Information Security Management System Policy

Page: 1 / 2

Document No: PG.00

Publication Date: 01.11.2016

Revision No: 00

Revision Date: 01.11.2016

The main theme of the TS EN ISO 27001:2022 Information Security Management System is to demonstrate that information security management is ensured within Dedica Technology Inc., to secure risk management, to measure the performance of information security management processes, and to regulate relationships related to information security with third parties.

Accordingly, the purpose of our ISMS Policy is to:

• Protect the information assets of Dedica Technology Inc. against all kinds of threats that may arise from internal or external sources, intentionally or unintentionally; ensure the availability of information as required by business processes, and comply with legal and regulatory requirements.
• Ensure the continuity of the three fundamental components of the Information Security Management System in all activities carried out.

• Ensure the security of all data not only in electronic media but also in written, printed, verbal, and similar formats.
• Raise awareness by providing Information Security Management training to all personnel.
• Report all actual or suspected information security breaches to the ISMS Team and ensure they are investigated by the ISMS Manager.
• Prepare, maintain, and test business continuity plans.
• Periodically evaluate Information Security to identify existing risks; review and track action plans based on evaluations.
• Prevent any kind of disputes or conflicts of interest that may arise from contracts.
• Fully meet the requirements for access to information and information systems.
• Commit to continuous improvement.