What is an Acceptable Use Policy?
An Acceptable Use Policy (AUP) is a policy stating what users of technology are permitted to do with that technology. It allows the users to know what they can do with technology without violating company rules or laws. AUPís are usually the first policy created within an organization, and are usually focused around Email and Internet usage. Human Resources and Legal departments are usually involved with or are often times the owners of the policy. This is due to the fact that if an employee violates the policy, legal action may be sought. For example, viewing of pornographic materials in the workplace is usually not permitted, and if this occurs, possible corporate or legal actions may be sought. The Acceptable Use Policy is generally separate from an organizationís general Information Security Policy. However, it is usually referenced with-in the general Information Security Policy for further reference.
This document is in PDF format. To view it click here.