As Erdem Holding Izmit Group Companies, we apply ISO 27001: 2013 Information Security Management System to ensure the security of our information assets and operations and to ensure that information is kept under control with confidentiality, integrity and accessibility criteria at all stages and locations where these assets are used.
As Erdem Holding Izmit Group Companies Management, our commitments about Information Security Management System are as follows;
- To announce this policy to our employees and to provide the necessary resources, training and leadership in the application of the policy,
- To ensure Information Security Management System is carried out and applied in compliance with the laws and regulations of Turkish Republic, the standards of ISO 27001: 2013 ISMS, our Policies and Procedures,
- Application of disciplinary action if necessary for information security violations. To provide the necessary organization, training, resources and infrastructure for the management of violations.
- To manage our relations with suppliers and their subcontractors through considering the impact and risks of these companies on our Information Security,
- For continuous improvement of the Information Security Management System; enabling the establishment of in-process controls with the principle of separation of duties, conducting in-house audits and reviewing and evaluating them as management according to the results of these audits and ensuring corrective and remedial activities .