlama&#8221; olarak an\u0131lacakt\u0131r.) talebinde bulunabilir ve B, s\u00f6z konusu Tamamlamay\u0131 yapmal\u0131d\u0131r. Ancak, A&#8217;ya a\u015f\u0131r\u0131 bir y\u00fck getirmezse, B, A&#8217;n\u0131n talep etti\u011fi y\u00f6ntemden farkl\u0131 bir y\u00f6ntemle Tamamlamay\u0131 yapabilir.<\/p>\n\n\n\n<p>2. \u00d6nceki f\u0131kraya ra\u011fmen, s\u00f6z konusu S\u00f6zle\u015fme Uyumsuzlu\u011fu nedeniyle bile bireysel s\u00f6zle\u015fmenin amac\u0131na ula\u015f\u0131labiliyorsa ve Tamamlama a\u015f\u0131r\u0131 maliyet gerektiriyorsa, B, \u00f6nceki f\u0131krada belirtilen Tamamlama y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fcn\u00fc ta\u015f\u0131maz.<\/p>\n\n\n\n<p>3. A, s\u00f6z konusu S\u00f6zle\u015fme Uyumsuzlu\u011fu (B&#8217;nin kusuruna atfedilebilecek durumlarla s\u0131n\u0131rl\u0131d\u0131r.) nedeniyle zarar g\u00f6r\u00fcrse, B&#8217;den tazminat talep edebilir.<\/p>\n\n\n\n<p>Al\u0131nt\u0131: <a href=\"https:\/\/www.ipa.go.jp\/ikc\/reports\/20201222.html\" target=\"_blank\" rel=\"noreferrer noopener\">Bilgi Sistemleri Model \u0130\u015flem S\u00f6zle\u015fmesi (\u0130kinci Bask\u0131)[ja]<\/a><\/p>\n<\/div><\/div>\n\n\n\n<h4 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Yari_Taahhut_Sozlesmesi\"><\/span>Yar\u0131 Taahh\u00fct S\u00f6zle\u015fmesi<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p>Yar\u0131 taahh\u00fct s\u00f6zle\u015fmesinde, S\u00f6zle\u015fme Uyumsuzlu\u011fu Sorumlulu\u011fu uygulanmaz. \u00c7\u00fcnk\u00fc sonucun tamamlanmas\u0131 y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc yoktur. Bunun yerine, &#8220;i\u015fleri iyi bir y\u00f6neticinin dikkatiyle i\u015fleme y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc&#8221; (\u0130yi Y\u00f6netim Dikkat Y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc) ta\u015f\u0131r.<\/p>\n\n\n\n<p>Bir siber sald\u0131r\u0131 sonucunda sistem ar\u0131zas\u0131 olu\u015fursa, g\u00fcvenlik seviyesini s\u00f6zle\u015fme s\u0131ras\u0131nda belirlememi\u015f olsalar bile, bu seviyede bir sistem geli\u015ftirmenin &#8220;\u0130yi Y\u00f6netim Dikkat Y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc \u0130hlali&#8221; (<a href=\"https:\/\/elaws.e-gov.go.jp\/document?lawid=129AC0000000089\" target=\"_blank\" rel=\"noreferrer noopener\">Japon Medeni Kanunu&#8217;nun 656 ve 644. maddeleri[ja]<\/a>) olarak kabul edilir ve tazminat talebiyle kar\u015f\u0131la\u015fabilir.<\/p>\n\n\n\n<div class=\"wp-block-group has-background is-layout-constrained wp-block-group-is-layout-constrained\" style=\"background-color:#f4f4f4\"><div class=\"wp-block-group__inner-container\">\n<p>\u3010\u0130yi Y\u00f6netim Dikkat Y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc \u00d6rne\u011fi\u3011<\/p>\n\n\n\n<p>Madde X: B, Madde X&#8217;te belirtilen bireysel s\u00f6zle\u015fmeyi imzalad\u0131ktan sonra, A&#8217;n\u0131n olu\u015fturdu\u011fu bilgi sistemleri konsepti, sistemle\u015ftirme plan\u0131 vb. temel alarak, A&#8217;n\u0131n gereksinim tan\u0131mlama belgesi olu\u015fturma i\u015flemini destekleyen hizmeti (a\u015fa\u011f\u0131da &#8220;Gereksinim Tan\u0131mlama Olu\u015fturma Destek Hizmeti&#8221; olarak an\u0131lacakt\u0131r.) sa\u011flar.