Legal information

Information Security Policy.

Paribu Kripto Varlık Saklama Kuruluşu A.Ş., the primary focus of the ISO 27001:2017 Information Security Management System ("ISMS") is to establish and maintain an information security environment that complies with sectoral standards through a risk-based approach.

In this context, the objectives of our Information Security Policy are as follows:

  • To ensure that our Information Security Management System is documented, certified, and continuously improved in accordance with the requirements of the ISO 27001:2017 standard,
  • To protect the information assets of Paribu Kripto Varlık Saklama Kuruluşu A.Ş. against all kinds of threats that may arise from internal and/or external factors, to comply with all applicable legal and regulatory requirements, and to carry out continuous improvement activities,
  • To take necessary actions to prevent unauthorized and/or unlawful access to information assets, as well as the alteration, disclosure, or destruction of information assets, in line with the fundamental principles of information security: confidentiality, integrity, and availability,
  • To ensure the security of all data stored in electronic or physical environments,
  • To ensure that the personnel of Paribu Kripto Varlık Saklama Kuruluşu A.Ş. adopt a conscious approach to information security, fulfil the responsibilities within their scope of duties, and exercise the utmost care in complying with published policies, procedures, instructions, and announcements,
  • To periodically assess information security risks, identify existing risks, review action plans based on assessment results, and monitor their implementation,
  • To ensure that activities are carried out to enhance the organization's internal security risk maturity level in line with and in support of the objectives defined under our Information Security Policy.
  • To evaluate ISMS objectives within the framework of risk and opportunity management, ensuring the continuity of strategic business plans and the fulfilment of monitoring and control responsibilities.

As Paribu Kripto Varlık Saklama Kuruluşu A.Ş., we approach the protection of processed personal data with great sensitivity in accordance with the Personal Data Protection Law (LPPD). In this scope, we commit to diligently implementing the technical and administrative measures we have taken, ensuring the necessary audits, continuously improving our ISMS objectives to become a role model in information security within the sector, and maintaining sustainable ISMS conditions.