Skip to content
Manta Teknoloji
Our ProcessServicesProductsClientsBlogContact
Security & Compliance

Information security is the backbone of productivity.

Manta operates certified processes to safeguard the confidentiality, integrity, and availability of the data we and our customers handle. We are audited against international standards and fully aligned with Turkish KVKK regulation.

Last updated: May 26, 2026

Our certifications

Independently audited processes

Our certifications are reviewed annually by accredited independent audit bodies.

  • Made in Türkiye
  • ISO 27001
  • ISO/IEC 15504 (SPICE)
  • Accessibility

ISO/IEC 27001

Information Security Management System

Our software development, product operations, and any process where customer data is handled are certified under ISO/IEC 27001.

ISO/IEC 15504 (SPICE)

Software Process Capability

Our software development lifecycle is designed and certified against the SPICE process assessment model.

KVKK Compliance

Law No. 6698

Under Turkey's KVKK, we maintain active personal-data inventory, lawful notice, consent, retention, and erasure processes.

Security Practices

End-to-end protection

Data security

  • Data is encrypted at rest with AES-256 and in transit with TLS 1.2+.
  • Production databases are backed up automatically, encrypted, and exercised through scheduled restore drills.
  • Personal data and customer data follow least-retention principles under defined policies.

Infrastructure security

  • Production environments are hosted on ISO 27001 certified enterprise cloud providers.
  • Network is segmented with private VPC topology and least-privilege access.
  • System and application logs are centralized and monitored for anomaly detection.

Access & operations

  • Multi-factor authentication (MFA) is mandatory across all corporate accounts.
  • Production access is role-based (RBAC) and fully auditable.
  • Employees complete annual security awareness training; onboarding includes a security module.

Application security

  • All changes go through code review and automated tests.
  • Static analysis (SAST) and dependency scanning (SCA) run on every CI/CD pipeline.
  • Critical projects receive periodic penetration testing and vulnerability scans.
Responsible Disclosure

Report a security issue

If you discover a vulnerability in any Manta product, infrastructure, or internet-facing asset, please reach out under coordinated disclosure. We triage reports within 5 business days and respond within a reasonable timeframe.

Change log

Recent updates

  1. May 26, 2026Security page published. ISO 27001, ISO/IEC 15504 (SPICE) and KVKK compliance information are live.

Certificate or audit requests

Request certificate copies, RFP question sets, or custom security questionnaires for your due-diligence process.

Contact us

Manta Teknoloji ve Bilişim Sistemleri Limited Şirketi

Manta Teknoloji

An AI transformation studio that takes AI strategy into a working product in production. Strategy, validation, and engineering in one team.

  • Made in Türkiye
  • ISO 27001 Certified Company
  • ISO/IEC 15504 Certified Company
  • Accessibility

Manta Teknoloji ve Bilişim Sistemleri Limited Şirketi

Cevizli, Mustafa Kemal Paşa Caddesi Seyitgazi Sokağı No:66 Kat:5

34870 Kartal / İstanbul

+90 850 840 5 987

info@manta.com.tr

Security & Compliance
© 2026 Manta Teknoloji ve Bilişim Sistemleri Limited Şirketi. All rights reserved.