<\/p>\n\n\n\n<p>2. B, bilgi i\u015flem teknolojisi hakk\u0131ndaki uzman bilgi ve deneyimine dayanarak, A&#8217;n\u0131n i\u015flemlerinin sorunsuz ve uygun bir \u015fekilde ger\u00e7ekle\u015ftirilmesini sa\u011flamak i\u00e7in, iyi bir y\u00f6neticinin dikkatiyle ara\u015ft\u0131rma, analiz, d\u00fczenleme, \u00f6neri ve tavsiye gibi destek hizmetleri sa\u011flar.<\/p>\n\n\n\n<p>Al\u0131nt\u0131: <a href=\"https:\/\/www.ipa.go.jp\/ikc\/reports\/20201222.html\" target=\"_blank\" rel=\"noreferrer noopener\">Bilgi Sistemleri Model \u0130\u015flem S\u00f6zle\u015fmesi (\u0130kinci Bask\u0131)[ja]<\/a><\/p>\n<\/div><\/div>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Sistem_Bakimi_ve_Isletme_Sozlesmesi\"><\/span>Sistem Bak\u0131m\u0131 ve \u0130\u015fletme S\u00f6zle\u015fmesi<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Sistem bak\u0131m\u0131 ve i\u015fletme s\u00f6zle\u015fmesi, bir \u015firketin mevcut yaz\u0131l\u0131m\u0131n bak\u0131m\u0131 ve i\u015fletilmesi ile ilgili g\u00f6revleri bir yaz\u0131l\u0131m sat\u0131c\u0131s\u0131na devretti\u011fi bir s\u00f6zle\u015fmedir. Bak\u0131m ve i\u015fletme s\u00f6zle\u015fmesi imzalan\u0131rken, genellikle i\u015fletme \u00f6zelliklerini belirten belgelerde belirtilen g\u00fcvenlik seviyesini kar\u015f\u0131lamak \u00fczere s\u00f6zle\u015fmeye dahil edilir.<\/p>\n\n\n\n<p>Siber sald\u0131r\u0131 sonucu zarar meydana geldi\u011finde, sistem g\u00fcvenlik seviyesi s\u00f6zle\u015fme s\u0131ras\u0131nda anla\u015f\u0131lan seviyenin alt\u0131nda ise, s\u00f6zle\u015fme uygunlu\u011fu maddesi temel al\u0131narak bor\u00e7 ihmalinden sorumlu tutulabilirsiniz.<\/p>\n\n\n\n<p>Ancak, \u00f6nceden belirlenmi\u015f bir g\u00fcvenlik seviyesi yoksa, siber sald\u0131r\u0131lara kar\u015f\u0131 savunmas\u0131z bir sistem bak\u0131m\u0131 ve i\u015fletme durumunda, iyi y\u00f6netim y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fcne ayk\u0131r\u0131 oldu\u011fu i\u00e7in sorumlulukla kar\u015f\u0131 kar\u015f\u0131ya kalabilirsiniz.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Bulut_Hizmetleri_Kullanim_Sozlesmesi\"><\/span>Bulut Hizmetleri Kullan\u0131m S\u00f6zle\u015fmesi<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Bulut hizmetleri kullan\u0131m s\u00f6zle\u015fmesi, bir sa\u011flay\u0131c\u0131n\u0131n bulut \u00fczerinde sundu\u011fu hizmetleri kullan\u0131rken yap\u0131lan bir anla\u015fmad\u0131r. Sa\u011flay\u0131c\u0131n\u0131n \u00e7ok say\u0131da kullan\u0131c\u0131ya ayn\u0131 hizmeti sunmas\u0131 beklenir, bu y\u00fczden genellikle sa\u011flay\u0131c\u0131n\u0131n belirledi\u011fi kullan\u0131m ko\u015fullar\u0131na g\u00f6re s\u00f6zle\u015fme yap\u0131l\u0131r.<\/p>\n\n\n\n<p>Genellikle, bu s\u00f6zle\u015fmede, bir siber sald\u0131r\u0131 sonucunda hizmetin sunulamamas\u0131 durumunda kimin sorumlu olaca\u011f\u0131 \u00f6nceden belirtilmi\u015ftir.