INFORMATION SECURITY POLICY
Information Security Policy
The main theme of the ISO 27001 Information Security Management System is; ITG in the Development and Services of Supply Chain Applications; to demonstrate that information security management is within the human, infrastructure, software, hardware, customer information, organization information, third party information and financial resources, to ensure risk management, to measure the performance of information security management process, to arrange relations.
For this purpose, the purpose of our ISMS Policy;
ITG is committed to protecting information assets, providing information accessibility as required by business processes, meeting legal regulatory requirements, protecting IT assets against any and all threats that may occur intentionally or unintentionally,
In all the activities carried out, the continuity of the three basic elements of the information security management system will be ensured.
Confidentiality: Prevention of unauthorized access to sensitive information,
Integrity: the demonstration of the truth and integrity of knowledge,
Accessibility: To demonstrate the availability of information where necessary by those with disabilities,
Relevant system standards relate to the security of all data, including written, printed, verbal and similar media, not just data stored in electronic media.
To ensure that information security management trainings are made aware of all staff.
To report any actual or suspicious disclosures in information security to the ISMS coordinator and ensure that they are investigated by the ISMS Coordinator.
To prepare, maintain and test business continuity plans.