Information Security Procedure

This policy aims to supervise the studies in order to improve and regularly update the control infrastructure for the confidentiality, integrity and accessibility of information systems and data within the body of company.

Information, like other important assets that are related to the business, is an asset that is necessary for the activities of an organization and consequently needs to be properly protected.

The security of information assets is ensured in accordance with the policies defined by the Company. The purpose of information security is to prevent unauthorized access to information (Privacy) and to give information and information assets in full and completely and to ensure that the information and information assets are correct and not altered inappropriately (Integrity) and to enable authorized users to access the data when they need it (Accessibility).

Information Security Policy is applied to all departments and service providers of the Company.

The objective of the Information Security Management Process of the Company is to take an inventory of information assets, to carry out risk assessment, to realize controls and to review the effectiveness of the controls in order to ensure the confidentiality, integrity and accessibility of the information produced, processed and stored by the Company.