This document contains four sample policies that establish guidelines an organization should follow to ensure that its IT security meets standard best practices.

These policies are an important aspect of information security and are written to protect user accounts, corporate data and intellectual property owned by the company. Information is a critical asset of a company and must be protected from unauthorized exposure, deletion and modification, whether deliberate or accidental. Everyone associated with the company has a role in information security. The company’s success depends upon its ability to offer products and services with a high level of customer trust and satisfaction.