The topic of "Information Security" alone raises many discussions because of its complexity and the fact of how extensive it is. Nowadays, information is considered in many times the greatest good of companies and public bodies. In this way, several resources are used to protect them. As we know the information can be obtained or transmitted in different ways: spoken, printed, transmitted by electronic means, post office, in presentations, films, etc. The concept of information security refers to the methods adopted to protect information, and as mentioned by Gustavo Alberto (2005), aims to protect information in order to ensure business continuity, minimizing damages and maximizing the return on investments and business opportunities.

Therefore, this research aims to propose guiding questions for a practical study to evaluate the usability of information security policies in relation to Small and Medium Enterprises and Startups