Bankacılık Düzenleme ve Denetleme Kurumu (BDDK/BRSA)

Overview

The Banking Regulation and Supervision Agency (Bankacılık Düzenleme ve Denetleme Kurumu - BDDK or BRSA in English) is an independent agency of the Republic of Turkey responsible for regulating and supervising the banking system.

Establishment:

• Established: 1999
• Operational commencement: 2000
• Constitutional status: Independent public legal entity

Current Chairman: Ahap Kavcıoğlu (serving since June 2023)

Supervisory Scope:

BDDK oversees nearly 200 regulated entities, including:

• Domestic banks
• Foreign bank branches and representative offices
• Finance companies
• Financial leasing companies
• Factoring companies
• Financial holding companies
• Asset management companies
• Card issuers
• Electronic money institutions
• Payment institutions

Core Mandate:

• Regulate and supervise the banking system
• Protect the rights of account holders
• Ensure systematic operation of banks
• Prevent unfair competition
• Ensure efficient credit system functioning
• Provide reliability and stability in financial markets

Basic Identity

Classification

Inclusion Justification

What This Entity Oversees

Banking Regulation and Supervision Agency

Regulatory Framework:

Licensing and Authorization:

• BDDK sole authority to grant banking licenses
• Merger and acquisition approval requirements
• Branch opening authorization
• Foreign bank operations permits
• Conditions for license revocation

Bank Categories:

• Commercial banks
• Development and investment banks
• Deposit banks
• Participation banks (Islamic banking)
• Foreign bank branches
• Representative offices

Supervisory Approach:

• Risk-based supervision methodology
• Consolidated supervision of banking groups
• Cross-border supervision coordination
• Off-site monitoring and analysis
• On-site examination programs

Prudential Standards:

• Minimum capital requirements
• Liquidity standards
• Large exposure limits
• Related party transaction controls
• Operational risk management
• Business continuity and disaster recovery

Governance Standards:

• Board of directors composition requirements
• Independence criteria for board members
• Professional competency standards
• Internal control system requirements
• Risk management framework
• Whistleblower protection mechanisms

Capital Adequacy

Basel Framework Implementation:

Basel III Compliance:

• Full implementation of Basel III standards
• Capital buffers (capital conservation buffer, countercyclical buffer)
• Regulatory capital ratios

Capital Requirements:

• Minimum Common Equity Tier 1 (CET1) ratio: 4.5%
• Tier 1 capital ratio: 6%
• Total capital ratio: 8%
• Additional buffer requirements for systemic importance

Risk Weighting:

• Standardized approach for credit risk
• Internal Ratings-Based (IRB) approach (approved institutions)
• Operational risk capital requirements
• Market risk capital calculations

Capital Management:

• Dividend restrictions based on capital levels
• Capital conservation planning
• Stress testing requirements
• Regular supervisory review

Macroprudential Tools:

• Countercyclical capital buffer activation
• Systemic risk buffer for important institutions
• Loan-to-value (LTV) ratio restrictions
• Debt service-to-income (DTI) ratio limits

Digital Banking

Regulatory Framework:

Digital Bank Authorization:

• Separate licensing category from traditional banks
• BDDK authorization for digital bank operations
• Meets Basel III capital and liquidity requirements
• Enhanced operational and cybersecurity standards

Operational Scope:

• Permitted to serve:
• Financial consumers
• Small and medium-sized enterprises (SMEs)
• May extend loans to:
• Large-sized enterprises
• Other banks
• Selected institutional borrowers

Branch Requirements:

• Must maintain at least one physical office
• Cannot operate as fully distributed network
• Digital as primary service delivery channel
• Physical office for regulatory compliance

Support Service Authorization:

• May utilize support service organizations
• Outsourcing framework defined by BDDK
• Core functions remain in-house
• Supervisory oversight of outsourced services

Technology and Cybersecurity:

• Rigorous cybersecurity standards
• Data protection compliance (KVKK - Turkish Data Protection Law)
• Business continuity and disaster recovery
• Systems architecture review and approval
• Third-party service provider oversight

Customer Protection:

