Have you considered the GDPR implications of allowing your employees to access work emails on their smartphones?
While allowing your employees to answer work emails on their devices may seem like a harmless (or even beneficial) offering, research revealed this practice can actually cause increased liability concerns under the GDPR. Indeed, industry experts discovered in a recent survey that 61 per cent of UK workers use their personal devices to answer work emails or continue working out of office when they get home. However, 46 per cent of workers also admitted they were unsure of how the GDPR affected their personal mobiles.
Without proper risk management, permitting employees to use personal devices for work opens the door to a wave of additional cyber-security concerns. And if your business suffers from a data breach at the hands of an employee’s personal device, your directors and officers, senior managers or even data protection officer (if you are required to have one) could be held liable on account of negligence. If you allow Bring Your Own Device (BYOD) at your organisation, consider these GDPR compliance tips to avoid a personal device disaster:
- Conduct mandatory GDPR training for all employees, regardless of seniority or department. Include detailed guidance on personal device use to ensure your staff is aware of how to keep both their own data and customer data secure on any network or device.
- Communicate regularly with the IT department to make sure that all BYOD risks are being controlled and data is kept secure.
- Implement a BYOD policy that stays compliant with all applicable guidelines in the GDPR. Be sure to enforce this policy and establish strict consequences if an employee fails to meet the requirements.
We can provide you with a free sample Bring Your Own Device (BYOD) policy template and discuss Cyber & Data Breach Insurance options to help protect your business. Just call us on 01384 442 165 or For A No Obligation Cyber Insurance Quotation – Just Answer 5 Quick Questions!
Our comprehensive Cyber & Data Breach Insurance package covers:
- Third Party Cyber Liability from £250,000
- Breach Response Services from 5,000 Individuals
- Cyber Extortion, Cyber Business Interruption & Cyber Data Protection from £250,000