<\/p>\n\n\n\n<p>Bulut hizmetleri kullan\u0131m s\u00f6zle\u015fmesinde genellikle a\u015fa\u011f\u0131dakiler belirlenir:<\/p>\n\n\n\n<ul>\n<li>SLA (Service Level Agreement &#8211; Hizmet Seviyesi Anla\u015fmas\u0131): Kalite garantisi ve i\u015fletme kurallar\u0131<\/li>\n\n\n\n<li>Sorumluluk s\u0131n\u0131rlama maddesi: Hasar olu\u015ftu\u011funda sa\u011flay\u0131c\u0131n\u0131n ifa etmeme sorumlulu\u011funun kapsam\u0131<\/li>\n<\/ul>\n\n\n\n<p>SLA, kullan\u0131c\u0131 taraf\u0131n\u0131n talep d\u00fczeyi ve sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n i\u015fletme kurallar\u0131n\u0131 a\u00e7\u0131k\u00e7a belirten bir belgedir. Burada belirlenen hizmetin sunulamamas\u0131 durumunda, k\u0131smi ifa etmeme olarak tazminat talep edilebilir. Ayr\u0131ca, s\u00f6zle\u015fme i\u00e7inde sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n ifa etmeme taleplerini \u00f6nceden s\u0131n\u0131rlar ve sorumluluk kabul edilen durumlarda bile bu tazminat miktar\u0131n\u0131 s\u0131n\u0131rlayan &#8220;sorumluluk s\u0131n\u0131rlama maddesi&#8221; belirlenebilir.<\/p>\n\n\n\n<p>Ancak, sorumluluk s\u0131n\u0131rlama maddeleri genellikle sa\u011flay\u0131c\u0131 taraf\u0131na avantaj sa\u011flad\u0131\u011f\u0131ndan, bir anla\u015fmazl\u0131k durumunda Japon hukuk prensiplerine g\u00f6re k\u0131smen s\u0131n\u0131rlanabilir.<\/p>\n\n\n\n<div class=\"wp-block-group has-background is-layout-constrained wp-block-group-is-layout-constrained\" style=\"background-color:#f4f4f4\"><div class=\"wp-block-group__inner-container\">\n<p>\u3010Sorumluluk S\u0131n\u0131rlama Maddesi \u00d6rne\u011fi\u3011<\/p>\n\n\n\n<p>Madde X: A ve B, bu s\u00f6zle\u015fme ve \u00f6zel s\u00f6zle\u015fmelerin yerine getirilmesi ile ilgili olarak, di\u011fer taraf\u0131n kusurundan kaynaklanan bir zarara u\u011frad\u0131\u011f\u0131nda, di\u011fer tarafa, (sadece XXX zararlar\u0131 i\u00e7in) tazminat talep edebilir. Ancak, bu talep, ilgili tazminat talebinin neden oldu\u011fu ilgili \u00f6zel s\u00f6zle\u015fmenin teslimat\u0131n\u0131n tamamlanma tarihi veya i\u015fin biti\u015f tarihinden itibaren X ay sonra yap\u0131labilir.<\/p>\n\n\n\n<p>2. Bu s\u00f6zle\u015fme ve \u00f6zel s\u00f6zle\u015fmelerin yerine getirilmesi ile ilgili toplam tazminat miktar\u0131, ifa etmeme (s\u00f6zle\u015fme uyumsuzlu\u011fu sorumlulu\u011fu dahil), haks\u0131z kazan\u00e7, hukuka ayk\u0131r\u0131 eylem veya di\u011fer talep nedenleri ne olursa olsun, sorumlu olan \u00f6zel s\u00f6zle\u015fmenin belirledi\u011fi XXX miktar\u0131 ile s\u0131n\u0131rl\u0131d\u0131r.<\/p>\n\n\n\n<p>3. \u00d6nceki madde, tazminat y\u00fck\u00fcml\u00fcs\u00fcn\u00fcn kas\u0131tl\u0131 veya a\u011f\u0131r ihmaline dayal\u0131 durumlarda uygulanmaz.<\/p>\n\n\n\n<p>Al\u0131nt\u0131: <a href=\"https:\/\/www.ipa.go.jp\/ikc\/reports\/20201222.html\" target=\"_blank\" rel=\"noreferrer noopener\">Bilgi Sistemleri Model \u0130\u015flem S\u00f6zle\u015fmesi (\u0130kinci Bask\u0131)[ja]<\/a><\/p>\n<\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Sistem_Saglayicilarin_Zarar_Tazminat_Sorumlulugunun_Belirlenme_Kriterleri\"><\/span>Sistem Sa\u011flay\u0131c\u0131lar\u0131n Zarar Tazminat Sorumlulu\u011funun Belirlenme Kriterleri<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2023\/02\/shutterstock_646598212.jpg\" alt=\"Sistem Sa\u011flay\u0131c\u0131lar\u0131n Zarar Tazminat Sorumlulu\u011funun Belirlenme Kriterleri\" class=\"wp-image-58928\" \/><\/figure>\n\n\n\n<p>Siber sald\u0131r\u0131 sonucunda kullan\u0131c\u0131 \u015firketler zarar g\u00f6rd\u00fc\u011f\u00fcnde, sistem geli\u015ftiren sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n sorumlulu\u011funun ne zaman sorgulanabilece\u011fini somut olarak ele alal\u0131m.