End user cyber security policy (premium)

This cyber security policy is designed to regulate the use of company IT systems by employees and/or contractors.

This policy is intended for organisations that have a complex system user environment. It may be adapted to create a restrictive policy or a permissive policy, or one which mixes and matches restrictive and permissive provisions.

To increase the chances of the policy being read, understood and followed, it is relatively short, focusing upon the key issues. These key issues include the formulation of passwords, the circumvention of security software, keeping software up to date, reporting security breaches, use of personal devices for work purposes, use of work devices for personal purposes, portable storage media and public Wi-Fi networks.

In addition, the policy includes sections covering the training of personnel and the monitoring of IT systems.

This policy was created and is maintained by Emma Osborn of OCSRC (https://www.ocsrc.co.uk) in collaboration with Docular.

Ask about this document

End user cyber security policy (premium) contents

Introduction: employee and contractor contribution to security; concerns of company; the need for employees/contractors to be vigilant; providing information on how to keep
the company
secure; implementation of the policy; contact for queries ; the policy is part of the contract.
Cyber security requirements: rules about passwords; circumventing security measures; antivirus requirements; reporting of security breaches; no accessing work systems with personal devices; provisions for accessing
company
systems using own devices; taking IT equipment off company premises; exchanging data; no use of
company
equipment outside network; no personal use of
company
equipment; use of
company
devices for personal reasons; use of public cloud services; removing data from
company
premises; installing software onto
company
computer or phone; administrator accounts; accessing inappropriate content; use
company
VPN away from office; use
company
VPN with public Wi-Fi; use of equipment in public Wi-Fi networks; use of removable storage.
Training: cyber security training for employees handling personal data; cyber security awareness training for personnel; random testing of employee cyber security awareness.
Monitoring: monitoring of IT systems; personal data logged by the system; keeping of system logs.
Handling mistakes: handling mistakes in a timely manner; solving the problem; when to report a mistake; details of the mistake to give the security team; mistakes on own device while connected to company's systems; failing to report system misuse.
Consequences of system misuse: actions considered to be misuse of IT systems; consequences of IT system misuse.
Declaration: required permissions; signature; signature line: first.

End user cyber security policy (premium) document editor preview

This is a shortened preview of the editor interface; once you create your instance you'll be able to edit the full document in our online editor.

End user cyber security policy (premium) document preview

This is a shortened preview of the DOCX output; once you create your instance you'll be able to download the full document in PDF, HTML, RTF and/or DOCX (Microsoft Word) format.

Which licence should I choose?

Version	1.0
First published	6 Aug 2018
Last updated	19 Jan 2023
Law	Neutral
Language	English (UK)
^†Word count	3,689
^†Template pages	4

† These figures are approximations.

Employment law Privacy law IT law Industry Policy

End user cyber security policies

	Free licence	Standard licence	Extended licence	Professional licence
Number of document instances	1	1	5	25
Number of websites or digital products	1	1	5	25
Sub-licences permitted	None	1	5	25
Document licence period	No expiry	No expiry	No expiry	No expiry
Credit for Docular	Yes	No	No	No

Number of document instances

Document templates are the products available for sale on this website; whereas document instances are "clones" of the templates, which you can edit using Docular's online editor and export from the website.

We will update our document templates from time to time, but this will not affect your document instances. When you create a document instance, it will be based upon the latest version of the underlying document template at the time of creation of the instance, irrespective of your date of purchase.

You can save your document instance to our servers at any time, and return to editing later. Once you are happy with your editing, you can export the document and save it to your computer.

Number of websites or digital products

The licences include numerical limits upon: (a) the number of websites (including cloud services) on which documents may be published; and (b) the number of digital products (such as software programs) with which documents may be distributed.

Sub-licences permitted

All of our paid licences allow you to sub-license to a client of yours the right to use a document created using Docular.

When you sub-license that right, it becomes attached to the particular client. The number of sub-licences you may grant is numerically limited and, again, the limitation corresponds to the document instance limitation.

Document licence period

This is the period of the licence to use documents created using and exported from the Docular online editor. In short, the licences do not expire. There are no ongoing licence fees.

Credit for Docular

Each free template includes a textual credit for Docular (eg "this document was created using Docular") and you must retain that credit in all versions of the document.

Legal T&Cs

For full details of the licensing rules governing the use of Docular templates, instances and exports, see our terms and conditions.

End user cyber security policy (premium)

This cyber security policy is designed to regulate the use of company IT systems by employees and/or contractors.

End user cyber security policy (premium) contents

End user cyber security policies

Related documents