Asil Çelik

INFORMATION SECURITY POLICY

For the purpose of managing any and all kinds of risks and threats against our information assets and business continuity, as Asil Çelik A.Ş., we hereby commit and undertake to reserve any and all kinds of resources for effective management of the Information Security Policy as well as integrating it to other management systems in use by performing the following actions:

Continuously measuring and reviewing the systems in accordance with continuous improvement philosophy while documenting, managing, operating Information Security Management System in accordance with the requirements of ISO 27001.
Complying with any and all kinds of legislation and agreements on Information Security,
Systematical management of risks against information assets,
Maintaining integrity and confidentiality of ASİL ÇELİK A.Ş and its customers,
Ensuring sufficient infrastructure has been built to guarantee the sustainability of ASİL ÇELİK A.Ş. processes
Taking physical and logical security measurements appropriate to the knowledge digitally stored,

Assigning “access controls” and preventing unauthorized accesses in order to control the information based on “need-to-know” principle,
Taking security concerns into consideration when developing a software,
Protecting information assets against cyber-attacks outside Asil Çelik and from harmful codes such as viruses,
Implementing an intervention process for information security incidents,
Providing training programs on information security and increasing the information security awareness of all employees,
Making sure stakeholders of ASİL ÇELİK A.Ş. comply with Information Security Policy.

Information Security

INFORMATION SECURITY POLICY

Headquarters

Plant

Germany

United States of America