Information Security Policy - Sink - Kitchen Sink Models

Eviye.com.tr Information Security Policy

1. Introduction

Eviye.com.tr is an organization that considers information security as its highest priority. Customer information, business continuity and operational security are the cornerstones of our business. This policy has been created to protect information assets and customer information, prevent leaks and promote best practices in information security. This policy aims to comply with the information security standards and legal regulations applicable in 2023.

2. Responsibilities

2.1. Information Security Committee: It will be responsible for designing, implementing and reviewing information security policies.

2.2. Human Resources: Responsible for staff selection, training and providing ongoing training to increase information security awareness.

2.3. Information Security Officers: Responsible for implementing information security policies, monitoring vulnerabilities and providing defense against cyber threats.

2.4. All Employees: Responsible for complying with information security policies, protecting confidentiality and reporting information security breaches.

3. Risk Assessment

3.1. Periodic updates will be made to identify and assess information security risks.

4. Information Security Standards

4.1. All information security practices and policies are continuously reviewed and updated in accordance with 2023.

4.2. Information security policies regulate and secure internal and external information sharing and communication.

4.3. Business continuity plans and crisis management aim to be prepared for possible incidents and are regularly tested.

5. Data Security

5.1. Customer information and internal information assets are kept under strict access control and protected in accordance with legal regulations.

5.2. Regular backups are performed and recovery plans are prepared.

6. Training and Awareness

6.1. All employees are regularly trained and raised awareness on information security issues.

6.2. Awareness of information security breaches and cyber threats is raised and reporting is encouraged.

7. Breach Situations and Remediation

7.1. Any information security breach is immediately reported and investigated.

7.2. Lessons are learned from breaches and policies and practices are updated as necessary.

8. Review and Update

8.1. This policy is reviewed and updated periodically.

8.2. Changes are submitted to the information of all personnel and notified to the relevant parties.

This policy has been created to ensure information security for Eviye.com.tr and must be strictly implemented by all employees. Legal action will be taken against violators.

Translated with DeepL.com (free version)