Our Quality and Information Security Policies

  1. Anasayfa
  2. Our Quality and Informati [...]

   ALTIS CRO QUALITY POLICY

 

As Altis Medical Research Organization Training and Consulting, our objective is:

  • To be a leading organization in the healthcare sector, adhering to national and international standards and regulations, committed to sustainable development, and aware of its social and environmental responsibilities. Our goal is to provide products and services that offer the highest benefit to our customers, acting as their best solution partner while ensuring continuous customer satisfaction.
  • All our employees see each other as internal customers and aim for Zero Defects by adopting Process Approach and Continuous Improvement principles.
  • Recognizing that customer satisfaction is achieved through the happiness and satisfaction of our employees, we provide the best working environment, support continuous learning, and encourage personal and professional development.
  • We strive to reduce costs, increase efficiency and long-term profitability, and ensure sustainability by working in mutual cooperation and trust with our suppliers.
  • Through our Risk Management System, structured based on Process Approach, we effectively manage risks related to the Quality Management System (QMS) at an optimal level.

In this context, our aim is to systematically and consistently ensure quality awareness in all areas of activity and service units, adopting Total Quality Management as a way of life and fulfilling its requirements.

Board of Directors
03/11/2017

ALTIS CRO INFORMATION SECURITY POLICY

 

Our company aims to ensure the security of all physical and electronic information assets used in IT services to protect its reliability, maintain the reputation of the institutions it represents, ensure compliance with agreements made with third parties, and guarantee the continuity of core and supporting business activities with minimal disruption.

All individuals who utilize the IT infrastructure and access company information resources must safeguard confidential corporate information in personal and electronic communications as well as in exchanges with third parties. They are responsible for backing up processed information based on its level of internal criticality, implementing security measures appropriate to identified risk levels, reporting any information security violations to the relevant units, and taking necessary preventive actions to mitigate such incidents.

Internal corporate information resources, including announcements and documents, must not be shared with unauthorized third parties. Company IT resources must not be used for activities that violate national, international regulations, or associated directives. All employees of the company, as well as external parties identified in the Information Security Management System (ISMS), are required to comply with this policy, as well as all ISMS policies, procedures, and guidelines established to enforce it.

ALTIS CRO is responsible for reviewing and maintaining its Information Security Policy, implementing preventive and corrective measures against potential security threats, and ensuring compliance with security requirements. This policy is reviewed annually during the Management Review Meeting, considering significant security incidents, newly identified vulnerabilities, and changes in organizational or technical infrastructure, and is updated as necessary.

ALTIS CRO also conducts awareness training for its employees regarding Information Security Management System (ISMS) to ensure continuous compliance.

This policy has been reviewed and approved by ALTIS CRO Management.

Board of Directors
03/11/2017