Acceptable Use Policy

1. Purpose

This Acceptable Use Policy (AUP) is designed to protect Valstorm LLC, our employees, and our customers from harm caused by the improper use of our information systems and data. This policy outlines the acceptable and unacceptable use of Valstorm's technology resources.

2. Scope

This policy applies to all employees, contractors, and other authorized users of Valstorm's network, systems, and data.

3. Policy Statements

3.1 General Use and Ownership

  • Valstorm LLC's information systems are to be used for legitimate business purposes.
  • All data stored, processed, or transmitted on Valstorm's systems is the property of the company, with the exception of licensed first-party and third-party software. Customer data, which is stewarded by Valstorm on behalf of the customer is owned by the customer.
  • Valstorm reserves the right to monitor and audit system usage to ensure compliance with US laws, regulations, and company policies.

3.2 Security and Proprietary Information

  • Users are responsible for the security of their assigned credentials (passwords, access tokens) and must not share them with others.
  • All users must adhere to Valstorm's policies on handling sensitive and confidential information, including customer data governed by HIPAA.
  • Company laptops and mobile devices must be secured against unauthorized access (e.g., with strong passwords or biometrics) and reported immediately if lost or stolen.

3.3 Unacceptable Use The following activities are strictly prohibited:

  • Introducing malicious software (malware, viruses, spyware) onto the network.
  • Bypassing or attempting to bypass any system security controls.
  • Engaging in any activity that is illegal or violates local, state, or federal law.
  • Storing or transmitting unprotected sensitive data, including Protected Health Information (PHI), on unauthorized devices or services.
  • Using company assets for unauthorized commercial activities, personal financial gain, or any purpose that creates a conflict of interest.

4. Policy Enforcement

Any violation of this policy may result in disciplinary action, up to and including termination of employment or contract, and may also lead to civil or criminal penalties.