Home | Press Room | Site Map | e-supply | Türkçe


A well-established past since 1954

sep About Us
Management Systems
Press Room

Information Security Management System (TS ISO/IEC 27001)

A‒  A+  print


TS ISO/IEC 27001 Information Security Management System CertificateInformation can exist in various forms: written, electronically classified or orally transferred. PharmaVision considers the information received from the customers as assets due to the nature of its business and provides a high level of confidentiality, integrity and availability. PharmaVision is the first company in the Turkish pharmaceutical sector to finalize the requirements and to receive the TS ISO/IEC 27001 Information Security Management System Certificate in 2007, which substantiates that we value our customers.

ISO/IEC 27001 Information Security Management System defines the only existing requirements which are internationally auditable. We as PharmaVision fulfill the requirements of this system by protecting the continuous workflow, increasing the collective awareness by intercompany seminars, risk management studies and internal audits.

We are pleased to sustain our Information Safety Management System by involving our complete workforce and to be worthy of the trust of our customers and business partners.


This policy encompasses all divisions of PharmaVision and all users who will be authorized to access the information systems. The purpose of this policy, as a requirement of Intellectual Property Rights and TS ISO/IEC 27001 Standard, is to ensure the integrity, confidentiality (protection against unauthorized access), availability and security of the company and customer information as an important asset of the organization, preserve the business continuity in our organization, sustain the integrity and reliability of our information management system throughout the relationships with all of our business partners and customers.

We commit to continuously improve our information security management system with the overall participation of our employees.

Our main target throughout the policy is;

  • To provide appropriate training to increase the awareness of all our associates and to achieve the required information security. 
  • To determine and assess the risks against potential information security threats, and to perform appropriate corrective and preventative actions; to achieve the sustainment of these applications by means of risk management.
  • To review the applications of information security management by carrying out internal audits on a regular basis to ensure that the information security system is up to date.
  • To protect production- and analysis-related information provided by our customers.
  • To establish the authorization rules commensurate with the confidentiality level of the information to be accessed.
  • To support our Information Security Policy with subsystems and instructions such as  “Password Management”, “Clean Desk, Clean Screen”, “Network Authorization”, “System Backup”, “E-mail Usage” and “Network Management”.

Dr.Ünsal Hekiman
Chairman of the Board/General Manager