Our Information Security Management Policy

Within the context of our Information Securtiy Management System Policy, we, as Hergüner Danışmanlık A.Ş., undertake:

  • To ensure that all internal and client information is securely accessible,
  • To maintain and protect the integrity, completeness and accessibility of information,
  • To evaluate and manage any risk that may be associated with both internal and client information,
  • To protect the brand and trustworthiness of our firm,
  • To apply the necessary sanctions for any information security breaches,
  • To comply with all applicable local and international statutory and regulatory requirements, any contractual obligations, and legal ethics to provide information security,
  • To take actions to minimize the effect of information security threats in order to provide business continuity,
  • To protect and improve information access control infrastructure and our information security,
  • To increase staff awareness of information security management through education and training.

Our Quality Policy

We, as the management of Hergüner Danışmanlık A. Ş believe that the quality management system is focused on customer satisfaction. Our quality policy is;

  • To achieve a superior quality level at low cost by aiming to provide excellent service,
  • To create a timely, fast and efficient system by using technological facilities in corporate communication with our internal and external customers, suppliers and all other stakeholders,
  • To determine the necessary improvement areas by tracking the performance criteria and the processes regularly, to ensure the realization of the activities by providing the necessary conditions in order to establish , implement and carry out the system for effective execution of ISO 9001: 2015 Quality Management System,
  • To provide a seamless quality service at global standards and to increase the amount of trainings, social and cultural activities for a continous improvement; to raise awareness about the benefits of such activities in all segments and enabling the creation of the corporate culture by this way,
  • To encourage leadership and employee participation in all our processes with a participatory and pluralistic management approach,
  • To increase and maximize the level of customer satisfaction through adopting a perfectionist management approach , managing the customer feedback effectively and eliminating the non-value-added transactions resulting in an effective use of resources and the timely provision of services.

To identify and meet the expectations  of both the internal and external customers, suppliers, legal and corporate corporations,  its shareholders and the society, to support continous improvement, learning and innovation, to adopt an approach of excellence.


Business Continuity Management System Policy

Within the context of our Business Continuity Management System Policy, we, as Hergüner Danışmanlık A.Ş., undertake:

  • To continuously enhance and execute our Business Continuity Management Systems in accordance with international standards,
  • To plan, create, apply, and protect our Business Continuity Management Systems,
  • To conduct our practices by protecting our reliable, reputable, and trustworthy image,
  • To ensure the continuity of our products and services within the Business Continuity Management System,
  • To prepare our business continuity plans in accordance with the expectations of our customers, institutional policies, and our legal obligations,
  • To conduct drills to certify the workability of our plans in case of emergency, and
  • To reduce the effects threats may have on our service continuity and to contribute to its continuity.

Personal Data Management System Policy

Within context of our Personal Data Management System Policy, we, as Hergüner Danışmanlık A.Ş., undertake:

  • To follow the principles and rules established by the Constitution of the Republic of Turkey, the Turkish Personal Data Protection Law numbered 6698 (“PDPL”), and other laws related to the protection of personal data in line with the Information Security Policy, and to protect rights and freedoms of individuals whose personal data are processed by our Company,
  • To take the necessary measures under the PDPL and to prepare appropriate policies,
  • To apply the necessary technical measures for all information systems included in our Company’s area of activity and practices related to the processing of personal data,
  • To get confidentiality commitment signed by all of our data controller and processor units, companies providing support services, employees, and interns,
  • To prepare and update privacy notices for data subjects,
  • To keep processed data as long as required for the fulfillment of our legal obligations or the legitimate organizational interests pursued by our Company,
  • To provide adequate safeguards for cross-border data transfers, and
  • To sensitively process and protect special categories of personal data.