The main theme of TS EN ISO 27001 Information Security Management System; To show that information security management is provided within the information and financial resources of third parties related to our company’s services, to ensure risk management, to measure information security management process performance and to regulate relations with third parties on information security-related issues.
In this direction, the purpose of our ISMS Policy;
To protect the information assets of our company against all kinds of threats that may occur knowingly or unknowingly, from inside or outside, to ensure accessibility to information as necessary through business processes, to meet the requirements of legal regulations,
To ensure the continuity of the three basic elements of the Information Security Management System in all activities carried out.
Confidentiality: Preventing unauthorized access to important information,
Integrity: Demonstrating that the accuracy and integrity of the information is provided,
Accessibility: Demonstrating the accessibility of information when necessary by those with authority,
Not only the data kept in electronic environment; To deal with the security of all data in written, printed, oral and similar media.
To raise awareness by giving Information Security Management trainings to all personnel.
To report all actual or suspected vulnerabilities in Information Security to the ISMS Team and ensure that they are investigated by the ISMS Coordinator.
Prepare, maintain and test business continuity plans.
To determine the existing risks by making periodic evaluations on Information Security. As a result of the evaluations, to review and follow the action plans.
To prevent all kinds of disputes and conflicts of interest that may arise from contracts.
To meet business requirements for information accessibility and information systems.