ONE DOSE HEALTH TECHNOLOGIES INTEGRATED MANAGEMENT SYSTEMS POLICY

 

Information Security is the main theme of Personal Data Management Systems and Quality Management System;

It has been determined as the provision of digital health services within ONE DOSE SAĞLIK TEKNOLOJLARI A.Ş., software development, training, consultancy, sales and after-sales support services, private integrator services and personal data processing activities required for the provision of these services..

In this direction, the purpose of our ISO 27001, ISO 27701 and ISO 9001 Policy;

  • To protect One Dose Health Technologies information assets against all kinds of threats that may occur from inside and / or outside, knowingly or unknowingly, to ensure accessibility to information as required by business processes, to meet legal and regulatory requirements, and to work towards continuous improvement,,
  • To ensure the continuity of the three basic elements of the effective Information Security Management System (ISMS) in all activities carried out:

Confidentiality: Preventing unauthorized access to sensitive information,

Integrity: Demonstrating that the accuracy and integrity of information is ensured,

Accessibility: Demonstrating that authorized persons can access information when necessary,

  • Raising awareness by providing Information Security Management trainings to all staff,
  • Reporting all real or suspected vulnerabilities in Information Security to the ISMS Team and ensuring that they are investigated by the team,
  • Prepare, maintain and test business continuity plans,
  • To identify existing risks by making periodic assessments on Information Security; to review and follow up action plans as a result of the assessments,
  • Preventing contractual disputes and conflicts of interest.
  • Meeting business requirements for information accessibility and information systems,
  • To produce competitive products that do not compromise on quality with innovative thinking and R&D studies by following the innovations in the health sector,
  • To offer quality, affordable products to the market with high quality elements that will ensure the highest level of customer satisfaction,
  • Ensure that the products we put on the market fully comply with all national and international requirements,
  • To work in accordance with national and international requirements,
  • To ensure the effective implementation of the quality system at all stages of R&D and production and to carry out the necessary training activities to raise the quality awareness of all employees in our organization,
  • To provide the necessary resources for the effective implementation and continuous improvement of our risk-based quality system,
  • Ensure the security of personally identifiable information (GDPRPII),
  • To work in compliance with KVKK and GDPR legislation,
  • Demonstrate a high level of sensitivity to personal data privacy

ISO 27001, ISO 27701 and ISO 9001 have been determined as our Policy.

25.01.2024

General Manager

Tolga Tacettin TUNCER