Avast Gold Partner Kaspersky Silver Partner
+90 (216) 465 97 35 [email protected]
CybersecurityFirewall & VPNNetwork InfrastructureServer SystemsMicrosoft 365 & CloudEnterprise AntivirusEndpoint SecurityBackup & Disaster RecoveryNAS SolutionsManaged IT ServicesMonitoring & LoggingTechnical SupportCloud SolutionsNAC & 802.1X
Get a Quote
Service · Legal Compliance

Access Logging Solution

For businesses offering guest/open Wi-Fi, Law No. 5651-compliant internet-access logging. A hotspot welcome screen, user verification, time-stamped and signed records — an audit-ready setup that avoids penalty risk.

Hotspot / Captive PortalSMS / ID verificationTime-stamped logCloud or appliance
Get an Access Logging Quote
Law 5651 Scopelegal compliance
Hotspot / captive portalWIFI
User verification (SMS/ID)AUTH
Time-stamped & signed logLOG
Retention for the legal period2YIL
Reporting & queryingRAPOR

What is Law 5651 logging? Law No. 5651 requires businesses that provide internet access for commercial purposes (especially guest/open Wi-Fi) to retain access records in a time-stamped, integrity-protected form for a certain period. This is called "5651 logging" or "hotspot logging".

Bilgi Teknoloji Danışmanlık sets up hotspot/captive portal, user verification and secure log retention from a single source. That makes your business audit-ready and minimizes penalty risk. (This page is for information only and does not replace legal advice.)

Who Is Obligated?

Which businesses must do Law 5651 logging?

Businesses that provide internet access to customers, guests or visitors generally fall under the "mass-use provider" category.

Cafe & restaurant

Cafes, restaurants and bars offering open/guest Wi-Fi to customers.

Hotel & accommodation

Hotels, guesthouses and holiday resorts providing internet to guests.

Store & mall

Retail stores and shopping malls offering free Wi-Fi.

Office & business

All corporate businesses offering guest/staff internet access.

Hospital & clinic

Healthcare facilities providing internet to patients and visitors.

Education & training

Educational institutions providing internet to students and visitors.

Solution Components

What does our Law 5651 logging solution cover?

An end-to-end, managed logging infrastructure, from the welcome screen to secure retention.

Hotspot / Captive Portal

A welcome screen for guest Wi-Fi; internet access is blocked until the user is verified.

User verification

Identification via SMS, national ID or e-Government; "who connected and when" is recorded.

Time-stamped & signed log

Access records are stored immutably with a timestamp and signature.

Legal retention period

Records are kept secure and accessible for the period required by regulation.

Reporting & querying

On request, records are queried and reported quickly; you stay audit-ready.

Security & privacy

Logs are stored encrypted and access-controlled; processed in line with data-protection law.

Self-Service Security

Run your own security tests with a credit system

With the credit-based pentest panel included in our Law 5651 logging solution, your business can run automated penetration tests and vulnerability scans on its own systems anytime.

What is credit-based pentesting? A self-service security offering on a pay-as-you-go basis, where businesses buy credits in advance and run automated security tests themselves on the server, network and web assets they're authorized for.

Tests are run only on the business's own assets, which it owns or is authorized for, and only with authorization.

Step 1

Add Credits

Buy as many test credits as you need. Pay as you go; no monthly commitment.

Step 2

Define Target

Define your own server, network or web assets to test from the panel.

Step 3

Run the Test

An automated pentest / vulnerability scan starts with one click; credits are deducted only when you run it.

Step 4

Review the Report

Get a clear report with the vulnerabilities found, their risk level and remediation advice.

Pay as you go

Spend only what your credits cover instead of expensive one-off pentest packages. The budget is yours.

Under your control

Start a test yourself whenever you want. Instant security checks without waiting for an external team.

Periodic testing

Re-scan after every change; measure your security continuously, not just once.

Clear reporting

Without drowning in jargon: which vulnerability, how risky and how to fix it.

Set up your own pentest panel

Learn about credit packages and the self-service security-testing panel; let's find the right starting point for your business.

Get a Credits & Panel Quote Message on WhatsApp
Why Us?

Audit-ready, compliant logging

Just keeping logs isn't enough; the integrity, security and queryability of records matter. We size, build and manage the solution to fit your business.

Who it fits

Single-branch businessesMulti-location chainsOffices offering guest Wi-FiHotel & accommodationCafe, restaurant, mall

Key advantages

  • Compliance & avoiding penalty risk

    Be prepared for audits and possible investigations with compliant logging.

  • Immutable records

    Timestamps and signatures preserve the integrity and legal validity of records.

  • Appliance or cloud option

    An on-site appliance or a managed cloud-based solution to suit your business.

  • Compliant data processing

    Personal data is processed only as needed, securely and with a privacy notice.

Is your business compliant with Law 5651?

Let's assess your current situation for free and prepare a suitable (cloud or appliance) logging solution and quote.

Free Assessment Call Now
Related Services

Services that go live alongside Law 5651

Network Infrastructure

Enterprise Wi-Fi and guest-network setup.

Explore

NAC & 802.1X

Network access control, PacketFence & FreeRADIUS.

Explore

Monitoring & Logging

System monitoring and logging with Zabbix.

Explore

Firewall & VPN

Secure network and logging integration with FortiGate.

Explore
FAQ

Common questions about Law 5651 logging

Your business buys as many test credits as it needs. Each time you run a security test (pentest/vulnerability scan), credits are deducted; when you don't, there's no spend. This gives you a flexible, pay-as-you-go model instead of expensive one-off packages. Tests are run only on your own authorized assets.
Law No. 5651 governs the keeping of certain records of internet access. Businesses providing internet for commercial purposes (especially guest/open Wi-Fi) may be obliged to retain access records in a time-stamped, integrity-protected form for a certain period. The scope of the obligation can vary by business; for clarity we recommend seeking legal advice.
In general, businesses providing internet access to customers, guests or visitors (cafes, restaurants, hotels, stores, malls, offices, hospitals, courses, etc.) are considered "mass-use providers" and are expected to keep access records.
Businesses that fail to comply may face sanctions such as administrative fines and may bear responsibility for being unable to produce records during an incident/investigation. That's why a compliant logging infrastructure matters.
The retention period is determined by regulation and business type. We configure our solution to match the applicable periods and keep records secure and accessible.
No; it's compliant when processed proportionately and as required by law. We show a privacy notice on the hotspot welcome screen, collect only the necessary data and store it securely.
Both are possible. For small businesses we recommend managed cloud-based logging; for larger/multi-location setups, an on-site appliance or a hybrid arrangement.
Compliant Logging

Let's solve your Law 5651 logging together

From hotspot setup to secure retention, from a single source. Start with a free assessment.

Get an Access Logging Quote