Calderdale Metropolitan Borough Council

The Council's Portal AUP applies equally to all individuals granted access privileges to portal resources.

"Conditions" means these terms and conditions

"Users" means the users of the portal collectively

"Us/Our/We/Calderdale Metropolitan Borough Council" means Calderdale Metropolitan Borough Council

"Portal" means the website or websites you are granted access to or any subsequent URL which may replace it

"You/Your" means a user of the portal

Calderdale Metropolitan Borough Council may monitor access and use of this portal and produce reports on access and use of the site for the purposes of:

1. Enforcement and review of this AUP
2. Maintaining the performance and availability of the portal
3. Dispute resolution and arbitration

Reports will be provided to partner organisations where relevant e.g. where an employee of a partner organisation breaches this AUP or in cases of dispute.

Monitoring records and reports may be used as evidence in disciplinary investigations and hearings, dispute resolution and arbitration, performance analysis, capacity and availability planning. This list is not exhaustive.

Users of the portal may only post documents, files and data for which they hold the intellectual property rights or post documents, files and data which they are permitted to publish or distribute under licence or fair use.

Users of the portal must accept that any documents, files or data posted to the portal may be used by other portal users.

Users of the portal may not further distribute documents, files or data from the portal either within their own organisations or to any other organisation without the consent of the original document, file or data owner.

The introduction of any documents, files or data is entirely at the discretion of Calderdale Metropolitan Borough Council and their inclusion on the portal must be seen as temporary. Calderdale Metropolitan Borough Council may remove any documents, files or data from the portal without notice.

Any document or substantial part of a work that infringes the Copyright Designs and Patents Act (1998)| will be removed.

This portal is only suitable for information up to the level of PROTECT as defined in HMG's Security Protective Framework (SPF)|.

All sensitive information must be assessed and labeled by the portal user prior to being posted to this portal.

Under no circumstances may information with a classification of RESTRICTED or CONFIDENTIAL (under HMG's security protective framework) be posted on this portal.

Information that has been classified as PROTECT may only be posted on this portal where:

1. The documents, files or data are clearly labeled as PROTECT
2. Ownership of the data is explicit in the document of file attributes
3. Permission has been received from the information owner e.g. DWP to make the asset available via this portal

Access to documents and files marked PROTECT may only be granted to persons with a clear business need to access that information. Access permissions on any files and folders containing copies of portal documents must reflect this.

Documents, files and data marked PROTECT may only be stored on portable devices where the devices are encrypted to the FIPS 140-2 or FIPS 197 standards or above.

Information that is marked as PROTECT must be stored securely when held in a hardcopy form and may not be left unattended.

Information that is labeled PROTECT must not be passed to any other individual or organisation without the consent of the originator who will dictate any additional terms for protection of the data

Users will be provided with individual credentials (e.g. user name and password) for the purposes of access to this portal.

1. Under no circumstances may these credentials be disclosed or shared.
2. Under no circumstances may anyone ask a user to disclose their credentials.
3. Under no circumstances may a user leave their computer unlocked or unattended whilst accessing this portal.
4. If you feel your security password has been compromised at any time, your password should be changed forthwith.

Users must not attempt to access any data or programs stored on the portal for which they do not have authorization or explicit consent.

Users must not purposely engage in activity that may: harass, threaten or abuse others; degrade the performance of the portal of component of the IT Infrastructure of, Calderdale Metropolitan Borough Council, deprive an authorized portal user access, obtain extra resources beyond those allocated, circumvent or attempt to circumvent Calderdale Metropolitan Borough Council security measures.

Users must not download, install or run security programs or utilities that reveal or exploit weaknesses in the security of the Portal.

Portal resources, files and documents must not be used for personal benefit and at no time will such information be disclosed to unauthorised/improper persons.

Users must observe at all times the principles outlined in the Data Protection Act 1998| , and Calderdale Metropolitan Borough Council's ICT Control Environment Code of Conduct and associated Information Security policies and procedures.

Users must not intentionally access, create, store or transmit material on this portal which Calderdale Metropolitan Borough Council deems personal or otherwise irrelevant to the stated purpose of the portal or material which we deem to be offensive, indecent or obscene.

Users must not otherwise engage in actions against the aims and purposes of Calderdale Metropolitan Borough Council, of other portal users or organisations who contribute to or are supported by the aims of the portal.

Portal users must report any weaknesses in security, any incidents of possible misuse or violation of AUP by contacting the Calderdale Metropolitan Borough Council ICT Service Desk Tel 01422 393423 or email security@calderdale.gov.uk and/or Corporate Information Manager Tel 01422 392298 if personal data is shared unlawfully.

Any document or file that breaches this AUP will be removed.

Violation of any aspect of this AUP will be considered a serious matter and sanction may be sought by Calderdale Metropolitan Borough Council, against any individual user and/or their employer.

Any violation by an employee or agency contract staff of Calderdale Metropolitan Borough Council will result in disciplinary action by the Council.

The Council Retains the right to suspend any account at any time for any reason.

Calderdale Metropolitan Borough Council is registered with the Information Commissioners Office as data controller for the purpose of processing personal data. It is a condition of the use of the portal that each user accepts that

Calderdale Metropolitan Borough Council holds no liability for any harm caused by processing of data or by the failure to process data on the portal by external parties and in particular the use, content and messages that a connected organisation, its employees or users post, distribute or otherwise process using the portal.

To indemnify each and all connecting organisations against all claims, losses, liabilities, costs (including legal costs) and expenses which it may incur as a result of any breach of his or her obligations in this AUP or his or her use or misuse of data held on the portal.

We may change the AUP from time to time to meets the security needs of Calderdale Metropolitan Borough Council and its partners and to comply with legislation.

To make the most of the guidance contained in this AUP, please keep up to date with changes and look at them on a regular basis. We hope you will find them useful and informative.

Please note that our Acceptable Use Policy was established in October 2010 and approved by the Information Governance Board.