Tips for implementing a bring your own device policy
Most companies assign laptops and mobile devices to their employees when they first come onboard, but there are certainly exceptions, and if your company is one that needs to implement a bring your own device policy, there are a few best practices to keep in mind when creating company policies around these personal devices.
We’ve laid out some of the do’s and don’ts here to help you create a policy that works for you and your employees, keeping critical information safe and minimizing risk.
Assess Privacy Risks
Younger workers, especially, are married to their own devices. But there are risks involving the collection, use, disclosure, storage and retention of personal data. Also, the threat of info theft and hacks into company servers. Have an IT pro or ethical hacker assess vulnerabilities, and advise on possible solutions before going BYOD.
List The No No’s
If you’re requiring employees to use their own devices, you can’t necessarily ban certain apps. However, you can explain your company’s preferred privacy settings and set guidelines for what is and isn’t appropriate during work hours.
It goes without saying that certain activities are off-limits during work hours. It’s up to you to determine what those are. Some companies spell out in their employee manual that game playing, leisure reading, and personal social media or personal calls aren’t allowed on company hours, regardless of who was the device.
Consider Centralizing Security And Updates
Different browsers, apps and software make privacy protection harder than herding cats (or virus-concealing cat videos). Except there are tools for making sure every user’s safer.
Put in place an enterprise-grade system that helps regulate and manage access to company platforms. It could also automatically upload required business apps and updates. Plus it adds a nifty way to message people across the organization.
Every BYOD’er uses strong passwords and their devices self-lock when idle more than five minutes, right? As if. So make these things mandatory.
Jailbroken (iOS) or rooted (Android) devices could be strictly forbidden from accessing the network. Employee access to your network and confidential info could be limited by role. Every device should be remotely wipeable – in case of emergency, loss, policy breach or employment termination.
Take Labour Laws Into Account
Part of staying safe is protection from shocks. Are you getting hit up for unexpected overtime pay? It’s a prospect when employees keep using workplace apps and tools after hours. Usage expectations got to be clearly identified in your BYOD policy.
Be Firm On Reimbursement
When supplying the equipment, an employer usually pays the shot. That includes devices, phone and data plans, ISP fees and obligatory apps.
With BYOD users that changes. Tell them what percentage or amount of the above will be subsidized or paid for. Also, let them know if roaming charges and plan overages aren’t covered without approval.