Policies

Policies

At SOCAR Terminal, our Security Policy aims to safeguard port facilities, all essential structures ensuring their functionality, personnel, and visitors in compliance with the laws and regulations of the Republic of Türkiye and the ISPS Code, to which Türkiye is a signatory. We are committed to implementing internationally standardized measures and practices, as well as adhering to existing laws and regulations, to prevent threats originating from the facility to ships or from ships to the facility during the intersection of port, facility, and ship operations.

We commit to implementing continuous preventive and deterrent measures against security risks and violations while respecting environmental and human values and ensuring the responsible allocation and use of economic resources. In collaboration with authorities and law enforcement, we aim to prevent incidents that may occur, particularly within the duty area and its approach routes, minimize potential damages, and fulfill our legal obligations in accordance with the following principles:

  • To realize modern security management practices within the framework of international, EU and national security regulations, to maintain security practices in a manner that respects human rights, complies with the law and befits the identity of the institution,
  • To develop the “SECURİTY AWARENESS” of employees and to increase awareness, to fully implement security rules with all employees and business partners,
  • To establish detection, reporting and recording systems for security breaches and to respond to these breaches promptly,
  • To implement security measures in a way that will minimize the impact on the work of port users and employees without jeopardizing their security,
  • To create a sense of trust between port users and employees and third parties through security personnel and security system,
  • To work in coordination and cooperation with state security units, relevant organizations and neighbourhood companies in the implementation of security measures,
  • To continuously improve by following current security risks, developments in security practices and company security policy / systems,
  • To rapidly transition/support crisis/emergency management practices, when necessary,
  • To keep security personnel and systems ready for duty at all times through training, exercises, drills and inspections, and to eliminate deficiencies and weaknesses,
  • To ensure that the security management system is reviewed in the event of other changes that may affect the continuity or suitability of the security management system,
  • To keep security tools, equipment, instruments and systems well-maintained and in working condition.

Integrated Management System Policy

We, SOCAR ALİAĞA PORT OPERATIONS INC., affirm our adoption of the Integrated Management System that we have created based on our vision, mission, principles, and values to comply with legal and other obligations and offer top-notch port services while prioritizing customer satisfaction. Our focus on protecting the environment and our employees' occupational health and safety is critical to sustaining and expanding our business. We consider occupational health and safety an essential component of our operations, and our dedication to environmental protection and management is integrated into all our corporate procedures and policies.

Our commitments:
  • Developing international standard practices and complying with all national occupational health and safety and environmental legislation.
  • Identifying occupational health and safety and environmental threats and opportunities, developing controls and techniques to manage risks, updating risk assessments when necessary, and taking measures to prevent potential hazards.
  • Setting measurable targets for occupational health, safety, and environmental performance, continuously improving our activities, and regularly reporting on our progress.
  • Reducing our emission and waste rates to prevent air, water, and soil pollution and protecting natural resources to respect people and the environment.
  • Ensuring all stakeholders comply with our company's occupational health and safety and environmental policies and collaborating with parties that adhere to occupational health and safety and environmental legislation.
  • Showing zero tolerance for occupational health and safety and environmental accidents, incidents, situations, and behaviors that cause damage.
  • Cooperating with neighboring facilities, competent authorities, and local governments on occupational health, safety, and environmental issues and adding value to these partnerships.
  • Achieving operational excellence and customer satisfaction at the highest level through increased efficiency and continuous improvement methodology.
  • Systematically following up on customer complaints and providing timely and accurate information.
  • Continuously checking the effectiveness of all business processes and managing changes when necessary.
  • Providing consultation and participation of employees and employee representatives.
  • Meeting the requirements of integrated management system standards with the participation of all employees and continuously improving their applications.
  • Continuing our activities in compliance with national and international legal conditions, legislation, standards, and other requirements.
  • Communicating openly, transparently, and based on mutual trust with internal and external stakeholders.

Introduction and Scope

This Privacy Policy ("Policy") sets out the rules for the processing of personal data during the use of the http://www.socarterminal.com.tr ("Website") domain name, which is provided and operated by SOCAR Aliağa Port Operations Inc. ("SOCAR Terminal"). The purpose of the Policy is to ensure that the personal data of Data Owners (the individuals whose personal data is processed during the use of the Website, hereinafter referred to as the "Data Owner") is processed under Law No. 6698 on the Protection of Personal Data and other relevant legislation.

The use of the Website implies that this Policy has been read, understood, and accepted. If you do not agree to the rules in this Policy, please immediately terminate your use of the Website.

If links are provided on the Website to third-party websites, applications, or similar elements accessed as a result of using such links are outside the scope of this Policy. In such cases, the privacy policy of the relevant internet site, application, or similar element may apply.

