Information Security Policy

INFORMATION SECURITY POLICY

The Information Security Policy defines the requirements, rules, practices, responsibilities, and workflows that are based on the business needs of Ay-Tim Tekstil Sanayi ve Dış Ticaret A.Ş., aligned with and supporting the company’s corporate business objectives, and established in accordance with relevant laws and standards. With this policy, Ay-Tim Tekstil Sanayi ve Dış Ticaret A.Ş. aims to guide all activities related to information security and, with the support of subordinate documents, to set forth information security processes and controls.

Purpose

The purpose of the Information Security Policy is to define the framework for information security management, to establish the fundamental information security objectives and principles, and to emphasize management’s commitment to supporting the information security management system.

Scope

The principles determined to support the strategic objectives of AY-TİM Tekstil San. ve Dış Tic. A.Ş., protect brand value, and ensure compliance with relevant regulations fall within the scope of the Information Security Policy.

Policy

We commit to:

– Complying with information security obligations arising from national and international regulations, legal requirements, and agreements made with internal and external stakeholders that govern the conduct of our corporate activities,

– Safeguarding information by ensuring the availability, integrity, and confidentiality of critical information belonging to our company and related parties,

– Enhancing the competencies of company employees and ensuring their contribution to information security,

– Continuing the company’s essential/supporting business operations with minimal interruption in the event of any adverse situation,

– Establishing, implementing, reviewing, and continually improving an information security management system based on the ISO/IEC 27001:2013 Information Security Management System Standard.