A social media policy is a set of rules that governs how employees should use social media platforms in connection with their work. It outlines acceptable and unacceptable behaviors, helps employees understand the consequences of misuse, and serves as a deterrent by promoting accountability, raising awareness of risks, and ensuring consistent enforcement.

Sections

ID	Name	Description
IF012	Public Statements Resulting in Brand Damage	A subject makes comments either in-person or online that can damage the organization's brand through association.
MT008	Lack of Awareness	A subject is unaware that they are prohibited from accessing and exfiltrating or destroying sensitive data or otherwise contravening internal policies.
IF017	Excessive Personal Use	A subject uses organizational resources, such as internet access, email, or work devices, for personal activities both during and outside work hours, exceeding reasonable personal use. This leads to reduced productivity, increased security risks, and the potential mixing of personal and organizational data, ultimately affecting the organization’s efficiency and overall security.
IF008.006	Inappropriate Usage of Social Media	A subject misuses social media platforms to engage in activities that violate organizational policies, compromise security, disclose confidential information, or damage the organization’s reputation. This includes sharing sensitive data, making unauthorized statements, engaging in harassment or bullying, or undertaking any actions that could risk the organization’s digital security or public image.
IF008.008	Other Inappropriate Content	A subject accesses other inappropriate web content from a corporate device, contravening internal policies on acceptable use of company equipment.