top of page
Bilgi Güvenliği Politikası.jpg

INFORMATION SECURITY POLICY

As Erdoğan Professional Services Group, we commit to ensuring the confidentiality, integrity, and accessibility of information in line with our mission and vision by adopting the TS ISO/IEC 27001 Information Security Management System (ISMS) standard through the following principles:

  • Information Security Management : We define our information security objectives and activities, plan, implement, control the ISMS, and ensure the continuous improvement of the system.

  • Compliance with Legislation and Standards : We ensure that the activities carried out comply with legislation, contracts, standards, and business requirements. We especially meet the requirements of the Personal Data Protection Law (KVKK) meticulously.

  • Integrated Management Systems : We conduct ISMS activities in an integrated manner with other management systems established within our organization.

  • Determination of Duties and Resources : We define the duties, roles, responsibilities, and necessary resources within the scope of the ISMS.

  • Management of Information Assets : We determine the criteria for confidentiality, integrity, and accessibility, and inventory our information assets.

  • Risk Management : We identify and evaluate existing and potential risks to manage information security and implement appropriate risk treatment options.

  • Business Continuity Planning : We prepare business continuity plans, implement these plans, and ensure the continuous improvement of the process.

  • Monitoring Technology and Innovation : We keep up with current technologies and innovations in information security and develop solutions accordingly.

  • Ensuring Stakeholder Compliance : We take necessary measures to ensure that all stakeholders comply with the determined information security principles.

  • Awareness and Training : We ensure that this policy is communicated, accessible, understood, and implemented.

  • Violation Management : In the event of a breach of this policy, we initiate and follow the relevant processes.

As Erdoğan Professional Services Group, we commit to maintaining all our activities at the highest standards with our emphasis on information security. We take pride in taking the necessary steps to ensure that this policy is communicated, understood, and implemented by all our employees, business partners, and customers.

bottom of page