INFORMATION SECURITY POLICY

Telcoset İleri Teknoloji Stratejik İş Geliştirme Danışmanlık A.Ş., we aim to ensure the information security of all physical and electronic information assets used in delivering IT services. This is essential to protect the company’s reliability and the image of the institutions we represent, ensure compliance with agreements made with third parties, and maintain the continuity of our core and supporting business activities with minimal disruption.

Among our primary objectives are ensuring the confidentiality of the information assets we use for corporate functions, maintaining their integrity and accuracy, and ensuring their availability when needed. The risk management framework encompasses the identification, evaluation, and processing of information security risks. Risk assessment, the statement of applicability, and the risk treatment plan define how these risks are controlled. The responsibility for managing and implementing this plan lies with the Information Security Management System (ISMS) Representative.

As Telcoset İleri Teknoloji Stratejik İş Geliştirme Danışmanlık A.Ş., we declare that the implementation and control of the “Information Security Policy” and the execution of necessary sanctions in case of security breaches are supported by management. In line with this commitment:

  • Protecting the confidentiality of information.
  • Maintaining the integrity of information.
  • Ensuring that information is not deliberately or inadvertently shared with unauthorized individuals.
  • Protecting information against unauthorized access.
  • Making information readily available to authorized users when needed.
  • Ensuring that all activities are conducted efficiently, accurately, promptly, and securely.
  • Prioritizing high energy efficiency in our databases and other digital infrastructures.
  • Transitioning to renewable energy sources to reduce the environmental impact of our data centers.
  • Properly recycling electronic devices at the end of their life cycles to minimize the environmental impact of electronic waste.
  • Aligning our information security processes with local and international legal regulations related to climate change.
  • Updating our information security policies in line with evolving legal requirements for environmental sustainability.
  • Complying with all legal regulations and contracts related to information security.
  • Meeting all customer requirements and legal obligations.
  • Being aware of the risks to the confidentiality, availability, and integrity of all information assets belonging to our company, customers, suppliers, and business partners, and actively managing these risks.
  • Conducting risk analyses to proactively address evolving and emerging information security threats.
  • Promoting full participation and heightened awareness of information security across the organization through continuous education and consulting.
  • Systematically addressing information security to create a structure that continuously improves, develops, and prevents the emergence of new risks.

    We pledge to uphold these commitments.