An Acceptable Use Policy(AUP) provides your company with a set of rules and guidelines to follow regarding the use of a specific company resource. The template below provides direction and guidance to create an Acceptable Use Policy for the company’s WiFi.
Wifi AUP and a Guest WiFi AUP Template
The policy should begin with an overview section that describes the purpose of the policy at high-level and the key takeaways from reading it.
A WiFi Acceptable Use Policy aims to define the general rules and guidelines for using the company’s networks. It describes the acceptable and unacceptable forms of using company WiFi and also provides disciplinary consequences in case of non-compliance.
WiFi Internet and Intranet services.
This section covers all the actual policy guidelines that the company should include to describe the use of WiFi equipment and behaviour of users.
- IP Address: A numeric address that identifies any entity on the Internet uniquely.
- Phishing: An illegal activity which captures personal data by pretending to be someone else.
General Guidelines: This sub-section should include guidelines which are common and applicable to both employees and guests.
- The company explicitly prohibits the users from using company WiFi networks to create and distribute spam content, malware or any other files that harm the integrity, security and confidentiality of company data.
- The company explicitly prohibits the users from accessing any illegal or harmful website which is not accepted by the company IT department, state or national government.
- The company explicitly prohibits the users from accessing any content or website which is defamatory, threatening, offensive or intimidating via company WiFi networks.
- The company explicitly prohibits the users from accessing any pornographic or other obscene, profane and abusive content via company WiFi networks.
- The company explicitly prohibits the users from downloading any illegal or harmful content that compromises the integrity, security and confidentiality of company data.
- The company requires users to comply with company authorisation and screening before downloading any application or software via the company WiFi network.
Policy Statement for Public Wi-Fi
The public WiFi network of a company is usually used by company employees and on the company premises only. This section should include all WiFi only.
- All employees of the company can access the public WiFi network via their employee codes only. The company explicitly prohibits the employees from sharing their employee codes to others.
- All employees of the company can access the public WiFi network only on company-provided devices such as laptops and desktops. The employees need to have special permission to use company public WiFi network on mobile or other personal devices.
- All employees are encouraged to use public WiFi networks strictly for company-specific work only. Any personal browsing or download should be strictly prohibited.
Policy Statement for Guest Wi-Fi
A company usually invites multiple guests for various events, seminars or official business purposes. Hence, it is essential to define a guest specific Wi-Fi policy. This section should include the guidelines for acceptable use and behaviour by guests for company WiFi network.
- The company defines Guest as any individual who is not an official full-time employee of the company.
- All guests must register their electronic devices with the company IT department and obtain an employee guest code to access the Wi-Fi network of the company.
- The company prohibits and blocks the guest users from accessing any company sensitive content via company WiFi network without unauthorised access.
- The company prohibits the guests from downloading any application or software on their personal devices.
- The company does not consider itself responsible or liable for any damage to the guest’s personal devices when they access company WiFi network.
Monitoring and Compliance
This section talks about the guidelines that inform the WiFi
- The company reserves the right to track employee and guest internet activities such as visited websites and downloads for protection purposes.
- The company reserves the right to ensure compliance of employee or guest internet activities with the legal and government regulations.
- The company reserves the right to share monitoring data with the legal or government authorities in case of criminal activities.
This section includes guidelines on disciplinary actions taken against employees and guests in case of non-compliance with the Acceptable Use Policy of the company Wi-Fi network.
- The company reserves the right to withdraw access to company WiFi network in case of non-compliance by employees or guests.
- WiFi network.
- WiFi networks.
The template above provides the companies with an actionable draft that can help them in creating an efficient Acceptable Use Policy for their WiFi networks. However, companies can always customise the template by adding or removing specific sections or guidelines as per individual requirements.