Information Security Policy

Erka, in line with ISO 27001:2013 Information Security Management System Standard; commits that:

a. To provide secure access to the information assets of itself and its stakeholders,
b. To protect the availability, integrity and confidentiality of information,
c. Evaluating and managing the risks that may occur on the information assets of itself and its stakeholders,
d. To protect the credibility and brand image of the company,
e. To apply the necessary sanctions in case of information security violation,
f. To provide information security requirements arising from the national, international or sectoral regulations to which it is subject, fulfilling the requirements of the relevant legislation and standards, meeting the obligations arising from the agreements, corporate responsibilities for internal and external stakeholders,
g. To reduce the impact of information security threats on business/service continuity and to ensure business continuity and sustainability,
h. To maintain and improve the level of information security with the established control infrastructure,
i. To provide trainings to develop competencies in order to increase information security awareness.