SANTUR TURİZM A.Ş.

• Undertakes to provide secure access to information assets of it and its stakeholders,
• To protect usability, integrity and confidentiality of the information,
• To evaluate and manage the risks that may occur related to information assets of it and its stakeholders,
• To protect reliability and brand image of the organization,
• To impose sanctions that are deemed necessary in case of violation of information security,
• To ensure information security requirements arising from the national, international or sectoral regulations which it is subject to, fulfilling requirements of the legal and relevant legislation, meeting the obligations arising from the agreements and corporate responsibilities towards internal and external stakeholders,
• To reduce the effects of information security threats on business/service continuity and to ensure continuity and sustainability of the business,
• To maintain and improve information security level with the control infrastructure established.