INFORMATION SECURITY POLICY

Our commitment is to:

a) The integrity of all business processes, information assets, and supporting IT assets and processes, through protection from unauthorized modification, guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity.

b) Availability of all business processes, information assets, and supporting IT assets and processes to authorized users when needed, ensuring timely and reliable access to and use of information.

c) Confidentiality of all information assets (information is not disclosed to unauthorized persons through deliberate or careless action). Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information.

d) All IT-enabled processes and stakeholders shall follow the rules and regulations or circulars published in Keyvan Aviation.

e) All audit trails and logs, as decided by the Management Information Security Forum shall be maintained and monitored by SMS, Quality Manager;

f) All operational and system changes shall be monitored closely; these shall adhere to the change management process;

g) Keyvan Aviation complies with the laws, regulations, and contractual obligations which are applicable to Keyvan Aviation in general and in particular to its ISMS;

h) All applicable information security requirements are satisfied,

i) Continual improvement of the information security management system