Sunshine Bouquet Company
Security Notice Text Message Terms & Conditions (IT / On-Call) — Confidential
Effective Date: February 13, 2026
Applies To: Sunshine Bouquet Company (“SBC”) IT employees who receive security notice text messages
Contact (Security / Legal / Policy): help@sunshinebouquet.com
1) Purpose and Scope
These Terms & Conditions (“Terms”) govern the receipt and use of security notice text messages (“Security Texts”) sent by or on behalf of Sunshine Bouquet Company (“SBC,” “Company,” “we,” “us”). These Terms apply to SBC IT employees (including on-call personnel) who receive Security Texts on any device (Company-managed or approved BYOD).
2) Confidentiality and Ownership
Confidential Information. All Security Text content—including incident indicators, system names, user/customer references, internal identifiers, contact details, escalation paths, and instructions—is Confidential Information.
Company Property. Security Texts and all related content are the exclusive property of Sunshine Bouquet Company.
Need-to-Know Use Only. You may use Security Texts only as required to perform your IT job duties and only for SBC business purposes.
3) Authorized Use
You are authorized to use Security Texts solely to:
Acknowledge and respond to the notification (if requested).
Execute the instructions contained in the message (e.g., triage, validation, escalation, containment steps).
Communicate incident details only through approved SBC channels (e.g., approved ticketing/incident system, approved internal collaboration tools, approved on-call processes).
Record required incident notes in the approved system using minimum necessary detail.
4) Prohibited Use and Restrictions
You must not:
Forward, copy, screenshot, or share Security Texts with anyone who is not explicitly authorized, including non-IT staff unless directed by incident leadership and policy.
Disclose Security Text content externally to customers, partners, media, law enforcement, or any third party unless expressly authorized in writing by SBC’s designated approvers.
Post Security Text content (or screenshots) on social media, forums, group chats, or public websites.
Store or archive Security Text content outside approved SBC systems (e.g., personal email, personal cloud storage, personal note apps, unapproved ticket trackers).
Use Security Text content for any non-SBC purpose, personal benefit, or competitive advantage.
5) Verification and Anti-Phishing Safety
Because SMS can be spoofed:
Verify unexpected or suspicious texts before acting, especially if they request credentials, MFA codes, payments, gift cards, software installs, or link clicks.
Do not click links or call back unknown numbers unless verified through an approved SBC source (e.g., known on-call tooling, internal directory, established incident channels).
Report suspected spoofing or social engineering immediately to help@sunshinebouquet.com and follow internal incident procedures.
6) No Public Disclosure / Communications Control
Security Texts may relate to investigations, outages, or security incidents. You must not make any external or broad internal communications about an incident unless:
You are explicitly authorized as part of incident communications; and
The content is approved through SBC’s incident communication process.
7) Data Handling and Retention
Minimize retention. Do not retain Security Texts longer than necessary to complete required actions.
Approved systems only. If information must be retained, transcribe only the minimum necessary details into approved SBC systems.
Device security. You must maintain reasonable device security controls (e.g., strong device PIN/biometric, auto-lock, OS updates). Company-managed devices may be subject to security controls including remote wipe, to the extent permitted by law and policy.
Lost/stolen device. If the device receiving Security Texts is lost, stolen, or suspected compromised, notify help@sunshinebouquet.com immediately.
8) On-Call Responsibilities
When assigned on-call, you agree to:
Maintain a reachable device and current contact details.
Acknowledge Security Texts promptly and follow the escalation/triage procedures.
Escalate appropriately when the issue exceeds your scope, authority, or comfort level.
Document actions taken in the approved system.
9) Monitoring and Compliance
To protect SBC systems and data, SBC may monitor, log, and audit the security notification process and associated systems and communications to the extent permitted by law and Company policy.
10) Consequences of Violation
Violations of these Terms may result in disciplinary action up to and including termination, removal of access, and potential legal remedies where permitted by law.
11) Third-Party Messaging Providers and Delivery Limits
Security Texts may be delivered via third-party providers and mobile carriers. Delivery may be delayed, filtered, or blocked. SBC is not responsible for carrier/provider delays. If a text appears delayed or incomplete, use approved on-call verification paths and follow incident procedures.
12) Disclaimer
Security Texts are operational notifications provided “as-is.” They may be time-sensitive, incomplete, or superseded by later updates. Always follow the latest instructions from SBC’s incident leadership and approved incident channels.
13) Updates to These Terms
SBC may update these Terms at any time. Updated Terms become effective when published internally or communicated to IT staff. Continued receipt or use of Security Texts constitutes acceptance of the updated Terms.
14) Questions / Reporting
For questions, reporting, or policy clarification (including legal/policy questions), contact: help@sunshinebouquet.com.
Acknowledgment: By receiving and using SBC Security Texts, you acknowledge that you have read, understood, and agree to comply with these Terms.
Comments
0 comments
Article is closed for comments.