Information Security Policy
The senior management of FOL Yazılım has determined the ISMS policy to include the commitment to comply with the responsibilities of the services provided by our enterprise, to comply with the legislative requirements and to continuously improve its effectiveness, and to create a framework for the establishment and review of ISMS targets.
The senior management of FOL Yazılım ensures that the ISMS policy is communicated and understood and reviews it in the management review for continuous compliance.
As the management of FOL Yazılım, depending on our mission and vision, providing Information Technology services to our contracted customers is our priority area of work.
Production and Services;
- Meeting the expectations of our customers and the institutions/organizations we provide services under contract at a high level, increasing their IT capabilities, keeping them informed of technological developments and helping them achieve their activity/process/performance targets are carried out within the scope and limits of ISMS.
- By accepting that all kinds of confidential / commercial / proprietary information processed in all information technology systems we serve within the scope and boundaries of ISMS is the privacy of the customer of the institution / organization we serve, it is ensured that this information cannot be obtained from anywhere / person / institution / organization without the knowledge / approval of the customer, adhering to the Confidentiality / Integrity / Availability conditions.
- FOL Yazılım will comply with the ISMS policy, legal and regulatory requirements, and take into account the obligations or dependencies arising from contracts or third parties, provided that they remain within the scope and limits of the ISMS.
FOL Yazılım represents that it will prove its commitment to the installation, realization, operation, monitoring, review, maintenance and improvement of the Information Security Management System (ISMS) within the framework stated above by performing the following matters:
- ISMS objectives have been defined and respective plans have been
- Risk analyses have been conducted, risk assessments and risk criteria have been put forward based on the results of the analysis, and risk management is ensured within this framework.
- FOL Yazılım has defined and maintained the importance of meeting information security objectives and compliance with information security policies, responsibilities to the law and the need for continuous improvement.
- FOL Yazılım has provided sufficient resources (financial, human resources, equipment, software, security, consultancy, training, etc.) to establish, implement, operate, monitor, review, maintain and improve the ISMS.
- FOL Yazılım has organized and manages the necessary work to determine the criteria for accepting risks and acceptable risk levels.
- FOL Yazılım will review the ISMS Policy at least once a year and announce it to the relevant parties by making arrangements when deemed necessary.