<\/p>\n\n\n\n<p>A\u015fa\u011f\u0131da, sistem sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n sorumlulu\u011funun sorguland\u0131\u011f\u0131 ger\u00e7ek dava \u00f6rneklerine dayanarak a\u00e7\u0131klama yapaca\u011f\u0131z.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Gelistirme_Sirasindaki_Teknik_Seviyeye_Uygun_Onlemler_Aliniyor_mu\"><\/span>Geli\u015ftirme S\u0131ras\u0131ndaki Teknik Seviyeye Uygun \u00d6nlemler Al\u0131n\u0131yor mu?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Ger\u00e7ek bir dava durumunda, sistem sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n geli\u015ftirme s\u0131ras\u0131nda kamu kurumlar\u0131 veya sekt\u00f6r derneklerinin uyar\u0131lar\u0131na veya manuellerine uygun g\u00fcvenlik \u00f6nlemlerini uygulay\u0131p uygulamad\u0131\u011f\u0131 \u00f6nemlidir.<\/p>\n\n\n\n<p>Siber sald\u0131r\u0131 sonucu olu\u015fan zararlar i\u00e7in, sistem sa\u011flay\u0131c\u0131s\u0131na zarar tazminat\u0131 \u00f6deme emri veren a\u015fa\u011f\u0131daki gibi dava \u00f6rnekleri bulunmaktad\u0131r.<\/p>\n\n\n\n<div class=\"wp-block-group has-background is-layout-constrained wp-block-group-is-layout-constrained\" style=\"background-color:#f4f4f4\"><div class=\"wp-block-group__inner-container\">\n<p>\u3010Dava \u00d6rne\u011fi\u3011Tokyo B\u00f6lge Mahkemesi, Heisei 26.1.23 (2014.1.23)<br>Kullan\u0131c\u0131: X \u015eirketi, i\u00e7 dekorasyon malzemeleri perakendecisi ve posta sipari\u015f \u015firketi<br>Sa\u011flay\u0131c\u0131: Web sipari\u015f sistemi tasar\u0131m\u0131 ve bak\u0131m\u0131n\u0131 \u00fcstlenen Y \u015eirketi<\/p>\n\n\n\n<p>M\u00fc\u015fteri kredi kart\u0131 bilgilerinin 7.000 adedinin siber sald\u0131r\u0131 sonucu s\u0131zd\u0131r\u0131ld\u0131\u011f\u0131 olay<\/p>\n\n\n\n<p>\u25a0Karar<br>Sistem sa\u011flay\u0131c\u0131 taraf\u0131na yakla\u015f\u0131k 20 milyon yen zarar tazminat\u0131 emri<br>Geli\u015ftirme \u00fccretini a\u015fan yakla\u015f\u0131k 2 milyon yen kabul edildi<br>X \u015eirketi&#8217;nin de kusuru kabul edildi ve %30 kusur indirimi uyguland\u0131<\/p>\n\n\n\n<p>\u25a0Gerek\u00e7e<br>\u30fbSistem sa\u011flay\u0131c\u0131n\u0131n o d\u00f6nemki teknik seviyeye uygun g\u00fcvenlik \u00f6nlemlerini uygulama y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fcn\u00fc ihmal etti.<br>\u30fbSistem sa\u011flay\u0131c\u0131 taraf\u0131ndan risk a\u00e7\u0131klamas\u0131 almas\u0131na ra\u011fmen \u00f6nlemleri ihmal eden kullan\u0131c\u0131 \u015firketin de kusuru oldu\u011fu kabul edildi ve %30 kusur indirimi uyguland\u0131.