Information Security Policy
This policy covers the information assets related to the institution’s activities, the information security and business processes used to protect these assets.
Our institution, which has ISO / IEC 27001:2022 Information Security Management System certification, guarantees the standard execution of all its activities.
- To ensure secure access to its own and its stakeholders’ information assets, and to ensure the confidentiality of information produced and/or used in all cases, regardless of whether it belongs to third parties
- To protect the usability, integrity and confidentiality of information
- To assess and manage the risks that may arise on information assets
- To protect the reliability and brand image of the institution, to implement the sanctions deemed necessary in case of a breach of information security
- To fulfill the requirements arising from national, international or sectoral regulations, legal and relevant legislation to which it is subject, to meet its obligations arising from agreements, to provide information security requirements arising from its corporate responsibilities towards internal and external stakeholders
- To prevent unauthorized use, modification, disclosure and damage of all information assets within the scope, whether intentionally or unintentionally
- To provide regular training to the institution’s personnel and suppliers in relevant cases, which will increase the personnel’s awareness of information security and encourage them to contribute to the operation of the system
- To reduce the impact of information security threats and ensure the continuity and sustainability of the business
- To maintain and improve the level of information security with the established control infrastructure.
TWİN UP TECHNOLOGY INDUSTRY AND TRADE LIMITED COMPANY
