INFORMATION SECURITY POLICY
Our company provides services in the field of software development, software integration and software maintenance services, information system installation and maintenance services, IT consultancy services, and IT security service procurement. These services are provided within the scope of service procurements, including consultancy service procurements, under the Public Procurement Law No. 4734 dated 4/1/2002, as well as goods, services, consultancy, and construction works procurements within the scope of public-private partnership projects and other legislation, which will be carried out by the public administration within the framework of public IT projects.
Our company is committed to protecting confidentiality, integrity, and all physical and electronic information assets. Information and information security requirements will be in alignment with our corporate objectives. Our company management will ensure the employment of personnel who are open to change, well-educated, and competent in their respective fields. Furthermore, management will maintain the necessary financing, adequate hardware, and infrastructure to compete with our rivals in the sector.
Business continuity and emergency plans, data backup procedures, protection from viruses and hackers, access control systems, and information security breach notification will constitute the cornerstones of our operations. Secure access to the information of our clients and personnel will be ensured by eliminating the vulnerabilities and threats identified as a result of the risk assessments conducted. Additionally, our objectives will be determined based on the results of these risk assessments, and the resources and conditions necessary to achieve these objectives will be provided.
To realize this policy, we primarily expect our employees to adopt the requirements of the Information Security Management System as their standard working method. It will be ensured that all personnel and designated third parties receive appropriate training regarding the Information Security Management System. Applicable requirements related to information security, along with the opportunities and necessities they present, will be fulfilled, and these conditions will be continuously improved. Moreover, the adaptation of our company, our personnel, and all relevant parties to this system will be ensured.
Our Information Security Policy is reviewed and kept up-to-date once a year, or in the event of significant changes concerning our company, with the participation of management and unit supervisors to ensure its ongoing suitability, accuracy, and effectiveness.
GENERAL MANAGER