Acceptable Use Policy

What's in this lesson:
A comprehensive, interactive guide to our Acceptable Use Policy regarding email, internet, and device usage.

Why this matters:
Protecting our network protects your job, our company reputation, and our customers' data. Misuse exposes us to massive risks.

Attention Activity: The Suspicious Request

Imagine you receive the following message on your screen. What do you do?

From: IT_Support_Admin [external]

Subject: URGENT: Password Verification Required

We are updating our security policies network-wide. Please reply to this email with your current network password so we can migrate your account securely.

Thank you,
The IT Team

Email & Confidentiality

Our network is critical to our operations. Understanding how to use email properly is your first line of defense.

Personal Email Use

Personal usage of company email is permitted only if:

It does not negatively impact the corporate computer network.
It does not negatively impact your job performance.

Note: Email systems aren't designed for massive file transfers. Avoid sending excessive attachments.

Handling Confidential Data

Confidential data must never be:

Shared or disclosed with non-employees of the company.
Posted on the Internet or any publicly accessible systems.
Transferred insecurely (e.g., via unencrypted email).

Strictly Prohibited Actions

The following are never allowed on our email systems:

Spamming, harassment, or communicating threats.
Solicitations, chain letters, or pyramid schemes.
Forging email header information or impersonating others.
Opening attachments from unknown or unexpected senders.

Knowledge Check: Personal Use

You want to send a quick email to your spouse about dinner plans using your company email. Is this allowed under the Acceptable Use Policy?

Network, Devices & Privacy

The company provides resources to help you do your job. However, accessing and using these resources comes with strict responsibilities to protect our infrastructure.

Click each policy area to reveal the rule:

Monitoring & Privacy

Software Installation

Personal Storage (USB)

Security Circumvention

The "Never Do" List

The following actions constitute unacceptable use. Engaging in them subjects you to disciplinary action, up to and including termination.

Acknowledge the Prohibitions

Click each warning to acknowledge you understand.

Key Takeaways

Limited Personal Use: Permitted only if it doesn't affect the network or your performance.
Confidentiality First: Never share confidential data insecurely or with unauthorized parties.
No Expectation of Privacy: The company monitors network activity and communications.
Secure Your Devices: Ask Governance before installing software; scan USBs; never bypass security.
Zero Tolerance: Illegal acts, harassment, and piracy will result in disciplinary action up to termination.
Report Suspicious Activity: Lost devices, stolen badges, or requests for your password must be reported immediately.

Ready for the Assessment?

You will now be tested on your knowledge of the Acceptable Use Policy.

3

Questions

80%

To Pass

Click Next to begin.

Question 1

According to the policy, what is the expectation of privacy when using the corporate network?

Users have full privacy for personal files stored on their local drives. Users should expect no privacy, as the company reserves the right to monitor all use. Privacy is guaranteed for emails sent during official lunch breaks. The company can only monitor internet browsing, not email content.

Question 2

What is required before installing non-company-supplied software on your computer?

Running a virus scan on the installation file. Asking your immediate supervisor for verbal approval. Obtaining permission from the Governance Team. Ensuring the software is free and open-source.

Question 3

How does the policy address the use of personal storage media like USB drives?

They are strictly prohibited on the corporate network at all times. They are allowed, but the user must take precautions to ensure viruses are not introduced. They may only be used if they were purchased directly by the IT department. They are allowed without restriction for transferring confidential company data.

Acceptable Use Policy Training