Internal Audit

Assessment of the Internal Control and Internal Audit Activities At Türk Telekom, an internal control environment is established for achieving strategic targets, ensuring effectiveness and efficiency of operations, ensuring the reliability and accuracy of financial information, protecting customer personal data and corporate assets, and ensuring compliance with laws, regulations, policies and procedures.

Türk Telekom’s Internal Audit Department conducts assurance and consultancy activities in Türk Telekom and all Group companies in an independent and objective manner by evaluating the effectiveness of risk management, internal control, and compliance with legislation and governance processes. In order to carry out its activities in an independent and objective manner, the Internal Audit Department works directly with the Audit Committee, which is a part of the Board of Directors, with the authority and responsibility derived from the principles approved by the Board of Directors.

During the audit activities, an assessment is conducted into the effectiveness of the existing internal controls which are carried out to reduce the business risks which may prevent the delivery of strategic targets. The reasons and effects of the control weaknesses determined during the audits are analysed and management action plans for eliminating problems are received from the related units and the Internal Audit Department monitors whether these actions are implemented in a timely manner. In addition to auditing activities, inspection and investigation activities are carried out where necessary.

The Department carries out its work in accordance with International Standards for the Professional Practice of Internal Auditing. As a part of compliance to those Standards an external assessment must be conducted at least once every five years by a qualified, independent assessor or assessment team from outside the organization. In this context, as a result of the quality assessment performed by an independent firm in 2017, Türk Telekom’s internal audit department received a positive opinion that its activities conform with the International Standards for the Professional Practice of Internal Auditing. The

Department attaches importance to the professional competence and improvement of its employees and encourages auditors to gain internationally recognized certificates in the field of auditing. The majority of the auditors hold internationally recognized certificates such as CIA (Certified Internal Auditor), CISA (Certified Information Systems Auditor), CFE (Certified Fraud Examiner) and CPA (Certified Public Accountant) certifications. Audit teams carry out financial, operational, information technologies and compliance audits according to their competencies.​