1. Acceptable Use Policy (AUP)

This sets boundaries so users don’t misuse your platform. Example inclusions:

• No illegal activities (hacking, phishing, distributing malware).

• No using LynxTrac to attack, overload, or probe other systems.

• No sharing access credentials.

• No using remote desktop features for unauthorized access.

• Enforcement measures (suspension/termination of account).

2. Security Policy

This reassures users that their data and systems are safe. Example inclusions:

• Data encryption in transit (TLS) and at rest.

• Access controls (role-based, least privilege).

• Infrastructure hosted on secure cloud providers (AWS, etc.).

• Regular monitoring, audits, and vulnerability testing.

• Incident response process.

3. Compliance Policy / Statement

This shows your alignment with legal/regulatory frameworks. Example inclusions:

• Compliance with Indian IT Act & GDPR principles.

• Following industry best practices for data privacy.

• Third-party integrations (like Razorpay) are PCI-DSS compliant.

• Customer data ownership: customers retain ownership of their logs/metrics.