Competition Law Compliance for Turkish Startups and Technology Companies

Introduction

Competition law compliance is no longer a legal issue only for large corporations. Turkish startups, scaleups, SaaS companies, fintech businesses, gaming studios, healthtech ventures, e-commerce platforms, marketplaces, artificial intelligence companies, digital advertisers, app developers and technology investors must also understand Turkish Competition Law from the earliest stage of business growth.

The main statute is Law No. 4054 on the Protection of Competition. Its purpose is to prevent agreements, decisions and practices that restrict competition in goods and services markets, prevent abuse of dominance, and regulate mergers and acquisitions that may significantly lessen competition. The law applies to undertakings operating in or affecting markets in Turkey, which means that startups and technology companies may be subject to Turkish competition rules even when they are small, foreign-funded, online-only or part of a multinational group.

For technology companies, competition compliance is particularly important because digital markets can grow quickly. A startup may begin as a small innovative business, but it may soon hold valuable data, control access to users, create network effects, develop pricing algorithms, become a marketplace intermediary or attract acquisition interest from a larger platform. These features can create competition law risks long before the company becomes a traditional “large corporation.”

1. Why Startups Need Competition Compliance Early

Many founders assume that competition law matters only after a company becomes dominant. This is a mistake. Some competition law rules apply regardless of company size. For example, a startup can violate Article 4 of Law No. 4054 if it agrees with competitors to fix prices, allocate customers, exchange sensitive information, coordinate wages, restrict hiring, or manipulate online advertising. Article 4 applies to anti-competitive agreements and concerted practices, not only to dominant undertakings.

Startups often operate in close ecosystems. Founders know each other, employees move between companies, investors sit on multiple boards, accelerators bring competitors together, and sectoral WhatsApp groups or Slack communities are common. These networks can create risk if commercially sensitive information is exchanged casually.

A young technology company should therefore treat competition compliance as part of corporate governance. It should be included in investor due diligence, employee training, commercial agreements, data governance, platform rules, HR policies and M&A planning.

2. Article 4 Risks: Agreements Between Competitors

Article 4 of Law No. 4054 prohibits agreements, concerted practices and decisions of associations of undertakings that restrict competition. For startups, the most common Article 4 risks include price coordination, customer allocation, market sharing, bid rigging, no-poach agreements, wage coordination, sensitive information exchange and coordination through platforms or trade associations.

A startup should not discuss future prices, planned discounts, commission rates, customer lists, investor pipeline, product launch timing, salary increases or hiring strategies with competitors. Even informal messages can become evidence. A short message such as “let’s not discount below this level” or “we will not hire from each other” may create serious risk.

Technology founders should also be careful during accelerator programs, startup events and sector meetings. Discussing general industry challenges is usually acceptable. Discussing how competitors will price, hire, bid or divide customers is not.

3. Data Sharing and Information Exchange

Data is central to technology businesses. Startups collect user data, transaction data, pricing data, advertising data, payment data, logistics data, health data, financial data, search data and behavioral data. Data can create efficiency and innovation, but it can also create competition risks.

If competitors share commercially sensitive data, the exchange may reduce uncertainty and facilitate coordination. Sensitive data may include current or future prices, costs, customer-specific terms, sales volumes, conversion rates, ad performance, stock levels, wages, benefits and hiring plans.

Data sharing may also occur indirectly through a third-party platform, analytics provider, trade association, investor, HR consultant or benchmarking service. Competition law looks at substance, not only form. If the data exchange allows competitors to predict or align each other’s conduct, risk arises.

The Turkish Competition Authority has emphasized that digital markets create competition concerns involving data ownership, network effects and platforms that operate both as intermediaries and competitors. For startups, this means data governance should not be treated only as a technical or privacy issue. It is also a competition law issue.

4. Personal Data Protection and Competition Law

Technology companies in Turkey must also comply with Personal Data Protection Law No. 6698. The official English text states that the purpose of the law is to protect fundamental rights and freedoms, particularly privacy, and to set obligations and procedures for persons processing personal data.

However, privacy compliance and competition compliance are not the same. A data practice may comply with personal data protection rules but still raise competition concerns if it strengthens market power, restricts user choice, blocks data portability or excludes rivals. Conversely, anonymizing data may reduce privacy risk but may not eliminate competition risk if aggregated data still enables competitors to coordinate.

