CYBER SECURITY POLICY

MEANDER FERIBOT ISLETMELERI ANONIM SIRKETI (“Company”), is supported by the necessary technical and administrative security measures to ensure that users can conduct transactions in a secure, stable, and sustainable digital environment.

This Cyber Security Policy (“Policy”), within the framework of the Personal Data Protection Law No. 6698 (“KVKK”), relevant legislation, and general cybersecurity principles, has been prepared to explain the measures taken against potential cybersecurity risks that may arise during the use of the Company's websites and the services provided through these sites, as well as the Company's responsibilities in this regard.

This Policy covers all users who visit the Company's websites, make ticket reservations or purchases, apply for a visa on arrival, or perform any other transaction through these sites.

The Company reserves the right to make changes to this Policy regarding cybersecurity as it deems necessary. The current version of the Policy shall enter into force upon publication on the Company's websites.

1. HOW DO OUR CYBERSECURITY MEASURES WORK?

The Company Website is configured in accordance with current cybersecurity standards to ensure the security of user data, prevent unauthorized access, and maintain system integrity. In this context, the website infrastructure is regularly scanned for security vulnerabilities, and necessary security patches and technical updates are applied periodically.

• Strong authentication methods and role-based authorization mechanisms are used to prevent unauthorized access,
• Data transmission is encrypted using the SSL (Secure Socket Layer) protocol,
• System accesses and user activities are monitored and controlled through log records,
• Physical server security is supported through access controls and data backup systems,
• Firewalls and intrusion prevention systems integrated into the platform detect unusual traffic and intervene automatically.

Despite all these precautions, due to the nature of the internet infrastructure, zero risk cannot be guaranteed. Therefore, it is important for users to use the necessary security software on their own devices and ensure the security of their personal passwords.

2. COMPANY'S RESPONSIBILITY

Although all necessary technical and administrative security measures are taken within the scope of the https://meanderferibot.com website operated by the Company, cyber threats cannot be completely eliminated due to the nature of the internet. Therefore;

1. The Company shall not be liable for any direct or indirect damages, data integrity breaches, transaction delays, or any loss arising from security vulnerabilities.
2. The User is responsible for ensuring the security of their own device when accessing the Site, using strong passwords, managing their sessions securely, and taking the necessary software protection measures. The Company cannot be held liable for any damages that may arise as a result of the User's failure to comply with these obligations. While the Company continues to update and strengthen measures to ensure the security of its websites, it does not offer any guarantee of uninterrupted protection or compensation for any security breaches.

3. YOUR RIGHTS

If you wish to request more detailed information about the cybersecurity measures taken within the scope of the websites operated by the Company, you can contact MEANDER FERIBOT ISLETMELERI ANONIM SIRKETI using the following methods:

• You can send your request in writing by mail to Camikebir Mah. Mahmut Esat Bozkurt Cad. Turistik Site No:14/B, 09400 Kusadasi / Aydin
• You can apply by sending your petition, signed with a secure electronic signature or mobile signature, to info @ meanderferibot.com or meanderturizm @ hs03.kep.tr.
• The company undertakes to evaluate and respond to incoming requests as soon as possible, within the framework of the relevant legislation.