T1.2.3 - ACCEPTABLE USE OF ASSETS Implementation Guidance
The entity shall develop rules for the acceptable use of its information assets.
Back to T1.2.3 - P2 - ACCEPTABLE USE OF ASSETS
All employees, contractors and third party users should follow rules for the acceptable use of information and assets associated with information systems, including:
- A. Rules for electronic mail and Internet usages;
- B. Guidelines for the use of mobile devices, especially for the use outside the premises of the entity
Specific rules or guidance should be provided by the relevant management. Employees, contractors and third party users using or having access to the entity’s assets should be aware of the limits existing for their use of entity’s information and assets associated with information systems, and resources. They should be responsible for their use of any information processing resources, and of any such use carried out under their responsibility.
Information provided by other members of an information sharing community is an asset, and should be protected and disseminated in accordance with any rules set by the information sharing community or by the originator.
