KTO Karatay University Information Security Policy covers the information assets related to the education and training activities, as well as the information security and business processes to protect those assets. KTO Karatay University, which holds ISO 27001:2013 Information Security Management System, guarantees that all activities are carried out in a standardized manner. In addition to this, it undertakes: To access its own and its stakeholders' information assets securely, To protect the availability, integrity and confidentiality of information, To evaluate and manage the risks that can arise with information assets, To protect the reliability and brand image of the institution, to apply the sanctions deemed necessary in the event of breach of information security To meet the requirements arising from national, international or industrial regulations, legal and relevant legislation to which it is subject, to fulfill its obligations arising from agreements, to ensure information security requirements arising from corporate responsibilities towards internal and external stakeholders, To reduce the impact of information security threats and to ensure business continuity and sustainability, To maintain and improve the level of information security with the established control infrastructure.