Data Security Policy

Techveck is responsible for meeting the ‘Information Security and Personal Data Privacy’ requirements for its employees, partners, and suppliers, in order to ensure the confidentiality, integrity, and availability of both its own services and information assets, as well as those of its customers.
In order to meet these requirements;

• To ensure the confidentiality of information accessed, used, or disclosed,
• To ensure business continuity,
• To prevent or minimize the impact of potential security breaches,
• To prevent access by unauthorized persons attempting to compromise the confidentiality and integrity of information,
• To ensure information availability, to prepare, maintain, and test business continuity plans,
• To meet legal and regulatory requirements,
• To provide regular training to all Techveck employees in order to enhance information security and privacy awareness and consciousness,
• To ensure the reporting of all existing or suspected vulnerabilities in information security, and to develop practices for initiating processes to investigate them,
• To prepare the corporate risk analysis,
• To determine the measures required to be met as per the risk analysis,
• To define the duties, roles, and responsibilities for employees,
• To define security processes and ensure their implementation,
  To prepare the policies required for security expectations and ensure their implementation,
• Compliance with Article 12/1(c) of the Law on the Protection of Personal Data (LPPD);
• In accordance with the Personal Data Privacy Management System standard, information security and privacy management systems are followed in the capacities of Data Controller and Data Processor.

Techveck commits to continuously improving the Information Security and Personal Data Privacy management system implemented within the company. The Information Security Officer is responsible for ensuring information security and personal data privacy, while all managers are responsible for implementing these within their respective business areas. The senior management of our company is responsible for the implementation of the Information Security and Personal Data Privacy Policy, reviewing it at least once a year, and guarantees compliance with its requirements.