Policy
Policy Name
Acceptable Use Policy

Overview
The purpose of this policy is to outline the acceptable use of the organization's resources and management of sensitive data. The primary goal is to protect systems from downloading of malicious or illegal software and to ensure resources are used for it's intended business purpose. Resources include but not limited to computers, software, e-mail, data and internet access.

Statement
  • The organization's information resources must be used for it's intended business purpose.
  • Sensitive information (i.e. classified as Secret, Confidential or Internal data) must be created stored and managed for required business purposes only, using approved equipment or systems.
  • Use of the organization's systems and equipment for personal use (such as internet access) must be limited and permitted by leader and in accordance with applicable HR policies.
  • Internet usage for non-business purposes is considered a privilege and can be revoked at any time.

Justification

The following benefits will be achieved:

  • Reduce likelihood of installing malicious or illegal software that could lead to unauthorized access or loss of senstive data
  • To ensure acceptable use of assets and internet access commensurate with business objectives

Scope
All employees, contractors, agents and third-parties

Consequeces for Noncompliance
Noncompliance to this policy can result in disciplinary action up to and including termination of employment or contract.

Topics
Acceptable Use