Our Information Security Policies

Başkent EDAŞ considers all the information that it collects and processes by any means, belonging to itself and its stakeholders, as critical assets and shows utmost care and importance to protect it.

In this direction, the Corporate Information Security Management System is effectively implemented within Başkent EDAŞ, with reference to the ISO/IEC 27001 Information Security Management System standard.

The main purpose of corporate information security is to ensure the confidentiality, integrity and availability of any information collected and processed by Başkent EDAŞ. The main objective of corporate information security is to design, operate, monitor and continuously develop the necessary processes to prevent material and moral damages that may occur due to the nature of Başkent EDAŞ's corporate activities and to affect Başkent EDAŞ and its stakeholders, to detect them early if they occur, and to minimize their possible effects.

Regardless of their positions or duties, all Başkent EDAŞ employees and related third parties comply with Başkent EDAŞ's information security practices, policies and procedures. Violation of corporate information security policies and procedures may result in disciplinary action and may result in criminal sanctions under the relevant legislation.

The manager of each unit is primarily responsible for taking all necessary measures in their area of ​​responsibility and controlling business activities in order to ensure compliance with corporate information security policies and procedures.

Başkent EDAŞ undertakes to meet the applicable requirements regarding information security, to ensure compliance with all kinds of legislation, laws, communiqués and similar regulations that Başkent EDAŞ is obliged to comply with, and to continuously improve the Information Security Management System it maintains.