Information Security Policy

1. Purpose

The purpose of this policy is to safeguard the confidentiality, integrity and availability of information assets within the scope of activities carried out by Disera, and to ensure the effective establishment, operation, maintenance and continuous improvement of the Information Security Management System (ISMS).

2. Scope

This policy covers the protection of information security in all activities carried out within the scope of the design, production, sales, and after-sales processes of medical devices.

All Disera employees, temporary staff, suppliers and all relevant parties who have access to information systems are within the scope of this policy.

3. Senior Management Commitment

Disera’s senior management is primarily responsible for the establishment, operation, maintenance and continuous improvement of the Information Security Management System.

In this context, senior management;

  • Ensures the development, implementation and understanding of the Information Security Policy,
  • Ensures that ISMS objectives are established and monitored in accordance with the principles of confidentiality, integrity and availability (CIA),
  • Supports the identification, assessment and mitigation of risks to information assets to an acceptable level,
  • Ensures the implementation of technical and administrative measures to protect personal data and corporate information,
  • Provides the necessary organisational structure, human resources, technology and financial resources for the ISMS,
  • Ensures the effective management of information security incidents and the application of necessary sanctions,
  • Ensures compliance with legal, regulatory and contractual obligations,
  • Supports controls against information security risks that threaten business and service continuity,
  • Supports training and awareness-raising activities aimed at increasing information security awareness,
  • Evaluates ISMS performance and opportunities for improvement during Management Review (MR) meetings.

Senior management remains committed to safeguarding information assets, ensuring the security of personal data, maintaining stakeholder trust and supporting corporate sustainability.

THIS WEBSITE USES COOKIES
We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services. You consent to our cookies if you continue to use our website.
OK Decline