As Imperial Tobacco Sigara ve Tütüncülük San. ve Tic. AŞ, we ensure the protection of the confidentiality, integrity, and availability of our assets and the reduction of risks to an acceptable level.

With the aim of managing all types of risks to our business continuity and information assets, we manage our activities in an integrated manner together with our other management systems. These activities include documenting, certifying, and continually improving our information security management system in accordance with the requirements of the ISO/IEC 27001:2017 standard; systematically managing risks to information assets; and delivering trainings that develop technical and behavioral competencies to enhance information security awareness.

By implementing this policy, our company has established and communicated to relevant parties the following principles: compliance with legal obligations; adherence to the provisions set out in contracts with third parties (business partners, clients, suppliers); ensuring that core and supporting business activities continue with minimal interruption; minimizing any loss of revenue or opportunity arising from security incidents; and meeting information security requirements.