BTK Reporting and Cybercrime Complaint Guide

Every year, thousands of businesses in Turkey suffer losses due to fake websites and cyber fraud. The hospitality sector is one of the areas where these attacks are particularly intense. So, where should you apply when you encounter such a situation? There are 4 main institutions in Turkey for cybercrime complaints: Information Technologies and Communication Authority (BTK), General Directorate of Security (EGM) Cybercrime Department, the Public Prosecutor's Office, and the National Cyber Incident Response Center (USOM). Each institution has a different jurisdiction and process flow.

Applying to the right institution with the right documents directly affects the speed at which your complaint is resolved. According to 2024 data, 68% of reports made to the BTK and classified in the correct category were processed within 48 hours. Applications in the wrong category were processed on average 12 business days later.

For hotel operators, the 4 main complaint channels can be summarized as follows:

• BTK Reporting Web (Ihbarweb): For phishing sites, fraudulent websites, and access block requests.
• EGM Cybercrime Unit: For digital fraud, phishing, and financial loss cases requiring criminal investigation.
• Public Prosecutor's Office: To file a criminal complaint and initiate criminal prosecution.
• USOM: For attacks on critical infrastructure and corporate cyber incidents.

Which channel you choose depends largely on the nature of your complaint. If a fake hotel site is involved, applying simultaneously to the BTK + EGM is the most effective strategy.

BTK Ihbarweb is Turkey's most comprehensive cyber content reporting platform. An average of more than 8,000 reports are made here daily. Follow these steps to report a fake hotel site:

1. Go to ihbarweb.org.tr. Click the "New Report" button.

2. Select a category. For a fake hotel site, select the "Fraud" or "Phishing" category. Choosing the wrong category extends the processing time.

3. Fill out the report form. Enter this information completely: full URL of the fake site, description of the violation (at least 200 words recommended), screenshot or video recording if available, and trademark registration number.

4. Enter your contact information. While anonymous reporting is possible, applications made by verifying identity are processed faster.

5. Keep your reference number. A reference number is given to you when the report is complete. You cannot track the process without this number.

Under Article 8 of Law No. 5651, the BTK can apply a temporary access block within 4 hours for catalog crimes (including phishing and fraud) without waiting for a prosecutor's decision.

If a financial loss has occurred due to a fake site or if evidence of the crime might disappear over time, filing a criminal complaint with the Public Prosecutor's Office is critical. Prepare the following for the application:

• Petition: Clearly state the relevant articles of the Turkish Penal Code (Art. 158 - aggravated fraud, Art. 243-244 - cybercrimes).
• Screenshots: Date and time stamped, with web archive references.
• Financial evidence: Bank receipts, payment slips, email correspondence if available.
• Trademark registration certificate: Document showing that the fake site has infringed your trademark.

You can apply to the prosecutor's office via e-Government (using the "Criminal Complaint and Reporting" service) or physically at the nearest Courthouse. Written applications to EGM Cybercrime units also provide guidance to the prosecutor's office.

USOM (National Cyber Incident Response Center) coordinates cyber threats at the corporate level. If a hotel faces an organized cyberattack targeting the entire chain, a notification to USOM can be critical. USOM's fake URL list is updated daily, and internet service providers use this list for automatic blocking.

To notify USOM, you can apply to [email protected] or use the form on the platform. Be sure to include technical evidence (IP address, DNS record, WHOIS data) in your notification.

Law No. 5651 offers a powerful mechanism for blocking harmful content targeting users in Turkey. For hotel businesses, the 2 most used articles are:

Article 9: Request for removal of content or blocking access that violates personal rights or private life. It requires simultaneous application to the content provider and the BTK.

Article 8A: Immediate removal of content that causes economic damage or involves fraud. It is one of the articles where the BTK can make a temporary decision without a prosecutor's order.

The result of the application must be notified within 24 hours at the latest; otherwise, the BTK may apply administrative sanctions.

Applying a parallel application strategy instead of relying on a single complaint channel shortens the completion time. Recommended flow:

1. Hour 0: Report to BTK Ihbarweb (for access block)
2. Hour 2: Send abuse notification to the hosting company (for site removal)
3. First 24 hours: Make a written application to the EGM Cybercrime unit
4. First 72 hours: File a criminal complaint with the Public Prosecutor's Office for financial loss, if any
5. Parallel process: UDRP or DMCA (for permanent domain closure)

We recommend reviewing our guides on legal processes against fake hotel sites and the takedown process. Our TURSAB verification and digital reservation content will also be useful for complaint procedures specific to the hotel sector.

For complaints in the phishing and fraud categories, the BTK processes them within 24-48 hours. In catalog crimes (5651 Art. 8), a temporary access block can be applied within 4 hours without a prosecutor's decision. Response time varies according to the nature of the complaint and the quality of the evidence presented.

BTK Ihbarweb allows anonymous applications. However, applications made by verifying identity are processed faster and can receive feedback. In criminal complaints made to the prosecutor's office, identity information is mandatory.

When applying to multiple institutions, one person should take over tracking, and all reference numbers and correspondence should be kept in a central file. In large hotels, the legal department or IT manager can take on this role.

A cybercrime complaint can produce very effective results when applied to the right institution with the right documents. The BTK reporting mechanism is a fast first response tool for access blocks. EGM and the prosecutor's office manage the criminal investigation process. A USOM notification provides protection at the sectoral level. To proactively protect your hotel business against fake sites and cyberattacks, you can explore RuuSafe's automated monitoring and reporting management features.