Istanbul Aydın University’s information security policy encompasses the protection of information assets related to educational activities and the information security and business processes used to protect these assets.

Our Information Security Management System ensures that all our activities are conducted in compliance with the ISO 27001:2022 standard, guaranteeing the following principles:

PRINCIPLES

• Protection of Information: Protecting the availability, integrity, and confidentiality of information.
• Access to Information: Ensuring secure access to information assets for stakeholders.
• Information Security Risk Management: Identifying existing and potential risks to ensure information security, evaluating and managing them with an effective information security risk management approach.
• Corporate Image: Maintaining the credibility and brand image of the institution.
• Breach of Information Security: Implementing necessary sanctions in case of a breach of information security.
• Information Security Requirements: Fulfilling requirements arising from national, international, or sectoral regulations, meeting legal and relevant regulatory requirements, fulfilling obligations arising from agreements, and ensuring information security requirements arising from corporate responsibilities towards internal and external stakeholders.
• Threats to Information Security and Sustainability: Mitigating the impact of information security threats on business/service continuity and ensuring the continuity and sustainability of business operations.
• Maintenance of Information Security Level: Maintaining and improving the level of information security with established control infrastructure.