The information acceptable use policy provides staff with clear guidance on the appropriate, safe, and legal way to use corporate information and IT equipment. The policy creates the framework for appropriate handling and communicating organizational information. The policy applies to all staff and is key in creating company standards for acceptable usage.
Risks addressed by this policy:
- Costly information security breaches
- Significant burden added to IT systems by staff personal usage
- Loss, damage, or theft of corporate IT equipment