Information Security Policy

Information Security Policy

Our Information Security Policy

  • As HEKTAŞ, in order to manage all kinds of risks to our business continuity and information assets;
  • Documentation, certification and continuous improvement of our information security management system to meet the requirements of iso 27001 standard,
  • Compliance with all legal regulations and conventions related to information security,
  • Systematic management of risks to information assets,
  • Carrying out trainings to improve technical and behavioral competencies in order to raise awareness of information security,
  • To protect the confidentiality of critical data related to our products and services, such as strategic target, design, production, sales, supply sources, customer and employee information,
  • To give access powers in accordance with the principle that they need to know, to prevent unauthorized access,
  • To create physical and electronic environments suitable for the security of information assets,
  • To provide the necessary plans and technical infrastructure for the continuity assurance of our information technology services,
  • To be able to detect and intervene immediately in a timely manner that is contrary to information security, to manage our activities in an integrated manner together with other management systems that we implement.