SYSTEM MONITORING AND AUDITING POLICY

This System Monitoring and Auditing Policy (hereinafter referred to as” Policy”) is effective from [INSERT DATE ON WHICH THE POLICY COMES INTO FORCE] and applies to all the Employees of the [INSERT NAME OF THE COMPANY] (hereinafter referred to as “Us” or “we” or “Our “or “Company”).

Our Company is committed to ensuring security, compliance and optimal performance of its networks and systems. We recognize the value of Internet usage for both personal and professional communication. This policy aims at ensuring the best use of online platforms and safeguarding the Company’s identity and values.

1. PURPOSE
   1. This policy is designed to provide clear guidelines and standards to be followed by employees of the company, to ensure responsible use of online platforms and monitoring computer systems in our Company. It also safeguards our network and data by outlining security measures and best practices that all users must follow to protect against the Cyber threats. By upholding these values we can collectively contribute to the success of our company and maintain the trust and confidence of our clients, partners, and colleagues.
2. SCOPE
   1. This policy applies to all [INSERT NAME OF THE COMPANY] employees, independent contractors including full-time, part-time, temporary, at all levels within the Company. In circumstances where an employee’s conduct may involve a breach of this policy. The Company might take disciplinary or termination actions based upon the set guidelines in this policy.
3. POLICY STATEMENTS
   1. The [INSERT CONCERNED DEPARTMENT] is responsible for monitoring and auditing activities such as internet usage from computers in our Company.
   2. Data collected during monitoring and auditing may include network traffic, the IT department must keep a record of the source IP Address, the date, the time, the protocol, and the destination site or server and details of employees who initiate such traffic.
   3. The IT department shall block access to inappropriate, offensive websites that can harm the work environment or that are deemed inappropriate for our company.
   4. The IT department shall periodically review and recommend changes in compliance with relevant regulations and laws necessary to web and company’s software systems.
4. REPORTING AND INCIDENT HANDLING
   1. Employees are responsible for promptly reporting any suspicious or security-related incidents they encounter while using the Company's internet resources. Incidents may include, but are not limited to, unauthorized access, data breaches, malware infections, phishing attempts, or any unusual network activity.
   2. The Company will take appropriate measures to mitigate and contain the incident, preserve evidence, and prevent further unauthorized access or damage.
   3. The Company will work diligently to resolve the incident, restore normal operations, and implement necessary corrective actions to prevent similar incidents in the future. Users affected by the incident will be provided with guidance and support as needed to mitigate potential harm or loss.
   4. Information related to security incidents will be handled with the utmost confidentiality to protect the Company and individuals involved. Employees reporting incidents will be protected from any retaliatory actions for their reporting in good faith. The Company will maintain records of all reported incidents, including details of the incident, investigation findings, and actions taken. These records will be used for analysis and improvement of security measures.
5. COMPLIANCE
   1. You acknowledge that any violation of our System monitoring and Auditing Policy may result in warnings, temporary suspension, or permanent termination of your access to our communication services. It is your responsibility to ensure that your communications adhere to this Policy and that your interactions are conducted in accordance with policy guidelines.
6. CONFIDENTIALITY, INFORMATION SECURITY, PROPRIETARY INFORMATION AND INTELLECTUAL PROPERTY
   1. We are committed to business information confidentiality, integrity and accessibility, we implement proper technical security measures and it is our staff’s obligation to uphold this. Proprietary information includes all non-public information that might be harmful to the company or its customers, business partners if disclosed to unauthorised parties. All members must handle any such information as secret. It also covers that, no one is entitled to trade with securities while in possession of non-public information or deliver non-public information to others that could have an impact on the securities. Every rule ensuring information security must be followed all the time.
   2. Employees must maintain the confidentiality of the company and client information. Sharing sensitive information with unauthorized individuals is strictly prohibited.
   3. Employees must maintain and respect copyright and intellectual property rights when using the Internet within the Company.
7. CHANGES TO THE POLICY
   1. We reserve the right to update and make changes to this policy from time to time based on the working conditions of the Company. The Company on updating this policy will inform the members of the Company.
8. FURTHER INFORMATION
   1. For any queries or further Information regarding our Company or about this Policy, the concerned person can contact us through email [INSERT COMPANY’S EMAIL ADDRESS].
9. ACKNOWLEDGEMENT
   1. We expect all employees to adhere to this policy of the Company. The Company will apply this policy consistently and fairly to ensure a harmonious and productive workplace for all.
   2. By signing below, you acknowledge that you have carefully read and understood the terms and contents of this policy.
   3. You acknowledge that you will follow the set guidelines of this policy as well as of the Company and failure to do so; the Company can take required action against such person.

COMPANY                    

[INSERT COMPANY’S NAME]

Authorized Signature

Print Name and Title

[INSERT SIGNING AUTHORITY AND DESIGNATION]