A company has recently allowed employees to take advantage of BYOD by installing WAPs throughout the
corporate office. An employee, Joe, has recently begun to view inappropriate material at work using his
personal laptop. When confronted, Joe indicated that he was never told that he could not view that typeof material on his personal laptop. Which of the following should the company have employees
acknowledge before allowing them to access the corporate WLAN with their personal devices?

A.
Privacy Policy

B.
Security Policy

C.
Consent to Monitoring Policy

D.
Acceptable Use Policy

Explanation:
Acceptable use policies (AUPs) describe how the employees in an organization can use company systems
and resources, both software and hardware.
Incorrect Answers:
A: Privacy policy is meant to specify any measures taken to protect the privacy and confidentiality of
personally identifiable information.
B: Security policy is the overall purpose and direction of security in an environment. This includes the
detailed procedural documents that indicate how work functions should occur in the workplace so as to
comply with security.
C: Consent to Monitoring policy does not involve instructions on how to use company resources when
making use of own devices of staff.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis,
2014, p. 24
http://en.wikipedia.org/wiki/Acceptable_use_policy