For example, a marketplace may lawfully process seller data under privacy rules, but if it uses non-public seller data to launch competing products or favor its own services, Article 6 concerns may arise if the marketplace has market power. A SaaS platform may obtain user consent for data integration, but if users have no realistic alternative and the integration strengthens ecosystem lock-in, competition risk may still need to be assessed.

5. Algorithmic Pricing and AI Tools

Startups often use pricing algorithms, AI recommendation engines, dynamic pricing tools, automated ad bidding systems and data-driven optimization models. These technologies are not unlawful by themselves. They can improve efficiency and consumer welfare.

The risk begins when algorithms are used to coordinate prices, monitor competitor deviations, enforce resale prices or facilitate hub-and-spoke coordination. A startup using a third-party pricing tool should ask whether the tool also serves competitors, whether it uses non-public competitor data, whether it creates common price recommendations, and whether it reduces independent decision-making.

If a pricing algorithm relies only on publicly available data and the company independently determines its strategy, risk is lower. If competitors submit confidential pricing inputs to a common software provider that then generates aligned recommendations, risk is higher.

AI governance should therefore include competition law review. Product managers, engineers, data scientists and legal teams should jointly understand what data the model uses, what outputs it creates and whether it could facilitate coordination.

6. Platform Power and Article 6 Risks

Article 6 of Law No. 4054 prohibits abuse of dominant position. A startup may not be dominant at the beginning, but fast-growing platforms can acquire market power quickly through network effects, data advantages, switching costs and user dependency.

Possible Article 6 risks for technology companies include self-preferencing, discriminatory platform access, refusal to supply, tying, excessive or unfair fees, use of non-public business-user data, exclusionary ranking rules, predatory pricing, margin squeeze and restrictions on interoperability.

For example, a marketplace that hosts third-party sellers and also sells its own products should avoid using confidential seller data to compete unfairly against sellers. A SaaS platform that controls access to an important ecosystem should apply API rules objectively. A delivery platform should avoid discriminatory treatment of restaurants without legitimate criteria. An app or fintech platform should be careful before tying access to payment, logistics, advertising or analytics services.

The Turkish Competition Authority has continued to focus on digital markets. In April 2026, it announced a “Competition Policies in the Digital Age” study to identify existing and potential competition issues in digital markets and evaluate intervention tools. This shows that technology startups should expect increasing scrutiny of digital business models.

7. Merger Control and Startup Acquisitions

Merger control is one of the most important competition law issues for startups. Many startups are built with an exit strategy in mind. A sale to a strategic buyer, acquisition by a global platform, share transfer to an investor, or creation of a joint venture may require notification to the Turkish Competition Authority before closing.

Communiqué No. 2010/4 regulates mergers and acquisitions requiring authorization of the Competition Board. Its purpose is to determine which transactions require notification and authorization in order to gain legal validity under Article 7 of Law No. 4054.

The 2026 update to Turkish merger control rules is especially important for technology companies. The Turkish Competition Authority announced that the single threshold was increased from TRY 250 million to TRY 1 billion, the Türkiye turnover threshold from TRY 750 million to TRY 3 billion, and the worldwide turnover threshold from TRY 3 billion to TRY 9 billion. However, for technology undertakings established in Türkiye, the TRY 250 million individual threshold remains relevant under the updated system.

This means a Turkish technology startup may trigger merger control analysis even if its revenue is lower than what traditional deal teams expect. Founders and investors should check merger filing obligations before signing or closing.

8. Technology Undertaking Status

Technology undertakings are treated with special attention because turnover may not reflect competitive importance. A startup may have low revenue but valuable data, an important user base, innovative software, strong IP, a growing ecosystem or future competitive potential.

Technology undertakings may include businesses active in digital platforms, software, gaming software, fintech, biotechnology, pharmacology, agricultural chemicals and healthcare technologies. The policy concern is that acquisitions of nascent competitors or innovative startups may reduce future competition even when current turnover is modest.

Therefore, startup acquisition documents should include a Turkish merger control condition where necessary. Investors should plan for timing, information requests, clean team procedures, and restrictions on pre-closing integration.

9. Gun-Jumping and Pre-Closing Integration

If a transaction is notifiable in Turkey, the parties must obtain clearance before closing. Closing early, transferring control before approval or integrating operations prematurely may create gun-jumping risk.

This is highly relevant in technology deals because buyers often want access to source code, customer data, product roadmaps, pricing models, user analytics, algorithms, API documentation and engineering teams before closing. If the buyer is a competitor or potential competitor, such access must be carefully controlled.

