Information Security and Sustainability
Sustainable development is defined by the World Business Council for Sustainable Development (WBCSD) as “forms of progress that meet the needs of the present without compromising the ability of future generations to meet their needs.” It is a comprehensive approach which, balancing the needs of the business world and human life with sustainability of natural resources, aims to form a plan today in harmony with the future in terms of its economic, environmental and social aspects.
Being a very effective strategic key in order to create competitive differentiation and continue innovation, the concept of sustainability is one of the main topics of numerous companies and organizations from the business world to NGO’s.
In the field of transportation, as in all other sectors, management of sustainability and studies for increasing performance are carried through by adopting policies of quality, information security, work and worker security, environment and energy, customer satisfaction, corporate social responsibility, human resources, and informing the supplier and the public; and by documents supporting such policies along with a corporate management concept.
kentkart has for many years internalized a distinct approach for sustainability and its management by owning 9001 Quality Management System, 14001 Environmental Management System, and 27001 Information Security Management System. The company advances its studies in this area each passing day.
Within this scope, the purpose of kentkart is to protect and preserve the present natural resources and values throughout its systems and applications and pass them onto the future generations. Smartcard technologies developed by kentkart have reduced paper consumption in public transportation to the minimum and “Internet Recharge” application have eliminated the use of paper ticket and receipt. Ending cash exchange within vehicles has resulted with reducing waiting time of buses in idle; thus, contributing considerably to economization in fuel consumption. Strongly supporting environmental, economic and cultural sustainability with all of its applications, kentkart has shown its wilful determination in this context by earning the right to be a “Member of Sustainable Public Transport” in the Dubai UITP World Congress upon signing the related declaration.
Information Security Policy
kentkart has stated to fulfil the conditions of the Information Security Management System; to continue its effectiveness and perpetual development; to meet information security needs considering legal and customer obligations as well as present and possible risks as its Information Security Policy and has presented it to the concerned parties. Risk management framework covers defining information security risks, evaluation and processing. Risk evaluation, applicability declaration and risk processing plan defines how information security risks are controlled. The Department of Information Security Management System is responsible for the management of this plan and its actualization. kentkart declares that the management supports enabling application and control of the “Information Security Policy” and execution of necessary sanctions in case of security breaches. Everybody who uses information processing infrastructure and who accesses information sources; must provide company information in private and electronic correspondence and in information exchange with third parties, and must back-up the processed information according to the level of importance; must take security measures determined according to risk levels; must report cases of information security breaches and inform concerned units; and must take measures to avoid such breaches. In-company information sources (announcements, documents etc.) cannot be transferred to unauthorized third parties. Company informatics sources shall not be used for activities against Turkish Republic Laws and related regulations. All personnel of the company and external parties defined by BGYS are obliged to adhere to this policy and BGYS policies, procedures and directives related with this policy.