• Digital identity verification
• Enhanced KYC procedures
• Fraud prevention systems
• Customer dispute resolution
• Deposit insurance coverage (where applicable)

Anti-Money Laundering Framework:

Primary Responsibility Sharing:

• BDDK: Banking sector AML/CFT supervision
• MASAK (Financial Crimes Investigation Board): Overall AML/CFT policy and coordination
• Coordinated enforcement approach

BDDK Responsibilities:

• AML/CFT compliance oversight for banks and payment institutions
• Transaction monitoring system approval and review
• Customer identification and verification standards
• Suspicious transaction reporting requirements
• Staff training and awareness requirements
• Reporting to MASAK on suspicious activities

Compliance Requirements:

Know Your Customer (KYC) Standards:

• Customer identification procedures
• Beneficial ownership verification
• Source of funds verification
• Document retention (minimum 10 years)
• Enhanced due diligence for high-risk customers

Customer Due Diligence (CDD):

• Risk-based approach to customer assessment
• Ongoing monitoring of customer accounts
• Update of customer information periodically
• Record-keeping of due diligence procedures

Enhanced Due Diligence (EDD):

• High-risk customer categories
• Politically exposed persons (PEPs)
• Correspondent banking relationships
• Complex corporate structures
• Beneficial ownership tracking

Transaction Monitoring:

• Systematic monitoring of all transactions
• Unusual transaction pattern detection
• Real-time or near-real-time reporting capability
• System validation and testing requirements
• Regular reviews of monitoring effectiveness

Suspicious Activity Reporting (SAR):

• Mandatory reporting to MASAK
• Timely filing requirements
• Report completeness and accuracy
• Internal record-keeping
• Employee protection for reporters

Recent Updates (End 2024):

• Enhanced KYC/KYB processes updated
• Simplified measures removed
• Face-to-face/digital KYC/KYB mandatory
• Exceptions for anonymous prepaid instruments only

International Participation

Basel Committee Participation:

Basel Committee on Banking Supervision (BCBS)

• Observer status
• Participation in standards development
• Regular compliance assessments
• Member discussion and working groups

Multilateral Cooperation:

Financial Stability Board (FSB):

• G20 member through Turkish government participation
• Participation in FSB working groups
• International regulatory coordination

Bilateral Relationships:

• Supervisory cooperation agreements with major jurisdictions
• Memoranda of Understanding (MoUs) for cross-border supervision
• Information sharing protocols
• Joint examination procedures

Regional Cooperation:

• Central Asian banking regulators coordination
• Middle East and North Africa (MENA) banking supervisory forums
• European banking sector coordination (where applicable)

Standards and Alignment:

• Basel III full implementation
• IOSCO Principles for securities regulation (coordinated with CMB)
• International Accounting Standards (IFRS) requirement
• AML/CFT standards (FATF recommendations)

Regulatory Powers

Enforcement Authority:

BDDK possesses comprehensive enforcement powers to ensure banking system stability and regulatory compliance.

Enforcement Tools:

• Administrative fines
• Cease and desist orders
• Operating restrictions
• Capital requirements increases
• Dividend distribution restrictions
• Remediation orders
• License suspension or revocation

Supervisory Actions:

• Warning letters
• Regulatory guidance letters
• Compliance examination actions
• Management change requirements
• Governance improvements
• Business model restrictions

Penalties and Sanctions:

• Graduated penalty structure
• Public disclosure of enforcement actions
• Reputation impact considerations
• Coordination with criminal authorities where appropriate

Investigation Procedures:

• On-site examination authority
• Document and record access
• Interview and interrogation authority
• Account and transaction review
• Third-party information requests

Administrative Procedure:

• Due process protections
• Right to response and appeal
• Administrative tribunal review process
• Court appeal mechanisms
• Enforcement decision publication

Regulatory Role and Function

Legal Foundation

Primary Legislation:

Banking Law No. 5411

• Enacted: June 19, 2006
• Comprehensive framework for banking regulation and supervision
• Establishes BDDK authority and responsibilities
• Latest update: August 2022 (Third Edition)
• Key areas covered:
• Banking definitions and operations
• Capital adequacy and operational standards
• Supervisory procedures and enforcement
• Consumer protection measures
• AML/CFT requirements

