ISMS FRAMEWORK POLICY
KAIZEN DESIGN AND TECHNOLOGY INC. aims to uphold the ISO 27001:2022 Information Security Management System Standard in order to comply with national and international regulations, relevant legislation and standard requirements, obligations arising from agreements, and information security, Personal Data, and Privacy requirements arising from corporate responsibilities towards internal and external stakeholders. In line with this goal, KAIZEN DESIGN AND TECHNOLOGY INC. is committed to achieving the following: a) To provide secure access to its own and its stakeholders' information assets,
b) To protect the availability, integrity, and confidentiality of personal and corporate information for which it is responsible,
c) To assess and manage risks that may arise to its own and its stakeholders' information assets,
d) To protect the institution's reliability and brand image,
e) To provide secure access to information assets for employees, suppliers, and other stakeholders,
f) To implement necessary sanctions in the event of an information security breach,
g) To reduce the impact of information security threats on business/service continuity and to ensure the continuity and sustainability of the business,
h) To maintain and improve the level of information security through the established control infrastructure,
i) To allocate, establish, operate, and continuously improve resources to meet the requirements of the TS ISO/IEC 27001:2022 ISMS standard,
j) To be audited by internal audits and independent third-party institutions to determine the compliance of information security activities with laws and standards,
k) To develop competencies to increase information security awareness. To provide training.
l) To provide our services as quickly as possible and without interruption to ensure compliance with all legal regulations and agreements related to information security.
m) To implement and monitor information security policies, and to implement necessary sanctions in case of potential violations.