Information Security Policy
Çözüm Makina Information Security, in order to protect the corporate reputation, reliability and information assets, and to continue basic and supporting business activities with the least possible interruption;
- To protect the information assets that the institution processes, maintains and shares with other organizations in accordance with the principles of confidentiality, integrity and accessibility,
- To manage information assets, to determine the security values, needs and risks of assets, to develop the management system established to implement controls for security risks and to ensure continuous improvement,
- To determine continuous improvement needs and opportunities by evaluating the risks arising from activities in accordance with the vision and mission of the institution,
- To keep up with technological developments and changes in the context of the scope of service,
- Ensuring business continuity by reducing the impact of information security risks,
- To comply with national and international regulations, legal and relevant regulatory requirements, obligations arising from agreements, and corporate responsibilities towards internal and external stakeholders,
- Having the competence to quickly intervene in information security incidents that may occur and minimize the impact of the incident,
- Maintaining and improving the level of information security over time with a cost-effective control infrastructure,
- To improve corporate reputation and protect it from negative effects based on information security,
- To preserve personal information within the scope of the Personal Data Protection Law,
- To provide training that will improve the information security awareness and competencies of employees, to be an exemplary organization in the sector by providing the necessary support, integrated with other management systems,
Each Çözüm Makina employee is responsible for contributing to the goals specified in the Information Security Policy.