Our Policies
Our Quality and Information Security Policy
The main theme of the TS EN ISO 27001:2022 Information Security Management System is to demonstrate that information security management is provided within Geossoft CONSTRUCTION INDUSTRY AND TRADE LTD. and to ensure risk management, measure the process performance of information security management, and regulate relationships with third parties regarding information security.
The purpose of our Integrated Policy in this direction;
To protect the information assets of Geossoft CONSTRUCTION INDUSTRY AND TRADE LTD., whether intentional or unintentional, from any kind of threat from inside or outside, ensure access to information as required by business processes, comply with legal requirements, and produce quality service.
To ensure the continuity of the three fundamental elements of the Information Security and Quality Management System in all activities carried out.
Confidentiality: Preventing unauthorized access to important information,
Integrity: Demonstrating the accuracy and integrity of information,
Accessibility: Demonstrating that information can be accessed by authorized personnel when necessary.
To deal not only with data kept in electronic media but also with the security of all data in written, printed, oral, and similar media.
To provide training on Information Security and Quality Management to all personnel to raise awareness.
To ensure that all actual or suspected vulnerabilities in Information Security are reported to the ISMS Team and investigated by the ISMS and QMS Manager.
To prepare, maintain, and test business continuity plans.
To periodically evaluate Information Security and Quality, identify existing risks. Review and follow up on action plans resulting from evaluations.
To prevent any disputes and conflicts of interest arising from contracts.
To ensure accessibility to information and to meet the requirements of the job for information systems.
