As Zeki Mensucat San. ve Tic. A.Ş., this policy has been established to define our organization’s commitments and objectives regarding information security, protect our information assets, manage information security risks, and ensure continuous improvement within the framework of the Information Security Management System (ISMS). • Based on our company’s strategic objectives and information security risks, we will define our information security objectives, review them regularly, and provide the necessary framework to achieve these objectives (see: ISMS-GL-001 Information Security Management System Requirements and Scope Guide, Section 3.3). • We will comply with applicable legal regulations, contracts, and other relevant requirements. • We commit to establishing an effective Information Security Management System (ISMS) suitable for our company in line with legal regulations and continuously improving its conditions. To fulfill these commitments; • Legal regulations and standards related to information security will be regularly monitored. • The necessary resources will be provided to continuously improve the ISMS. • The effectiveness of the ISMS policy and processes will be regularly evaluated, and corrective actions will be taken when necessary. • All requirements determined and documented by management under the ISMS policy will be safeguarded (see: ISMS-GL-001 Information Security Management System Requirements and Scope Guide, Section 5). • To fulfill responsibilities related to information security, we will conduct the necessary training and awareness activities to ensure that all employees adopt this policy. • The information security policy will always be accessible to all our employees and relevant stakeholders. • This policy will be reviewed by management and updated when deemed necessary. This policy reflects our commitments, objectives, and the activities to be carried out in line with these objectives regarding information security. Additionally, this policy is considered a fundamental guide for fulfilling the stated commitments and objectives.
