OUR POLICIES

OUR INFORMATION SECURITY MANAGEMENT SYSTEM POLICY:

YEPSAN Inc. has based customer satisfaction on every product it manufactures and has established its quality management system based on customer satisfaction.

In this established system, the ISO 27001 Information Security Management System covers our company's Management Responsibility, Quotation and Contract Control, Purchasing, Production, Equipment Management Process, Accounting-Finance, Project Management Process, Information Technologies, Measurement and Analysis Evaluation Process, and Human Resources Processes within the scope of Authorized Responsible Status, covering all business processes and the working environment included in KVKK and TISAX.

YEPSAN A.Ş. has established an Information Security Management System (ISMS) to protect the confidentiality, integrity, and availability of this information. All activities are described in the Information Security and Management Systems Manual.

Accordingly, YEPSAN ensures that customer requests are met in accordance with applicable legal and regulatory requirements and guarantees the continuous improvement of the system through its established Information Security Management System.

Our ISMS policy is outlined below:

• To provide the necessary resources to keep pace with technological developments, innovations, and changes within the scope of the information security management system,
• To manage information assets within processes, identify risks and opportunities associated with these assets, develop controls for these risks and opportunities, and implement effective risk and opportunity management
• To fulfill obligations arising from relevant legislation, national and sectoral regulations, and agreements, and to meet information security requirements for internal and external parties,
• Ensure the achievement of information security objectives and goals, continuously improve the Information Security Management System with business continuity.