Information Security Policy

Document Information

Document Code: PLT-01
Initial Effective Date: 12.11.2018
Revision Date: 24.10.2024
Revision No: 01

Information Security Management System

The main theme of the TS EN ISO 27001 Information Security Management System is to ensure information security management, control risks, measure process performance, and secure third-party relationships in the context of big data, artificial intelligence, machine learning, databases, systems, networks, and customer-specific software development activities.

Our Information Security Policy

Mission

To be the go-to provider for digital and cloud transformation consultancy. We are committed to delivering high-quality services that respect our customers’ needs and goals, ensuring excellence through continuous learning and improvement.

Vision

To become the top choice for organizations in the Middle East, North Africa, and Türkiye by enhancing trust through innovation and leading their success in the digital era.

1. Implementation

Google Tag Manager is a tag management service provided by Google Ireland Limited.

Personal Data processed: Trackers and Usage Data.
Place of processing: Ireland – Privacy Policy.

  • Identifying the security values and risks of information assets
  • Conducting threat, vulnerability, and impact analyses
  • Defining risk management principles
  • Continuously monitoring risks according to service scope
  • Fulfilling legal, contractual, and regulatory requirements
  • Responding to information security incidents quickly and effectively
  • Maintaining an effective control structure with cost-efficiency
  • Providing regular awareness and training for staff
  • Reviewing ISMS implementation and audit results to improve the system
  • Integrating ISMS with other management systems
  • Complying with the Personal Data Protection Law (KVKK)
  • Working with an approach of environmental sustainability and social responsibility
  • Using environmentally friendly products and focusing on recycled alternatives
  • Protecting the company’s reputation from information security-related risks

2. Sanctions

Disciplinary Procedure provisions shall apply to any personnel who act contrary to this policy.

Revision History

  • 00: Initial release
  • 01 (24.10.2024): Updated according to the latest revision

Approval

Responsible: Management Representative

Approved by: General Manager