Could you share with us the story of your path to becoming an in-house counsel? What motivated you to choose this career path?

My journey to becoming an in-house counsel was catalysed by a fervent desire to wield influence and shape decisions – a drive rooted in my deep-seated ambition to be a catalyst for change. This aspiration was nurtured during my tenure at Yeditepe University Faculty of Law, where exposure to personal data protection and human rights issues ignited a passion for championing individual rights and freedoms. Post-graduation, I honed my expertise in data protection law at a law firm, but it quickly became apparent that I yearned for a more impactful role – one that would afford me the opportunity to steer the course of action, perceive the broader landscape, and effectuate change on a global scale. This impetus led me to Bosch Türkiye and the Middle East, where I assumed the mantle of a data protection lawyer, operating at the nexus of international affairs and human-centric legal frameworks.

Transitioning to an in-house counsel role epitomised the realisation of my aspirations, offering a platform to not only influence decision-making but also spearhead initiatives that align with my vision of effecting meaningful change. What propels me most is the prospect of wielding my influence to positively impact people’s lives, be it through advocating for data privacy rights or driving diversity and inclusion efforts within the organisation.

In your role as an in-house counsel, what are the main responsibilities and tasks you handle on a day-to-day basis?

As the sole information security and data protection lawyer for Bosch Türkiye and the Middle East, managing 15 countries and seven legal entities, my responsibilities span a wide range. This includes overseeing compliance processes, standardising global data protection projects, and conducting audits using my ISO27001 internal and lead auditor certifications.

Additionally, I serve as the primary contact for communication with data protection authorities, driving executive-level decisions and representing the organisation before regulatory bodies, ensuring effective compliance dialogue and maintaining our reputation. I play a vital role in assisting data breach investigations, aligning stakeholders for privacy projects, and managing Data Subject Rights (DSR) processes.

Moreover, I ensure cross-border data transfer compliance and spearhead initiatives for transparency and accountability. I provide comprehensive guidance on privacy requirements, conduct Records of Processing Activities (ROPA) entries, and handle VERBIS entries for Bosch Türkiye and other group companies. Additionally, I contribute to privacy-by-design processes and provide awareness activities such as training employees and creating content and articles for publication on internal and external communication channels of Bosch, fostering a culture of data protection.

What are some of the key challenges you have faced as a rising star in-house counsel, and how have you overcome them?

As a rising star in-house counsel, one of the key challenges I have encountered revolves around maintaining a delicate balance between serving as a consultant and navigating risk-based decision-making processes within the organisation. This challenge is particularly pronounced as the decisions made must align with the company’s risk appetite while respecting the autonomy of decision-makers. Despite all parties involved, including consultants and upper management, sharing the common goal of advancing the company’s interests, achieving this equilibrium requires careful navigation.

In the context of international group companies, additional complexities arise. Balancing the reputation of the parent company and other subsidiaries, soliciting relevant opinions from various stakeholders within the group, and managing the intricacies of a complex organisational structure further compound the challenge. Moreover, the process involves obtaining approvals, reporting, and synthesising vast amounts of information into succinct presentations for upper management.

Overcoming these challenges necessitates a multifaceted approach involving fostering open communication channels amongst stakeholders, cultivating a deep understanding of the company’s risk tolerance, leveraging effective project management techniques to streamline processes, and maintaining a solutions-oriented mindset while adapting flexibly to evolving circumstances. Ultimately, by striking a harmonious balance between consultation and decision-making and by implementing robust strategies for managing complexity, I have been able to overcome these challenges and contribute effectively as an in-house counsel.