Objective
The purpose of the Information Security Policy is to prevent information security incidents or minimise the risk of damage in order to ensure business continuity at DGS Baskı Teknolojileri A.Ş. and to reduce the impact of potential threats.
Scope
This policy covers the information assets within DGS Baskı Teknolojileri A.Ş. It is applied by all employees, suppliers.
Responsibility
Information Security management is responsible for keeping the risks to company information assets at an acceptable level approved by senior management.
Policy
- The objective of the policy is to protect the company’s information assets against internal and external intentional and unintentional threats.
- The General Manager of DGS has approved this policy.
- The Information Security Policy ensures all of the following requirements:
- The identification of processes and information assets and the methodological realisation of risk assessments in relation to them
- Protection of information from unauthorised access
- Ensuring confidentiality of information
- Protecting the integrity of information
- Possibility to access information whenever business processes need it
- Fulfilment of legal obligations and legal obligations arising from contracts
- Development and improvement of business continuity plans
- Providing Information Security trainings to all employees
- Ensuring that all Information Security violations or suspected violations are reported to the Information Security Management Board and examined
- Information Security is ensured by considering business needs.
- All management staff is responsible for the units they manage to act in accordance with these policies.
- Compliance with the Information Security Policy is mandatory for all employees.