The purpose of this policy is to prevent the unauthorized or inadvertent disclosure of sensitive information concerning Asian School of Cyber Laws (ASCL).

2.0 SCOPE

This policy covers automatic email forwarding, and thereby the potentially inadvertent transmission of sensitive information by all employees, students, consultants, licensees, lessees, franchisees, vendors, customers, agents and affiliates of ASCL.

3.0 POLICY

1. A formal authorization process is to be followed by all department heads for allocation of official email ids at asianlaws.org domain to the department staff.

2. No email attachments having .vbs / .exe / .api or any other file of executable nature shall be exchanged or downloaded by the employees.

3. No employee shall exchange proprietary data over email, without prior authorization from the information asset owner as per the asset inventory list.

4. Users shall not indulge in any communication of information pertaining to religion, politics or other personal opinions, which are not job-related.

5. No user shall exchange any obscene messages or any information that can be deemed to be pornographic in nature or such that it is sufficient to affect the prurient nature of any persons within or without the organization.

6. No use of personal email account shall be allowed using the organization computing resources.

7. Employees must exercise utmost caution when sending any email from inside ASCL to an outside network. Unless approved by the Governing Board of ASCL, email will not be automatically forwarded to an external destination. Sensitive information, as defined in the Information Sensitivity Policy, will not be forwarded via any means, unless that email is critical to business and is encrypted in accordance with the Acceptable Encryption Policy.

4.0 ENFORCEMENT

Any employee found to have violated this policy might be subject to disciplinary action, up to and including termination of employment.

5.0 DEFINITIONS

1. Email: The electronic transmission of information through a mail protocol such as SMTP. Programs such as Eudora and Microsoft Outlook use SMTP.

2. Forwarded email: Email re-sent from internal networking to an outside point of presence.

3. Sensitive information: Information is considered sensitive if it can be damaging to ASCL or its customers' monetary value, reputation, or market standing.

4. Unauthorized Disclosure: The intentional or unintentional revelation of restricted information to people who do not have a need to know that information.

6.0 REVISION HISTORY

This document was created on 12-02-2001. This document has been last modified on 22-02-2003. Please note that this document is updated on a regular basis and the latest version can be obtained from: