Acceptable Use Policy (Template)

Contents

• Acceptable Use Policy (Template)
  • Purpose
  • Scope
  • Policy
  • Enforcement
  • Acknowledgement

This is a sample template. Customize names, owners, and enforcement details for your environment.
Download the raw file: acceptable-use.md

Purpose

Define acceptable and unacceptable uses of organizational systems, devices, networks, and data.

Scope

Applies to all employees, contractors, vendors, and third parties granted access to company resources.

Policy

• Do not share accounts or passwords. Use MFA where available.
• Do not install unauthorized software or extensions.
• Do not attempt to bypass or disable security controls.
• Use company data only for legitimate business purposes.
• Store sensitive data only on approved systems.
• Report suspected security incidents immediately.

Enforcement

Violations may result in disciplinary action up to and including termination and/or legal action.

Acknowledgement

All users must read and acknowledge this policy annually.