IT Policy

1. Purpose

The purpose of this policy is to:

• Protect the confidentiality, integrity, and availability of information and IT
• Ensure compliance with legal and regulatory
• Promote responsible and ethical use of IT
• Define the responsibilities of users, IT staff, and

2. Scope

This policy applies to all employees, trainers, learners and other workers at Trainme Training Center, including all personnel affiliated with third parties. It covers all IT resources owned, leased, or managed by Trainme Training Center.

3. Acceptable Use
   • General Use
     • IT resources are to be used for business-related purposes
     • Personal use of IT resources should be minimal and not interfere with work
     • Users must not use IT resources for illegal activities, including but not limited to copyright infringement, unauthorized access to systems, and harassment.

• Internet and Email
  • The internet and email systems are to be used primarily for business
  • Users must not access, download, or distribute inappropriate content, such as pornography or material that promotes violence or discrimination.
  • Confidential information should not be sent via email without proper

4. Security
   • Password Management
     • Users must create strong passwords that comply with the organization’s password
     • Passwords must be kept confidential and not shared with
     • Passwords should be changed regularly and immediately if a compromise is

• Data Protection
  • Confidential and sensitive data must be stored securely, with access limited to authorized personnel
  • Regular backups of critical data must be performed and stored in a secure
  • Data should be encrypted when stored or transmitted

• Physical Security
  • Access to IT facilities and equipment must be controlled and
  • Devices should be locked when unattended, and secure areas should be locked after working

5. Software Management
   • Software Installation
     • Only authorized software may be installed on Trainme Training Center
     • Users must not install or use unlicensed or pirated
     • IT staff must approve and manage all software installations and

• Software Usage
  • Users must comply with software licensing
  • Unauthorized copying or distribution of software is

6. Incident Management
   • Reporting Incidents
     • Users must report any IT security incidents, such as data breaches, virus infections, or unauthorized access, to the IT department
     • A formal incident response procedure must be followed to handle reported

• Incident Response
  • The IT department is responsible for investigating and responding to IT security
  • Appropriate measures must be taken to mitigate the impact of the incident and prevent future

7. Compliance and Monitoring
   • Compliance
     • Users must comply with this IT policy and all relevant laws and
     • Non-compliance may result in disciplinary action, up to and including termination of

• Monitoring
  • The IT department reserves the right to monitor and audit the use of IT resources to ensure compliance with this policy.
  • Monitoring will be conducted in accordance with applicable laws and respect for user

8. Training and Awareness

• Regular training sessions will be conducted to ensure that all users understand the IT policy and their
• Awareness programs will be implemented to keep users informed about security best practices and emerging threats.

9. Review and Revision

• This IT policy will be reviewed annually and updated as necessary to reflect changes in technology, business practices, and legal requirements.
• Feedback from users will be considered during the review

10. Acknowledgment

• All users must acknowledge their understanding and acceptance of this IT
• A signed acknowledgment form will be kept on file for each