~2-page information security policy template on ethics.
 
This brief, simple policy promotes a culture of openness, fairness and honesty in the organisation’s business practices.  It requires workers to behave ethically and disclose unethical practices.
 
As a general-purpose control, a corporate policy on ethics is undervalued. Sure, ethics is a personal issue, subjective, soft and hard to describe ... so here's a professionally-crafted policy template demonstrating how to do it.
 
Policies such as this are worthless if management, in particular, openly disregards them - in other words, managers must lead by example, upholding and demonstrating high ethical standards.  Ethics is a worthwhile topic for the security awareness and training programme.
 
Supplied as an MS Word document, readily customised for your organisation's specific situation.