FinX Capital Markets
Legal

Terms of Service

Acceptable Use Policy

Purpose

This policy establishes standards for acceptable use of end-user computing devices and technology, emphasizing training on best practices, data sensitivity levels, and compliance consequences.

Scope

  • Applies to all FinX Capital Markets personnel using company IT assets
  • Covers assets owned/managed by the organization, including laptops and cloud services

Policy requirements

Personnel management

  • Background verification for employees and contractors
  • Employment agreements requiring acceptable use compliance
  • Mandatory onboarding covering environments, systems, and security
  • Offboarding processes verifying system access removal
  • Ongoing security awareness training

Data protection

  • No corporate data transmission via email or social media
  • Prohibited activities list maintained and communicated
  • Fair disciplinary processes for breaches

Procedures

  • Remote access system controls
  • Monitoring by IT and Security teams
  • Device encryption mandatory
  • Encrypted email for sensitive data
  • Proper data storage media management

Malware protection

Software controls

  • Only legal, approved licensed software
  • Least privilege principle for installations
  • Anti-malware on all endpoint systems
  • Malicious website blocklisting

Monitoring & maintenance

  • Regular system reviews for unauthorized files
  • Malware scanning of network files and downloads
  • USB port restrictions
  • Business continuity recovery procedures

Contact

For questions about this policy, contact us at info@finx.io.