Clean teams, redaction, data rooms, limited access, confidentiality protocols and external adviser review may be necessary. The buyer should not influence the target’s pricing, hiring, customer strategy, product roadmap or market conduct before clearance.

10. Investor Rights and Minority Shareholdings

Startup investment agreements often grant minority investors veto rights, board seats, information rights, consent rights and reserved matters. Some rights are purely protective. Others may confer control.

A minority investment may become merger-control relevant if the investor obtains decisive influence over the startup’s strategic commercial decisions. Veto rights over budget, business plan, senior management, market entry, product strategy or major investments may be particularly important.

Founders and investors should therefore review shareholder agreements from a competition law perspective. The question is not only how many shares are acquired, but whether the investor gains control or joint control.

11. HR Compliance: No-Poach and Wage-Fixing

Labor market competition is now a major enforcement area in Turkey. The Turkish Competition Authority’s labor market guidance addresses no-poach agreements, wage-fixing and sensitive HR information exchange. The guidance states that no-poaching arrangements may exist where one undertaking does not offer a job to or hire the employees of another undertaking, and that wage and working-condition information may be competitively sensitive.

Startups are particularly exposed because technology labor markets are tight. Founders may be tempted to agree informally not to hire each other’s developers, designers, engineers, product managers or sales staff. HR teams may exchange salary ranges or planned wage increases. Investors may hold information about employee compensation across portfolio companies.

These practices can create Article 4 risk. A startup should not enter into no-poach agreements with competitors, portfolio companies, partners or franchisees unless a narrowly tailored and legally reviewed ancillary restraint is genuinely necessary for a legitimate transaction. Salary benchmarking should be historical, aggregated, anonymized and preferably managed by an independent third party.

12. Distribution, Resale and Online Sales Risks

Many technology companies distribute hardware, software, devices, SaaS products, digital subscriptions or platform services through resellers, dealers, marketplaces, agents or franchise partners. These vertical relationships can create competition law risks.

The main risks are resale price maintenance, online sales restrictions, marketplace bans, non-compete obligations, exclusivity, customer restrictions and passive sales restrictions. A supplier should not impose fixed or minimum resale prices on independent resellers. Recommended prices should remain genuinely non-binding.

Online sales restrictions are especially important. The Turkish Competition Authority’s practice generally treats internet sales as passive sales, and broad restrictions on dealers’ own websites or online sales may create serious risk. Technology companies should use objective quality standards rather than blanket online restrictions.

13. Advertising and Search Keyword Agreements

Digital startups often compete through Google Ads, app store search, social media advertising and marketplace visibility. Agreements between competitors not to bid on each other’s brand names, to add each other to negative keyword lists, or to restrict search advertising can violate Article 4.

The Turkish Competition Authority’s Arabam.com settlement decision concerned online used-car platforms and negative keyword agreements in Google text ads. The decision found that practices related to mutually adding brand names to negative keyword lists restricted competition in the online used-car market and violated Article 4.

This is highly relevant for technology companies. Marketing teams should be trained that digital advertising agreements with competitors are not merely brand-management arrangements. They may restrict online competition.

14. Trade Associations, Accelerators and Startup Communities

Startups often participate in associations, incubators, accelerators, investor meetings and industry working groups. These communities may be valuable for policy advocacy, education and networking. But they also create competitor contact risk.

A startup should not discuss future prices, customer allocation, platform fees, hiring restrictions, salaries, commissions, bid strategies or sensitive product launches in these settings. Meeting agendas should be lawful, and any inappropriate discussion should be rejected immediately.

If a trade association or startup group circulates market data, the data should be historical, aggregated and anonymized. Real-time or company-specific pricing, salary, customer or user data should not be shared among competitors.

15. Compliance for SaaS and Cloud Companies

SaaS and cloud companies face particular risks. They may provide software to competitors in the same downstream market, host sensitive customer data, operate analytics dashboards or offer pricing and sales automation tools.

A SaaS provider should avoid becoming a hub for competitor coordination. If its clients are competitors, it should not use one client’s confidential data to advise another. Data segregation, confidentiality, access controls and audit trails are essential.

Pricing tools, CRM analytics, demand forecasting and salary benchmarking software should be designed so that they do not facilitate anti-competitive information exchange. Contracts should clearly prohibit improper use of customer data.

16. Compliance for Marketplaces

Marketplace startups should build competition compliance into platform design. Key areas include seller access, ranking, suspension, advertising, commission structures, use of seller data, private-label products, most-favored-nation clauses and campaign rules.

