As Koton Mağazacılık Tekstil ve Ticaret A.Ş., within the scope of our information security policy, we commit to:
- Manage information assets, determine the security values, needs, and risks of assets, develop and implement security controls for security risks,
- Define a framework that identifies information assets, their values, security needs, vulnerabilities, and methods for detecting the frequencies of threats for evaluating the effects of threats on assets,
- Define a framework for assessing the effects of threats on confidentiality, integrity, and accessibility of assets,
- Establish working principles for processing risks,
- Continuously monitor risks by reviewing technological expectations within the scope of the services provided,
- Comply with national or international regulations, meet legal and relevant legislative requirements, and fulfill information security requirements arising from agreements and corporate responsibilities towards internal and external stakeholders,
- Reduce the impact of information security threats on business continuity and contribute to continuity,
- Possess the competence to rapidly intervene in potential information security incidents and minimize the impact of the incident,
- Maintain and improve information security levels over time with a cost-effective control infrastructure,
- Enhance corporate reputation and protect against negative effects based on information security,
- Ensure the continuity of the Information Security Management System,
- Continuously improve the Information Security Management System in accordance with international standards,
- Comply with the Personal Data Protection Law No. 6698 (KVKK) and other relevant regulations in processing, protecting, and disposing of personal information belonging to employees, interns, visitors, suppliers, and other relevant third parties.