<\/p>\n<\/div><\/div>\n\n\n\n<p>2014 y\u0131l\u0131nda, &#8220;SQL Injection sald\u0131r\u0131lar\u0131&#8221; siber sald\u0131r\u0131 y\u00f6ntemi olarak yayg\u0131nd\u0131 ve Japonya Ekonomi, Ticaret ve Sanayi Bakanl\u0131\u011f\u0131 da &#8220;<a href=\"https:\/\/www.meti.go.jp\/policy\/it_policy\/privacy\/kanki.html\" target=\"_blank\" rel=\"noreferrer noopener\">Ki\u015fisel Bilgi Koruma Yasas\u0131&#8217;na Dayal\u0131 Ki\u015fisel Veri G\u00fcvenlik Y\u00f6netim \u00d6nlemlerinin Uygulanmas\u0131 \u0130\u00e7in Uyar\u0131[ja]<\/a>&#8221; adl\u0131 bir belge yay\u0131nlayarak siber riskleri belirtmi\u015f ve sistem g\u00fc\u00e7lendirmesi \u00e7a\u011fr\u0131s\u0131nda bulunmu\u015ftu.<\/p>\n\n\n\n<p>Karar, \u00f6nlem almayan sistem sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n sorumlulu\u011funu kabul ederek zarar tazminat\u0131 emri verirken, kullan\u0131c\u0131 \u015firketin de kusuru oldu\u011funu kabul etti ve %30 kusur indirimi uygulad\u0131.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Kullanici_Tarafi_Sirketin_Kusuru_Var_mi\"><\/span>Kullan\u0131c\u0131 Taraf\u0131 \u015eirketin Kusuru Var m\u0131?<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Sistem geli\u015ftirme i\u015fini veren kullan\u0131c\u0131 taraf\u0131 \u015firketin de yerine getirmesi gereken y\u00fck\u00fcml\u00fcl\u00fckleri vard\u0131r ve kusuru varsa t\u00fcm sorumlulu\u011fu \u00fcstlenebilir.<\/p>\n\n\n\n<p>A\u015fa\u011f\u0131da, bir siber sald\u0131r\u0131 \u00f6rne\u011fi olmamas\u0131na ra\u011fmen, kullan\u0131c\u0131 taraf\u0131 \u015firketin t\u00fcm sorumlulu\u011funu kabul ederek zarar tazminat\u0131 emri veren bir dava \u00f6rne\u011fi bulunmaktad\u0131r.<\/p>\n\n\n\n<div class=\"wp-block-group has-background is-layout-constrained wp-block-group-is-layout-constrained\" style=\"background-color:#f4f4f4\"><div class=\"wp-block-group__inner-container\">\n<p>\u3010Dava \u00d6rne\u011fi\u3011Asahikawa B\u00f6lge Mahkemesi, Heisei 29.8.31 (2017.8.31)<\/p>\n\n\n\n<p>Kullan\u0131c\u0131: \u00dcniversite Hastanesi<br>Sa\u011flay\u0131c\u0131: \u00dcniversite hastanesinden elektronik t\u0131bbi kay\u0131t sistemi geli\u015ftirme talebi alan sistem \u015firketi<\/p>\n\n\n\n<p>Proje ba\u015flad\u0131ktan hemen sonra, sahadaki doktorlar taraf\u0131ndan ek talepler pe\u015f pe\u015fe geldi.<br>Talepler durmad\u0131 ve geli\u015ftirme gecikti, \u00fcniversite hastanesi gecikmeyi gerek\u00e7e g\u00f6stererek s\u00f6zle\u015fmeyi feshetti.<\/p>\n\n\n\n<p>\u25a0Karar (Temyiz Mahkemesi)<br>\u00dcniversite hastanesine yakla\u015f\u0131k 1.4 milyar yen tazminat emri<br>Her iki tarafa da tazminat emri veren ilk derece mahkemesi karar\u0131 bozuldu<\/p>\n\n\n\n<p>\u25a0Gerek\u00e7e<br>\u30fbSa\u011flay\u0131c\u0131 taraf\u0131n\u0131n ek taleplere yan\u0131t verirse teslim tarihine yeti\u015femeyece\u011fi uyar\u0131s\u0131na, hastane taraf\u0131n\u0131n kulak asmamas\u0131 sorun olarak g\u00f6r\u00fcld\u00fc.<\/p>\n<\/div><\/div>\n\n\n\n<p>Bu dava, sistem geli\u015ftirme gecikmesi nedeniyle kullan\u0131c\u0131 taraf\u0131n\u0131n s\u00f6zle\u015fmeyi feshetti\u011fi ve kullan\u0131c\u0131 taraf\u0131 ile sa\u011flay\u0131c\u0131 taraf\u0131n\u0131n her birinin kar\u015f\u0131 taraftan tazminat talep etti\u011fi bir olayd\u0131r.