Our company operates in the field of “provision of telephone exchanges, voice communications, and specialized telecommunications applications; maintenance, repair, and servicing of communication and imaging systems; and the sale and maintenance of medical products (physiotherapy products, etc.).” Our company is committed to protecting the confidentiality, integrity, and all physical and electronic information assets. Information and information security requirements will be aligned with our corporate objectives. Our company management will employ well-trained, competent personnel who are open to change, and will provide the financing, equipment, and infrastructure needed to compete with our rivals in the sector. Together with this infrastructure and personnel, the necessary financing will also be secured. Business continuity and contingency plans, data backup procedures, protection against viruses and hackers, access control systems, and information security incident reporting form the cornerstones of our core activities. The vulnerabilities and threats identified as a result of risk assessments will be eliminated, ensuring secure access to the information of our customers and personnel.
In addition, following risk assessments we will define our objectives and provide the resources and conditions required to achieve them.
To implement this policy, we first expect our employees to make the requirements of the Information Security Management System part of their way of working. All personnel and certain third parties will receive appropriate training on the Information Security Management System.
The applicable requirements related to information security, together with the opportunities and obligations they entail, will be fulfilled and continually improved. Furthermore, the adaptation of our company, our personnel, and all relevant parties to this system will be ensured.
Our Information Security Policy is reviewed and kept up to date once a year, or whenever significant changes concerning our company occur, with the participation of management and unit managers to ensure its suitability, accuracy, and effectiveness.
