Restrictions

MODEL ACCEPTABLE USE POLICY

for Corporate Internet Systems

Restrictions and Prohibitions on Use and Access

Communications and Internet access should be conducted in a responsible and professional manner reflecting the corporation's commitment to honest, ethical and non-discriminatory business practice. In furtherance of these goals the following restrictions and prohibitions apply:

Data security

1. Personnel must safeguard their logon ID and password from disclosure to any person except the staff of Network Administration. Users may not access a computer account that belongs to another employee or department (except for an authorized member of the Computer Resources Department). Personnel must use their own logon ID and password only, are responsible for all activity on their logon ID, and must report any known or suspected compromise of their ID to Network Administration.

2. Unauthorized attempts to circumvent data security schemes; identify or exploit security vulnerabilities; or decrypt secure data are prohibited.

3. Attempting to monitor, read, copy, change, delete or tamper with another employee's electronic communications, files or software without the express authorization of the user (except for authorized Network Administration personnel) is prohibited.

4. Knowingly or recklessly running or installing (or causing another to run or install) a program (such as a "worm" or "virus") intended to damage or place an excessive load on a computer system or network is prohibited.

5. Forging the source of electronic communications, altering system data used to identify the source of messages or otherwise obscuring the origination of communications is prohibited.

Use of equipment

6. Any use that violates federal, state, or local law or regulation is expressly prohibited.

7. Knowing or reckless interfering with the normal operation of computers, peripherals, or networks is prohibited.

8. Connecting unauthorized equipment to the network for any purpose inconsistent with the business purpose of the company is prohibited.

9. Deliberately wasting computer resources, including bandwidth, disk space, and printer paper or running or installing games or other unauthorized software on company computers is prohibited.

10. Using the company network to gain unauthorized access to any computer system is prohibited.

Netiquette and protocols

11. The use of corporate Internet-related systems to access, transmit, store, display, or request obscene, pornographic, erotic, profane, racist, sexist or other offensive material (including messages, images, video, or sound) that violates the company's harassment policy or creates an intimidating or hostile work environment is prohibited.

12. Any use that is deemed to adversely affect the corporation is prohibited.

13. Any on-line statements about the corporation, its position on any issue or about any competitor are strictly prohibited except those authorized by senior management and/or the legal department.

14. Any personal, non-approved communications on corporation systems must contain the following disclaimer: "The information contained herein does not express the opinion or position of the corporation and cannot be attributed to or made binding upon the corporation."

15. Users of Internet -related systems are further advised to consider that while they use corporate systems they represent the corporation just as they would at a corporate function or in a company vehicle. Visits to web sites and other Internet use may reflect upon the corporation and should be undertaken in a serious, businesslike manner.

16. Web pages and links made available to the public must be approved by and developed in cooperation with Network Administration prior to activation.

AUP Pages