<\/p>\n\n\n\n<p>Kararda, sistem sa\u011flay\u0131c\u0131 taraf\u0131ndan yap\u0131lan uyar\u0131ya kullan\u0131c\u0131 taraf\u0131n\u0131n kulak asmamas\u0131n\u0131n geli\u015ftirme gecikmesinin nedeni olarak kabul edildi ve kullan\u0131c\u0131 taraf\u0131na %100 sorumluluk verildi ve kullan\u0131c\u0131dan gelen talep reddedildi. Sa\u011flay\u0131c\u0131 taraf\u0131nda, teslim tarihine yeti\u015febilmek i\u00e7in projenin ilerlemesini y\u00f6netme &#8220;proje y\u00f6netim y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc&#8221; bulunmaktad\u0131r. Kullan\u0131c\u0131 taraf\u0131nda ise &#8220;i\u015fbirli\u011fi y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc&#8221; bulunur ve bu y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc ihmal ederse, t\u00fcm sorumlulu\u011fu \u00fcstlenme durumu da olabilir ve ger\u00e7ek dava durumunda tazminat sorumlulu\u011fu bu orana g\u00f6re belirlenir.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Guvenli_Sistem_Gelistirmenin_3_Anahtari\"><\/span>G\u00fcvenli Sistem Geli\u015ftirmenin 3 Anahtar\u0131<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2023\/02\/shutterstock_2004030665.jpg\" alt=\"G\u00fcvenli Sistem Geli\u015ftirmenin 3 Anahtar\u0131\" class=\"wp-image-58929\" \/><\/figure>\n\n\n\n<p>Siber risklere kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak i\u00e7in, hem kullan\u0131c\u0131lar\u0131n hem de tedarik\u00e7ilerin birlikte \u00f6nlem almas\u0131 \u00f6nemlidir.<\/p>\n\n\n\n<p>A\u015fa\u011f\u0131da, tedarik\u00e7ilerin ve kullan\u0131c\u0131lar\u0131n her birinin alabilece\u011fi \u00f6nlemleri a\u00e7\u0131kl\u0131yoruz.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Kamu_Kurumlarinin_Belirttigi_Siber_Riskleri_Anlamak\"><\/span>Kamu Kurumlar\u0131n\u0131n Belirtti\u011fi Siber Riskleri Anlamak<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Sistem tedarik\u00e7ileri, Ekonomi, Ticaret ve Sanayi Bakanl\u0131\u011f\u0131 veya Japon Bilgi \u0130\u015flem Geli\u015ftirme Ajans\u0131 (IPA) gibi uzman kurulu\u015flar\u0131n yay\u0131nlad\u0131\u011f\u0131 y\u00f6nergeleri kontrol ederek, mevcut siber riskleri ve bunlara kar\u015f\u0131 al\u0131nabilecek \u00f6nlemleri anlamal\u0131 ve bu bilgiler \u0131\u015f\u0131\u011f\u0131nda geli\u015ftirme ve i\u015fletmeye devam etmelidir.<\/p>\n\n\n\n<p>Ayr\u0131ca, sadece tedarik\u00e7iler de\u011fil, kullan\u0131c\u0131lar da bu y\u00f6nergeleri anlamal\u0131 ve g\u00fcvenlik seviyesi h\u00fck\u00fcmlerini s\u00f6zle\u015fmeye eklemeli ve y\u00f6nergelere uygun geli\u015ftirme ve i\u015fletmeyi talep etmelidir.<\/p>\n\n\n\n<p>Referans: Ekonomi, Ticaret ve Sanayi Bakanl\u0131\u011f\u0131 | Siber G\u00fcvenlik Y\u00f6netim K\u0131lavuzu Ver 2.0<\/p>\n\n\n\n<p>Referans: <a href=\"https:\/\/www.ipa.go.jp\/security\/vuln\/websecurity.html\" target=\"_blank\" rel=\"noreferrer noopener\">Bilgi \u0130\u015flem Geli\u015ftirme Ajans\u0131 | G\u00fcvenli Bir Web Sitesi Nas\u0131l Olu\u015fturulur[ja]<\/a><\/p>\n\n\n\n<p>\u00d6zellikle, finans sekt\u00f6r\u00fcnde, yasalar ve y\u00f6nergeler y\u00fcksek d\u00fczeyde g\u00fcvenlik gerektirebilir. Kripto varl\u0131k g\u00fcvenlik \u00f6nlemleri hakk\u0131nda ayr\u0131nt\u0131l\u0131 bilgi a\u015fa\u011f\u0131da verilmi\u015ftir.