OUR POLICIES
Within the framework of TS EN ISO 27001 Information Security Management System (ISMS), we aim to ensure the information security of DEVNAK secure risk management, measure process performance, and regulate relations with third parties.
Objectives of our ISMS Policy:
To protect DEVNAK information assets against all kinds of threats that may arise from inside or outside, knowingly or unknowingly. To ensure the accessibility of information by business processes and to comply with legal regulations.
- To maintain the three essential elements of the Information Security Management System under all circumstances.
- Confidentiality: Preventing unauthorized access to critical information.
- Integrity: Ensuring the accuracy and integrity of information.
- Accessibility: Ensuring that authorized persons can access information when needed.
- Ensure the security of all written, printed, and verbal information assets, not limited to electronic data.
- To raise all personnel's awareness of information security and provide necessary training.
- Report all suspicious situations or gaps related to information security to the ISMS team and ensure that the ISMS manager investigates them.
- Prepare business continuity plans, keep them current, and test them regularly.
- Determine current risks by conducting regular assessments, reviewing, and following up on action plans.
- Prevent disputes and conflicts of interest that may arise from contracts.
- Fully meet business requirements for access to information and information systems.