This policy covers information assets related to educational activities and information security and business processes used to protect these assets.
^ Our Information Security Management System ensures that all of our activities are run in accordance to ISO 27001:2013 standards.
^ It guarantees a secure Access to information assets of its own or shareholders,
^ To protect the availability, integrity and privacy of the information,
^ To manage and evaluate the risks that may occur in information assets of its own and the shareholders.
^ To protect the reliability and the brand image of the institution,
^ To apply the required sanctions in the event of information security neglecting,
^ To ensure the information security requirements arising from the institutional responsibilities for internal and external stakeholders, from the fulfillment of the obligations arising from the agreements, from the fulfillment of legal and related legislative requirements, national, international or sectoral regulations,
^ To decrease the effects of information security threats toward Business/Service continuity and ensure the continuity and sustainability of the business,
^ And to maintain and better the information security level with the established control infrastructure.