In providing its services, our Company acts in compliance with national and international occupational health and safety legislation and regulatory requirements to protect the health and safety of its employees:

• Ensures that all activities are carried out safely and securely.
• Considers the creation of a healthy and safe working environment as an integral part of its work culture by taking proactive measures in all processes and activities, eliminating potential hazards, and continuously improving together with employees within the framework of an Occupational Health and Safety Management System to prevent work accidents and/or occupational diseases.
• Ensures monitoring of the working environment and continuity of preventive medical practices.
• Gives the highest priority to human health in all operations.
• Acts in all decisions based on the value given to people, guided by the principles that “No task is so urgent or important that it endangers the health and safety of employees” and “Employee health and safety come first.”
• Conducts activities to increase employees’ awareness and understanding of occupational health and safety.
• Ensures employee satisfaction by evaluating requests and suggestions in a fair, impartial, and confidential manner, in accordance with laws, regulations, and company rules, as quickly as possible.

• To take all necessary measures to protect the ecological balance and minimize negative impacts during the services we provide, and to consider environmental criteria when making investment decisions.
• To conduct all necessary training, announcements, and awareness activities to ensure that environmental consciousness is embraced by all our employees and all suppliers providing goods and services, becoming a way of life.
• To set an example for competitors, stakeholders, society, and other organizations by sharing our knowledge and experience through our practices, thereby contributing to the widespread adoption of environmental awareness.
• To ensure reduced consumption of natural resources and waste generation during our activities; to prevent pollution by conducting necessary measures for the continuous monitoring and protection of air, soil, and water; and to identify environmental aspects by determining the types and impacts of environmental effects.
• To comply with all environmental laws and regulations in our operations, to act toward the continuous improvement of our environmental performance, and to define, review, and disclose objectives and targets in this direction.

As the operator of Istanbul Sabiha Gökçen International Airport, we commit to creating value for our customers and stakeholders based on a safe, secure, high-quality, and continuously innovative service approach by:

• Complying with national and international regulations and structuring our processes accordingly while delivering all services at our airport.
• Defining our processes within the framework of the company’s policies and strategies, determining responsibilities, objectives, and monitoring methods, and achieving process-based goals through periodic performance reviews.
• Using company resources optimally under the principles of SMS and Management Systems, producing accurate and timely solutions to prevent potential nonconformities, and ensuring continuity of our operations.
• Establishing and executing all necessary processes with a risk-based approach, taking threats and opportunities into account, to deliver fast, safe, solution-oriented, timely, and uninterrupted services.
• Making every effort to develop airport operations while considering the company’s profitability principle.
• Utilizing modern methods, technology, knowledge, and management systems required today, and conducting the necessary research and investments to achieve the needed integration.
• Promoting environmentally friendly practices, implementing measures to reduce emissions, and improving energy efficiency.
• Maintaining high employee satisfaction, engagement, and motivation through continuous support of personal and professional development with training programs.
• Closely following developments in the rapidly evolving aviation sector, continuously improving service quality, and providing employees with the necessary physical and social working environment to ensure customer satisfaction.
• Accepting continuous quality improvement in all activities and across all employees as an integral part of the company’s business planning and organizational goals.
• Ensuring that company management and all personnel adopt safety, life protection, reliability, punctuality, low cost, shared understanding, effective communication, and corporate image as guiding principles, performing duties according to our goals and values, and guaranteeing the understanding, implementation, and continuity of this policy.
• Committing to being a contemporary, forward-looking, and self-renewing enterprise with an internationally open image, aspiring to lead the entire aviation industry in the future.

Being aware that one of the fundamental pillars for achieving competitive advantage is “people”:

• To build a team that is open to innovation, willing to continuously improve, and embraces teamwork,
• To create opportunities that allow our employees to contribute both personally and professionally according to their training needs,
• To be a “whole” that respects society, upholds ethical values, and protects the environment.

HEAŞ Management recognizes the importance of implementing and maintaining the Information Security Management System (ISMS) for the organization and takes the necessary measures accordingly. Information is critical for the continuity of business activities and must be appropriately protected.

HEAŞ operates its information security processes in accordance with the TS ISO/IEC 27001:2022 standard. The organization commits to allocating the necessary resources to implement and continuously improve the Information Security Management System.

The main objectives established to systematically manage information security are as follows:

• To ensure the confidentiality, integrity, and availability of corporate information assets and all entrusted information assets from relevant parties within the scope of the Information Security Management System,
• To assess potential risks related to the confidentiality, integrity, and availability of information and minimize their impacts,
• To prevent disruptions in critical business processes and, if disruptions occur, to restore operations within the targeted recovery time,
• To comply with all applicable legal requirements and contractual obligations related to information security with third parties (partners, customers, suppliers),
• To protect the reputation and brand value of employees, customers, suppliers, and HEAŞ in the public eye,
• To plan awareness-raising and guiding activities to ensure the participation and compliance of all personnel and business partners in management systems, in line with a holistic approach,
• To allocate necessary resources and plan training programs to enhance employee competence to meet and effectively operate the requirements of the management system,
• To conduct training aimed at improving both technical and behavioral competencies to increase information security awareness,
• To perform regular reviews to continuously improve the processes and activities used in the management system,
• To prepare policies and procedures for mandatory information security controls, review compliance, and implement controls for their development and improvement,
• To implement management systems as an integral part of the organizational culture,
• To ensure that all business processes are aligned and balanced with information security processes.

HEAŞ Information Security Policies and Procedures are valid and mandatory for all HEAŞ personnel—whether full-time, part-time, permanent, or contractual—who use HEAŞ information or business systems, regardless of geographic location or business unit. Third-party service providers and their support personnel who require access to HEAŞ information but do not fall under these classifications must also comply with the general principles of this policy, as well as other security responsibilities and obligations they are required to follow.

As the Sabiha Gökçen International Airport Authority, HEAŞ commits to:

• Complying with national and international regulations and structuring our processes accordingly while delivering all services at our airport,
• Treating all energy used in our activities as a “national asset,” ensuring its efficient use, setting targets, defining monitoring methods, and achieving process-based goals through periodic performance reviews,
• Providing all necessary information and resources to achieve our objectives and targets,
• Fulfilling all legal requirements related to energy efficiency within the scope of our activities,
• Continuously improving our energy efficiency,
• Establishing and executing all necessary processes with a risk-based approach, taking threats and opportunities into account, to deliver fast, safe, solution-oriented, timely, and uninterrupted services,
• Developing and implementing projects that increase efficiency,
• Utilizing modern methods, technology, knowledge, and management systems required today, and supporting our objectives and targets by procuring energy-efficient products, conducting necessary research and investments, and achieving the required integration,
• Promoting a perspective across all activities and employees that recognizes energy as a valuable resource and supporting improvement initiatives,
• Committing to be a forward-looking enterprise with an internationally open, contemporary, and continuously renewing image, aspiring to lead the entire aviation industry in the future.