This document outlines 7 rules for information security: 1) Always follow information security policies and respect privacy laws; 2) Handle information carefully and securely store and dispose of documents; 3) Keep passwords and PINs secret, change them regularly, and do not share them; 4) Verify identities when sharing information; 5) Use email and the internet carefully and do not open strange attachments or download illegal materials; 6) Pay attention to physical security of equipment and question strangers; 7) Report security incidents like viruses, thefts or losses.