Artificial Intelligence Advisory
Legal risk analysis of artificial intelligence systems, preparation for compliance with the EU AI Act, and contractual structuring of products using AI.
Artificial intelligence is no longer merely a product output; it is a technology layer that has penetrated into companies' operations, human resources, customer service, and marketing processes. The AI Act, adopted by the EU in 2024 and entering into force progressively during 2025–2026, extends its scope to companies established in Turkey—provided their outputs reach users in the EU. While Turkey currently lacks dedicated AI legislation, the Turkish Data Protection Law (KVKK)'s provisions on automated decision-making and profiling, consumer protection law, and sector-specific regulations (for example, AI in healthcare) provide applicable frameworks in this area. Our firm supports clients throughout the legal lifecycle of AI systems.
Our service scope encompasses: compiling an inventory of AI systems used or provided by the client, determining the risk category of each under the AI Act (prohibited / high-risk / limited-risk / minimal-risk), preparing skeleton versions of mandatory technical documentation for high-risk systems (technical file, risk management document, data governance report, usage logs), and planning the compliance assessment process. Mapping training data sources, evaluating intellectual property and personal data dimensions, and designing transparency and explanation obligations for AI features presented to users (such as chatbot notification, deepfake labeling) are areas on which we regularly work.
In product contracts involving AI—customer agreements, supply contracts, data-sharing arrangements—we structure liability, intellectual property, output accuracy, model updates, and warranty provisions in alignment with the client's business model. In contracts with foundation model (GPAI) providers (such as OpenAI, Anthropic, Google, Mistral), assessing additional liability layers, usage restrictions, and copyright risk is part of this engagement. In projects using third-party models, we jointly conduct requests for compliance documentation from the supplier and report associated risks to the client.
Artificial intelligence law is a rapidly evolving field; producing manageable risk maps is a more practical approach than seeking definitive answers. Our firm provides clients with realistic compliance prioritization, roadmaps for translating the AI Act implementation timeline into operational projects, and preparation strategies for anticipated regulatory scenarios in Turkey.