<\/p>\n\n\n\n<p>\u0130lgili Makale: <a href=\"https:\/\/monolith.law\/corporate\/cryptoassets-security\" target=\"_blank\" rel=\"noreferrer noopener\">Kripto Varl\u0131k (Sanal Para) G\u00fcvenlik \u00d6nlemleri Nedir? 3 S\u0131z\u0131nt\u0131 Olay\u0131 ile A\u00e7\u0131klama[ja]<\/a><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Her_Iki_Tarafin_da_Guvenlik_Gerekliligini_Anlamasi\"><\/span>Her \u0130ki Taraf\u0131n da G\u00fcvenlik Gereklili\u011fini Anlamas\u0131<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Ekonomi, Ticaret ve Sanayi Bakanl\u0131\u011f\u0131&#8217;n\u0131n &#8220;Siber G\u00fcvenlik Y\u00f6netim K\u0131lavuzu Ver 2.0&#8243;nda, &#8220;Siber g\u00fcvenlik \u00f6nlemleri bir y\u00f6netim sorunudur&#8221; a\u00e7\u0131k\u00e7a belirtilmi\u015ftir.<\/p>\n\n\n\n<p>G\u00fcvenlik konusunda bilgi sahibi olmamak, tedarik\u00e7ilere tamamen b\u0131rakmak anlam\u0131na gelmez. \u015eirketler de bu risk y\u00f6netimini i\u015fletmenin bir par\u00e7as\u0131 olarak d\u00fc\u015f\u00fcnmeli ve \u00f6nlemleri almak i\u00e7in sorumluluk ta\u015f\u0131mal\u0131d\u0131r.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Her_Iki_Tarafin_da_Siber_Saldirilara_Karsi_Birlikte_Mucadele_Etmesi\"><\/span>Her \u0130ki Taraf\u0131n da Siber Sald\u0131r\u0131lara Kar\u015f\u0131 Birlikte M\u00fccadele Etmesi<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Siber sald\u0131r\u0131ya u\u011frad\u0131\u011f\u0131nda, hem sipari\u015f veren taraf hem de tedarik\u00e7i taraf, sorumlulu\u011fu birbirine atmak yerine, zarar\u0131 en aza indirme \u00e7abas\u0131 i\u00e7inde olmal\u0131d\u0131r.<\/p>\n\n\n\n<p>Ne yaz\u0131k ki, sistem geli\u015ftirme sipari\u015f veren ve al\u0131c\u0131 aras\u0131nda, sipari\u015f verenin konumu genellikle daha g\u00fc\u00e7l\u00fc olur ve sistem geli\u015ftirme genellikle maliyet ve teslim s\u00fcresine odaklan\u0131r. Tedarik\u00e7i taraf, yeterli para ve zaman verilmeden, g\u00fcvenlik \u00f6nerileri sunsa bile kabul edilmeyebilir.<\/p>\n\n\n\n<p>Ancak, y\u00f6nergelerde, kullan\u0131c\u0131 \u015firketlerin g\u00fcvenlik \u00f6nlemlerini &#8220;maliyet&#8221; olarak de\u011fil, gelecekteki i\u015f faaliyetleri ve b\u00fcy\u00fcme i\u00e7in gerekli bir \u015fey olarak &#8220;yat\u0131r\u0131m&#8221; olarak g\u00f6rmeleri gerekti\u011fi belirtilmi\u015ftir.<\/p>\n\n\n\n<p>Sistem geli\u015ftirmede, tedarik\u00e7i ve kullan\u0131c\u0131n\u0131n e\u015fit konumda olmas\u0131 ve siber sald\u0131r\u0131lara kar\u015f\u0131 birlikte m\u00fccadele etmesi \u00f6nemlidir.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Ozet_Sistem_Gelistirme_Sozlesmesi_Olusturma_Icin_Bir_Avukata_Danisin\"><\/span>\u00d6zet: Sistem Geli\u015ftirme S\u00f6zle\u015fmesi Olu\u015fturma \u0130\u00e7in Bir Avukata Dan\u0131\u015f\u0131n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Siber sald\u0131r\u0131 sonucu zarar meydana geldi\u011finde, sistem geli\u015ftiren tedarik\u00e7inin siber risk \u00f6nlemlerini ihmal etti\u011fi gerek\u00e7esiyle, kullan\u0131c\u0131 \u015firket taraf\u0131ndan sorumluluk talep edilebilir.