Information Assurance Policy

INFORMATION SECURITY POLICY


At PAPILON SAVUNMA A.Ş., the core principle of our Information Security Management System (ISMS), based on the TS EN ISO 27001:2013 standard, is to ensure the implementation of effective information security management, to secure risk management processes, to measure ISMS performance, and to regulate our relationships with third parties on matters concerning information security.


In this context, the primary objectives of our ISMS Policy are:

  • To safeguard PAPILON SAVUNMA A.Ş.'s information assets against all kinds of threats—internal or external, intentional or accidental.
  • To ensure the accessibility of information in accordance with business requirements and legal regulations.
  • To maintain the continuity of the three fundamental components of the ISMS in all activities:


CONFIDENTIALITY

Preventing unauthorized access to sensitive and critical information.


INTEGRITY

Ensuring and demonstrating the accuracy and consistency of information.


AVAILABILITY

Ensuring authorized access to information whenever necessary.


  • Our commitment extends beyond digital data to include all information in written, printed, verbal, and other formats. To fulfill our information security objectives, we are committed to:
  • Raising awareness across the organization by providing regular information security training to all employees.
  • Ensuring that any actual or suspected vulnerabilities in information security are reported to the ISMS Team and investigated by the ISMS Manager.
  • Developing, maintaining, and testing business continuity plans.
  • Regularly assessing risks and reviewing action plans accordingly.
  • Preventing conflicts of interest and disputes arising from contractual obligations.
  • Ensuring that information accessibility and systems fully support operational needs.


PAPILON SAVUNMA A.Ş. is dedicated to maintaining a secure and resilient information environment in line with international standards and best practices.