In accordance with the Nurol Holding Information Security Management System Standard:

• Ensuring secure access to information assets for employees, suppliers, and customers,
• Protecting the confidentiality, integrity, and accessibility of information,
• Assessing and managing risks that may arise on information assets of employees, suppliers, and customers,
• Protecting the reliability and brand image of the Holding,
• Implementing necessary sanctions in case of information security breaches,
• Fulfilling the requirements of national and international regulations, relevant legislation and standards, meeting obligations arising from agreements, and ensuring information security requirements stemming from corporate responsibilities towards internal and external stakeholders,
• Reducing the impact of information security threats on business/service continuity, ensuring the continuity and sustainability of the business,
• Providing training to enhance competencies to increase information security awareness,

commits to these principles.