Policy on Bringing Employees’ Own Devices to Work

April 2014
Increasingly, employees use a wide range of electronic devices like smartphones, tablets and laptop computers and expect to be able to use them at all times, including in the workplace. Essentially, then, employees are using their own devices to access and store corporate information, as well as their own personal information. This is known as ‘bring your own device’ or BYOD.

If Companies leave this process unmanaged, it can lead to a loss of control, possible data loss and tricky data protection issues. The key thing to remember is that the data controller in a company must remain in control of the personal data for which he or she is responsible, irrespective of the ownership of the device used to carry out the processing. It is particularly important for companies to show that, in the event of a security breach, the data controller has secured, controlled or deleted all personal data on a particular electronic device.

Simply-docs have produced a new BYOD policy to help companies protect against these potential risks, while allowing employees the convenience of using their own electronic devices. This BYOD policy should be read in conjunction with Simply-doc’s Data Protection Policy and Communications, Email and Internet Policy.

The contents of this Newsletter are for reference purposes only and do not constitute legal advice. Independent legal advice should be sought in relation to any specific legal matter.