INFORMATION SECURITY FRAMEWORK POLICY

IKEA Turkiye commits to,

• Providing secure access to the information assets of itself and its stakeholders,
• Protecting the availability, integrity and confidentiality of information,
• Evaluate and manage the risks that may occur on the information assets of itself and its stakeholders,
• Protect the credibility and brand image of the institution,
• Apply the necessary sanctions in case of information security breach,
• Provide information security requirements arising from the national, international or sectoral regulations to which it is subject, fulfilling the requirements of the relevant legislation and standards, meeting the obligations arising from the agreements, and corporate responsibilities for internal and external stakeholders,
• Reduce the impact of information security threats on business/service continuity and to ensure business continuity and sustainability,
• Maintain and improve the level of information security with the established control infrastructure,
• Provide trainings that will develop competencies in order to increase information security awareness,
• Ensure the security of information assets in all stores and logistics areas located in Turkiye,

in line with the ISO 27001:2013 Information Security Management System.

MAPA Mobilya ve Aksesuar Pazarlama A.Ş. Management Team