<\/p>\n\n\n\n<p>Ancak, tedarik\u00e7iye i\u015fbirli\u011fi y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fcn\u00fc ihmal eden kullan\u0131c\u0131 \u015firketin de sorumlulu\u011fu vard\u0131r.<\/p>\n\n\n\n<p>Siber sald\u0131r\u0131lar\u0131n zarar\u0131n\u0131 en aza indirmek i\u00e7in, s\u00f6zle\u015fmede sistem standartlar\u0131n\u0131 ve her birinin sorumluluk alan\u0131n\u0131 belirlemek gereklidir.<\/p>\n\n\n\n<p>Sistem geli\u015ftirme gibi s\u00f6zle\u015fmelerin olu\u015fturulmas\u0131nda, rehberin i\u00e7eri\u011fini ve mevcut siber riskleri anlamak i\u00e7in y\u00fcksek d\u00fczeyde uzman bilgisine sahip bir avukata dan\u0131\u015fmal\u0131s\u0131n\u0131z.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Buromuz_Tarafindan_Alinan_Onlemler\"><\/span>B\u00fcromuz Taraf\u0131ndan Al\u0131nan \u00d6nlemler<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Monolith Hukuk B\u00fcrosu, \u00f6zellikle IT ve hukuk alanlar\u0131nda y\u00fcksek uzmanl\u0131\u011fa sahip bir hukuk b\u00fcrosudur. Sistem geli\u015ftirme s\u00f6zle\u015fmeleri i\u00e7in s\u00f6zle\u015fme olu\u015fturulmas\u0131 gereklidir. B\u00fcromuz, Tokyo Borsas\u0131&#8217;nda listelenen \u015firketlerden erken a\u015fama start-up&#8217;lara kadar \u00e7e\u015fitli durumlar i\u00e7in s\u00f6zle\u015fme olu\u015fturma ve inceleme hizmetleri sunmaktad\u0131r. E\u011fer s\u00f6zle\u015fme ile ilgili bir sorununuz varsa, l\u00fctfen a\u015fa\u011f\u0131daki makaleye ba\u015fvurunuz.<\/p>\n\n\n\n<p>Monolith Hukuk B\u00fcrosu&#8217;nun hizmet verdi\u011fi alanlar: <a href=\"https:\/\/monolith.law\/systemdevelopment\" target=\"_blank\" rel=\"noreferrer noopener\">Sistem Geli\u015ftirme \u0130lgili Hukuki \u0130\u015fler[ja]<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Son y\u0131llarda, \u015firketlere y\u00f6nelik siber sald\u0131r\u0131lar art\u0131\u015f g\u00f6stermektedir. \u00d6zel Kar Amac\u0131 G\u00fctmeyen Kurulu\u015f Japon A\u011f G\u00fcvenli\u011fi Derne\u011fi (JNSA)&#8217;nin ara\u015ft\u0131rmas\u0131na g\u00f6re, ki\u015fisel bilgi s\u0131z\u0131nt\u0131 olaylar\u0131n\u0131 [&hellip;]<\/p>\n","protected":false},"author":32,"featured_media":64728,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[35,19],"acf":[],"_links":{"self":[{"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/posts\/61158"}],"collection":[{"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/comments?post=61158"}],"version-history":[{"count":4,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/posts\/61158\/revisions"}],"predecessor-version":[{"id":71944,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/posts\/61158\/revisions\/71944"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/media\/64728"}],"wp:attachment":[{"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/media?parent=61158"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/categories?post=61158"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/monolith.law\/tr\/wp-json\/wp\/v2\/tags?post=61158"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}