Skip to content

General SMB Policies

Policies for any small or mid-sized professional services firm — practical, enforceable, and ready to customize.

Available Policies

  • AI Acceptable Use Policy — Four-tier AI tool classification, data classification, vendor-specific guidance with DPA links, incident response, and enforcement hooks.
  • Acceptable Use Policy — Technology acceptable use covering software licensing, cloud storage, data handling, network use, and physical security.
  • BYOD Policy — Personal device requirements, MDM options, remote wipe provisions, security responsibilities, and offboarding.
  • Remote Work Security Policy — VPN requirements, Wi-Fi security, home network recommendations, physical security, and data handling for remote workers.
  • Incident Response Plan — Starter IR framework with severity classification, response phases, ransomware guidance, client notification, and contact roster template.

More policies are in development. Watch the GitHub repository for updates.

By Sorted Solution Sorted Solution