Explain a Security Policy to Non-Technical Users

What You'll Get

A friendly, non-threatening explanation of a security policy or requirement — with a relatable analogy, the business reason behind it, and clear instructions for what users need to do.

The Prompt

Explain [security policy: MFA requirement / password complexity / USB port blocking / VPN requirement] to a non-technical employee. Use a relatable analogy. Explain why it exists without being condescending. Include what they need to do and who to contact if they have questions.

Tips

Avoid words like "threat" and "attack" in user-facing communication — they create anxiety without improving compliance. Frame policies as protection, not restriction. Include a specific person or helpdesk contact so users don't feel stranded.