Constitutional Foundation:

• Constitutional provision granting central authority regulatory power
• BDDK operates as independent regulatory body
• Subject to administrative law and Banking Law provisions
• Accountability to Parliament on regulatory matters

Organizational Structure:

• Banking Regulation and Supervision Board (primary decision-making body)
• Chairman's Office (executive functions)
• Functional departments for specialized supervision

Statutory Objectives:

• Prudential regulation (capital, liquidity, operational risk)
• Systemic risk mitigation
• Consumer protection and transparency
• Combating money laundering and terrorist financing
• Financial inclusion and innovation

Licensing and Authorization Relevance

Regulatory Framework:

Payment Institutions Category:

• Separate from traditional banks
• Minimum capital requirement: 25 million TRY
• BDDK authorization mandatory
• Specialized operational focus

Electronic Money Institutions:

• Minimum capital requirement: 50 million TRY
• BDDK licensing required
• Reserve requirements
• Customer fund segregation

Qualification Requirements:

Shareholders:

• Must meet BDDK reliability and integrity criteria
• Good repute and financial standing
• No criminal convictions
• Beneficial ownership transparency
• Fit and proper assessment

Management and Board:

• Board members must meet competency standards
• Experience in finance, law, or technology required
• At least one independent director
• No conflicts of interest
• Professional qualifications verified

Operational Requirements:

• Secure operational systems
• Data protection and cybersecurity
• Business continuity planning
• Compliance management function
• Internal audit function
• Risk management systems

Customer Protection:

• Customer identification and verification (KYC)
• AML/CFT compliance mandatory
• Transaction monitoring and suspicious reporting
• Dispute resolution procedures
• Transparent fee disclosure

Payments and Money Movement Relevance

The Bankacılık Düzenleme ve Denetleme Kurumu (BDDK/BRSA) has the following relevance to payments and money movement in Turkey:

Payment Systems Governed or Overseen

The Bankacılık Düzenleme ve Denetleme Kurumu (BDDK/BRSA) has the following relationship to payment infrastructure in Turkey:

This entity's role in payment systems is primarily regulatory and supervisory rather than operational. It does not directly operate national payment infrastructure but contributes to the regulatory framework governing payment activities in Turkey.

Relationship to Other Regulators

The Bankacılık Düzenleme ve Denetleme Kurumu (BDDK/BRSA) operates within Turkey's broader financial regulatory architecture and maintains relationships with:

Geography and Jurisdiction Notes

Important Departments and Divisions

Key Public Resources

Executive Leadership:

• Chairman: Ahap Kavcıoğlu (since June 2023)
• Vice Chairmen: Multiple functional areas
• Board Members: Banking Regulation and Supervision Board composition

Functional Departments:

• Banking Supervision Department
• Capital Adequacy and Risk Management Department
• Payment Systems and Electronic Money Department
• Enforcement Department
• Consumer Protection and Transparency Department
• International Relations Department
• AML/CFT Compliance Department

Contact Information:

Headquarters:

Bankacılık Düzenleme ve Denetleme Kurumu (BDDK)

Ankara, Türkiye

Main Office Address:

Ankara Subesi

Hacı Bayram Mahallesi, Selanik Caddesi No:5

06050 Ankara, Türkiye

Official Website: https://www.bddk.org.tr/

Regulatory Communications:

• General inquiries: Available through website contact portal
• Licensing applications: Through official portal
• Compliance reporting: Secure BDDK reporting portal
• Enforcement notifications: Official decision notices

Key Portal Access:

• Bank reporting system (METEK): For regulatory reporting
• Supervision portal: For on-site examination coordination
• License application portal: For authorization requests
• Consumer complaints: Dedicated intake system

Regulatory Bulletin Contacts:

• Regulatory announcements: Mevzuat (Legislation) section of website
• Communiqués and guidance: Regularly published on BDDK website
• Press releases: Media relations office

Notes on Naming and Language