If a marketplace has or may develop market power, it should apply seller rules transparently and consistently. It should not use non-public seller data unfairly. Ranking algorithms should have objective criteria. Suspension decisions should be documented. Fees should be clear. Parity clauses and exclusivity obligations should be legally reviewed.

As platforms scale, competition obligations increase. A practice that seems harmless when the platform is small may become problematic when the platform becomes a major gateway.

17. Compliance for Fintech Companies

Fintech startups may operate in payment services, digital wallets, open banking, lending, fraud detection, merchant tools or financial data analytics. Competition risks may arise from interoperability restrictions, exclusive merchant arrangements, tying payment services to platform access, data access limitations, information sharing between financial institutions and merger control for fintech acquisitions.

The Turkish Competition Authority has conducted sector inquiry work into financial technologies in payment services, reflecting the relevance of competition analysis in fintech markets.

Fintech companies should also coordinate competition compliance with financial regulation and data protection rules. Access to financial data, payment infrastructure and merchant networks may create competition-sensitive issues.

18. Compliance for Gaming and App Companies

Gaming studios and app companies may face competition issues in app store access, platform commissions, in-app payment systems, advertising data, user acquisition, IP licensing, cloud gaming, esports ecosystems and acquisitions by larger platforms.

A gaming startup being acquired by a global platform should assess Turkish merger control if the thresholds and technology undertaking rules are relevant. App companies should also review exclusive distribution arrangements, data-sharing agreements, adtech tools and platform dependency.

Gaming companies should be cautious in industry groups where user acquisition costs, ad bidding, salaries, influencer rates or launch timing are discussed among competitors.

19. Practical Startup Compliance Program

A startup does not need an overly bureaucratic compliance system. But it does need practical rules. A strong startup compliance program should include:

A short competition law policy for founders, executives and commercial teams.

A rule prohibiting price, customer, salary and hiring coordination with competitors.

A process for legal review of investor, distribution, platform and data-sharing agreements.

Merger control screening before fundraising, share transfers, acquisitions or exits.

HR guidance on no-poach and salary benchmarking.

Data governance rules for competitor data, seller data and user data.

Review of algorithms and pricing tools.

Trade association and accelerator meeting rules.

Documentation of objective reasons for platform access, suspension and ranking decisions.

Dawn raid and information request procedures as the company scales.

The key is simplicity. Employees should know what they must never discuss with competitors and when to contact legal counsel.

20. Practical Founder Checklist

Founders of Turkish startups should ask:

Do we communicate with competitors about pricing, customers, salaries or hiring?

Do investors receive sensitive information from competing portfolio companies?

Do our platform rules treat business users objectively?

Do we use non-public seller or customer data to compete against users?

Do we use pricing algorithms or shared software tools?

Do our contracts restrict online sales or resale prices?

Do we have no-poach clauses in partnership agreements?

Are we planning an acquisition, investment round or exit that may require merger filing?

Are we a technology undertaking under Turkish merger control rules?

Do we process personal data in compliance with Law No. 6698?

Do our engineers and product teams understand competition risks?

If the answer to any question creates concern, the company should conduct a legal review before the practice continues.

Conclusion

Competition law compliance for Turkish startups and technology companies is a strategic necessity. Law No. 4054 applies to restrictive agreements, abuse of dominance and merger transactions affecting Turkish markets. Startups may face risks even before they become large companies, especially in areas such as competitor communication, data sharing, algorithmic pricing, HR no-poach arrangements, digital advertising, platform access, reseller restrictions and merger control.

The 2026 update to Turkish merger control thresholds is particularly important for technology companies. Although general thresholds increased, technology undertakings established in Türkiye remain subject to special attention through the TRY 250 million individual threshold. Startup founders, investors and buyers should therefore screen transactions early and include Turkish merger clearance conditions where necessary.

Data and digital platform conduct are also core compliance issues. The Turkish Competition Authority continues to focus on digital markets, and its work on digital transformation, platform power and data-driven competition shows that technology business models are under active scrutiny.

For startups, the best compliance program is practical, early and integrated into business operations. It should not prevent growth. It should help the company grow safely, attract investment, pass due diligence, avoid investigations and preserve exit value. A startup that builds competition compliance into its contracts, data systems, HR policies, algorithms and investor processes will be better positioned for sustainable growth in Turkey’s technology ecosystem.