PPN Acceptable Use Policy

1. Purpose

This Acceptable Use Policy is intended to provide guidelines for the appropriate and responsible use of Pediatric Pandemic Network (PPN) information and information technology (hereafter referred to as “resources”). Appropriate use and effective security of those resources require the participation and support of all users.

This policy is designed to protect the integrity of PPN resources, ensure compliance with legal requirements, and safeguard the interests of all users.

By using PPN’s resources, users acknowledge that they have read, understood, and agree to comply with this Acceptable Use Policy.

2. Reporting

Immediately report any suspected information security incidents or weaknesses, including suspected breaches or unauthorized access, to the PPN Security Committee or security@pedspandemicnetwork.org.

3. Scope

This policy applies to all individuals who access or use PPN resources, regardless of their form or format. It is the user’s responsibility to read and understand this policy, conduct their activities in accordance with its terms, and exercise good judgment regarding appropriate use of PPN resources.

4. Acceptable Use

Users are expected to use PPN’s resources in a manner that is ethical, lawful, and in accordance with the following guidelines:

• Only access systems, data, and information for which you have explicit permission.

• Only access, use, or share PPN resources as necessary for your job duties and in compliance with copyright authorizations.

• Understand the baseline information security controls necessary to protect the confidentiality, integrity, and availability of PPN resources.
• Ensure that sensitive information is protected in accordance with data protection policies. Do not share or disclose confidential information without proper authorization.
• Use communication tools (e.g., email, messaging, and social media) in a respectful manner. Avoid content that could be considered offensive, harassing, or discriminatory.

5. Unacceptable Use

The actions described below are considered unacceptable use of PPN resources and are prohibited. The list below is not exhaustive but attempts to provide a framework for activities which constitute unacceptable use:

• Engaging in any activity that violates local, state, federal, or international law.
• Providing unauthorized individuals or third parties access to PPN resources, either deliberately or through failure to secure access.
• Distributing or introducing malicious software, including viruses, worms, and spyware, into PPN IT systems or networks.
• Accessing, distributing, transmitting, or storing content that is illegal, obscene, threatening, discriminatory, or otherwise inappropriate.
• Attempting to access unauthorized systems, networks, or data, through tampering, disengaging, or otherwise circumventing an organization or third-party IT security controls.
• Attempting to represent the organization in matters unrelated to official authorized duties or responsibilities.
• Using PPN resources to circulate unauthorized solicitations or advertisements for non-organizational purposes including religious, political, or not-for-profit entities.

• Using PPN resources for commercial or personal purposes, in support of “for-profit” activities or in support of other outside employment or business activity.

6. Monitoring and Enforcement

Individuals have no legitimate expectation of privacy during any use of PPN’s resources, except for any privilege or confidentiality recognized by law. PPN reserves the right to monitor the use of resources to ensure compliance with this policy. Violations of this policy may result in disciplinary action, up to and including termination of employment, and may also result in legal action.

7. Policy Review

This policy will be reviewed periodically and updated as necessary to reflect changes in technology, law, or organizational needs.

8. Related Documents

• Information Security Policy
• Terms of Use
• Privacy Statement