Data that does not constitute personal information and is anonymized are outside the scope of this Policy.

Who is the Data Controller?

Regarding processing your personal data, the data controller within the scope of Law No. 6698 on the Protection of Personal Data is our company, SOCAR Aliağa Port Management Inc., located at Siteler Mah. Kardeşlik Cad. No: 16, 35800 Aliağa / İzmir.

Our Basic Principles for Processing Your Data

When processing your data, we act in accordance with the following principles:

  • Compliance with laws and ethical principles,
  • Being accurate and up to date, when necessary,
  • Processing for specific, precise, and legitimate purposes,
  • Being related to the purpose for which they are processed, limited, and proportionate,
  • Being stored for the duration specified by the relevant legislation or for the period required for the purpose they were processed.
  • Your name, surname,
  • Your email address,
  • Your request/suggestion/complaint that you send via the SOCAR Terminal contact form,
  • Your IP address,
  • Your resume information that you send through our Human Resources department.

What are the Methods of Collecting and Processing Your Data?

SOCAR Terminal collects your data through Cookies during your use of the Internet Site or through your completion of relevant fields as data owners.
As SOCAR Terminal, we may use your data to evaluate, analyze, and respond to your requests/suggestions/complaints. In addition to this, your collected personal data may be processed for purposes such as fulfilling our legal obligations, determining usage habits for data owners, conducting marketing and sales activities, managing human resources, developing and improving the Internet Site, and resolving software-related errors.

With Whom Are Your Data Shared?

We may share your data under this Policy and the new personal data we obtain by processing them with third parties (including cloud computing service providers) that we receive support or service from to fulfill the data processing purposes specified in the relevant section and our stakeholders within SOCAR Türkiye to ensure the realization of the aforementioned purposes.
In addition, your data may be shared with third parties to improve and develop the Internet Site and resolve software-related errors. Finally, your data may be shared with judicial and administrative authorities, institutions, and organizations that request it under legal rules.
Your data may be stored on servers located in various countries.

Storage of Your Personal Data

Your data is stored for the duration required by the purposes of processing your data specified in the relevant section above or legally required periods.

Information on Precautions Taken Regarding the Security of Your Personal Data

To ensure that your data is not processed unlawfully, that your data is not illegally accessed, and that your data is stored securely, SOCAR Terminal takes all necessary technical and administrative measures to ensure an appropriate level of security.

Our company regards information as a valuable asset, and it is essential to protect the information, which is critical for the sustainability of our activities throughout its life cycle.
In SOCAR Türkiye, information security is defined as protecting information against dangers and threats to ensure business continuity and minimize the damages that may arise from financial losses and security breaches.

Information security provides the following for any corporate and personal data of value:

  • Confidentiality to be known and accessed only by authorized personnel
  • Integrity to ensure that the information is correct and complete and that the changes made are kept under control.
  • Accessibility, so empowered people can use information whenever they need it.

 

In line with our company's vision and mission, information security is handled as a strategic issue and managed with a risk and process-oriented approach. The aims are as follows:

  • Ensuring business continuity
  • Limiting and managing potential risks
  • Meeting legal obligations, compliance requirements, and other requirements
  • Ensuring data security in services offered to internal and external customers
  • Protecting our production facilities against cyber threats
  • Gaining competitive advantage
  • Protection of corporate prestige
  • Increasing information security awareness

Our company's information security is planned, implemented, monitored, and reviewed with a risk management approach in line with international standards and best practices. Information security risks are analyzed, and risk mitigation activities and periodic audits are carried out with independent auditors.

SOCAR Türkiye Senior Management commits to take the necessary security measures to protect the information stored, processed, or transmitted electronically or physically to provide the required resources and support for continuous improvement within the Information Security Management System framework to comply with legal and other requirements.

Our company is obliged to ensure the security of information and information systems by the legal regulations in our country and especially the EMRA and KVKK regulations. All our employees, especially data and process owners, are responsible for ensuring information security. Therefore, anyone who uses, manages, and accesses company information systems and information assets must comply with the following responsibilities:

  • Protecting the confidentiality, integrity, and availability of information assets
  • Knowing and applying information security policies, standards, procedures, and instructions
  • Using IT resources under laws, policies, and business purposes
  • Adopting and enforcing a clean desk and screen policy
  • Ensuring the confidentiality and privacy of personal information
  • Sharing information only with authorized persons
  • Using hard-to-guess passwords and ensuring their privacy
  • Ensuring that information is adequately backed up and business continuity
  • Classifying information for owned data and taking necessary precautions
  • Reporting information security breach incidents and potential vulnerabilities