3-page information security policy template on restricting and permitting access to controlled information.
 
Whereas access to information should be restricted where necessary (e.g. for confidentiality reasons), access by workers should be permitted by default, ensuring its availability unless there are legitimate reasons to restrict it.
 
Supplied as an MS Word document, readily customised for your organisation's specific situation.