Previously, Turkish law prohibited the transfer of personal data obtained through electronic communications services from Turkey to other countries. After this prohibition was annulled through judicial review, the Turkish Parliament in April 2015 adopted a new standard for the electronic communications sector that permits the international transfer of personal data with the data subject’s explicit consent. Reportedly, the new law also codifies several standards that previously existed in regulation, including a requirement to adopt security measures for personal data, a requirement to obtain informed consent to retain and access data in users’ terminal equipment for purposes other than providing electronic communications services, a requirement for data subject consent or another legal basis in order to record or intercept electronic communications, and a rule that personal data may only be processed in good faith and as permitted by law.