Our company is committed to complying with applicable legislation and considering relevant standards and best practices covering all digital and physical information assets that are processed, stored, transmitted, or accessed, and the information systems in which these assets are used.
The principles of confidentiality, integrity and accessibility are taken as basis in the processing, transmission and storage of information. These principles form the basis of all information security practices of our company and ensure the confidentiality of all information of our stakeholders and their protection against unauthorized access, use, disclosure, modification or destruction.
Risk management process is implemented to identify, assess and manage all information security risks, including those that may affect aviation security. Risk assessments are carried out regularly and emerging risks are managed with mitigating measures.
In order to continuously improve the effectiveness of the information security management system, information security processes are regularly monitored, evaluated, and performance is tracked and developed with concrete data.
To ensure the continuity of all main and supporting business activities, inaccessibility risks are regularly evaluated, necessary precautions are taken against potential interruptions, and a rapid and effective response capacity is developed in case of possible interruptions.
Programs are implemented to develop technical and behavioral competencies in order to increase information security awareness. All employees receive regular information security training and are made aware of information security policies. With these trainings, a proactive approach to security threats is encouraged.
Effective processes are operated for the detection, reporting, response and improvement of information security incidents. Security incidents are responded quickly and effectively through incident management and necessary measures are taken to prevent similar incidents in the future.
The use of the Information Security Reporting System is encouraged in order to respond quickly to existing or potential information security incidents. Reports made by employees are handled in accordance with confidentiality principles and resolved quickly.
All employees and all external parties who have access to the information assets or information systems of our company are obliged to comply with information security policies. Top management supports the achievement of information security objectives and the effective implementation of the Information Security Management System and ensures that the policy is reviewed at least once a year to maintain its relevance.
We use cookies in accordance with legal regulations to ensure the operation of our site. For detailed information about the cookies used, you can read our Cookies Policy.