In line with the ISO 27001:2013 Information Security Management System Standard, ÇUMİTAŞ undertakes to;
Provide secure access to its own and its stakeholders’ information assets,
Protect the usability, integrity and confidentiality of information,
Evaluate and manage risks that may occur on its own and its stakeholders’ information assets,
Protect the reliability and brand image of the institution,
Implement sanctions deemed necessary in case of information security breach,
Provide information security requirements arising from national, international or sectoral regulations, fulfilling the requirements of relevant legislation and standards, meeting its obligations arising from agreements, and corporate responsibilities towards internal and external stakeholders,
Reduce the impact of information security threats on business/service continuity and ensure the continuity and sustainability of the business,
Protect and improve the level of information security with the established control infrastructure,
Provide training that will develop competencies in order to increase information security awareness.