WhatsApp
Corporate
Products
Media
Career at Ender

Information Security Policy

LPPD


INFORMATION SECURITY SCOPE

  • This policy applies to all units using the Information Technology infrastructure, users who access information systems as third parties, and service, software, or hardware providers offering technical support to information systems.
  • Information Security aims to ensure the continuity of Information Systems to protect the company's reputation, reliability, information assets, and to maintain business operations with the least possible interruptions. It focuses on increasing employees' awareness and compliance with security requirements, ensuring third-party compliance, and actively applying up-to-date technical security controls. The company manages this within the perspective of risk management.

OUR INFORMATION SECURITY GOALS;

  • To document, certify, and continuously improve our Information Security Management System in accordance with the requirements of the ISO 27001 standard,
  • To act in alignment with the company's Vision and Mission,
  • To reduce the impact of information security risks on business continuity and ensure business continuity,
  • To protect and enhance the company's reputation from negative impacts based on information security,
  • To ensure the confidentiality, integrity, and availability of all information stored in physical and electronic environments by fully complying with legal requirements, customer requirements, operational and contractual terms,
  • To increase users' and employees' awareness of information security, minimize risks, and make them aware of their responsibilities,
  • To determine and evaluate the security requirements of the electronic infrastructure provided, keep track of technological developments, improve the system, and ensure service continuity,
  • To ensure an acceptable security level for external access to the system,
  • To define the information security requirements of third parties, customers, and suppliers, and ensure their compliance with the information security management system,
  • To protect the confidentiality of critical data, such as strategic goals, design, production, sales, supply chain, customer, and employee information related to our Products and Services,
  • To detect and intervene promptly in cases of non-compliance with information security, managing our activities integrated with other management systems we implement.

                                                                       Ender Pvc Yapı Elemanları San. ve Tic. A.Ş.