Logo
Continue

Information Security Policy

The purpose of the Information Security Management System (ISMS) Policy is to communicate Aksa Jeneratör Sanayi A.Ş.'s approach to ISMS in line with company strategies for the locations, assets, processes, and personnel specified in the “ISMS Scope Document,” to record ISMS objectives and targets, and to outline the actions required for the implementation of this approach.

Aksa Jeneratör Sanayi A.Ş., a Kazancı Holding company with 50 years of experience in the energy sector—operating in electricity generation, sales, and natural gas and electricity distribution—continually improves its Electricity Distribution Services with a focus on customer satisfaction, benefiting from the synergy and experience of the companies under the Holding umbrella. Founded in the 1950s, Kazancı Holding has always based its more-than-50-year journey on customer satisfaction and trust. With its activities in generator manufacturing, natural gas distribution, and energy plant installation/operation, it has become one of the leading firms in the energy sector. Through its investments in energy, tax contributions, and employment generation, the Group makes significant contributions to the Turkish economy.

In our organization, access controls are implemented in accordance with the principle of “need to know” and legal compliance, along with security measures aligned with advancing technology. Considering information security threats, the organization applies an information security risk management system that maintains an appropriate balance between risks and controls in relation to organizational assets and services.

It defines the authorities, roles, and responsibilities for establishing and operating the Information Security Management System, and reviews them periodically.

In this context, our information security objectives are:

  • Ensuring information security and business process standardization in process management,
  • Maximizing the confidentiality, integrity, and availability of processed data,
  • Ensuring compliance with requirements and contracts.

As Senior Management, we commit to fulfilling the defined information security objectives, to comply with the “Information Security Management System” that has been defined, implemented, and is operational in accordance with the requirements set forth in TS ISO/IEC 27001, to allocate the necessary resources for the system to operate effectively, to evaluate its efficiency, to continually improve it, and to ensure that it is understood by all relevant parties.