Trust Center
Trust Center
Certifications, security standards and compliance information.
Certified
ISO 27001 Information Security Management System
Information security management of e-document creation, transmission and archiving processes
Validity: 2024-2027Certified
ISO 20000 IT Service Management
IT service delivery, incident management, change management and continual improvement processes
Validity: 2024-2027Certified
ISO 22301 Business Continuity Management System
Systematic management of business continuity planning, disaster recovery and crisis management processes
Validity: 2024-2027GIB Private Integrator Authorization
Authorized by the Turkish Revenue Administration (GIB) as a Private Integrator for e-invoice, e-archive, e-ledger and all e-document types.
Active AuthorizationKVKK Compliance
Fully compliant with Turkish Personal Data Protection Law (KVKK / Law No. 6698). Data processing agreements, privacy impact assessments and DPO appointment completed.
CompliantData Security Architecture
AES-256 data encryption (in transit and at rest)
End-to-end secure communication via TLS 1.3
Multi-layered access control with MFA
Regular penetration tests and vulnerability scanning
24/7 SOC monitoring and real-time threat detection
Automated backup and disaster recovery (RTO < 4 hrs)
Data centers: Turkey (primary), EU (secondary)
Log management and audit trails (minimum 5-year retention)
SLA Commitments
99.9%
Platform availability
Monthly uptime guarantee
< 15 min
First response time
For critical priority requests
Business Continuity
- Active-active data center architecture
- Automated failover mechanism (< 60 sec)
- Regular disaster recovery drills
- Business continuity plan (ISO 22301 aligned)
- Data replication (synchronous and asynchronous)