With the GDPR deadline upon us, companies must consider whether their Bring Your Own Device (BYOD) stance has the potential to create risks relating to data protection or breaches, as a result of staff using a single smartphone for both business and personal uses. Contributor Andy Munarriz, founder and CEO – Thumbtel.
A survey, conducted by Censuswide*1 for Thumbtel, has found that a quarter (25.3 percent) of senior managers and almost a third of directors (31.8 percent) use their personal phone for work purposes, while 37 percent of middle and senior managers use the same phone for both work and pleasure.
This leapt to 78 percent when the same question was asked to business owners. In addition, a recent study*2 found that only 54 percent of organisations in the UK have adopted formal BYOD policies even though 72 percent of organisations have embraced BYOD and SaaS application adoption.
Andy Munarriz, founder and CEO of Thumbtel said: “If your employees elect not to use their company issued mobiles or you have a Bring Your Own device policy in place, it’s time to consider the implications of GDPR on your business.
With over 14 million*3 people in the UK said to use a second mobile phone for work purposes, many prefer to use one device rather than juggle between two different handsets and chargers and this has the potential to create a big headache for business owners as work and personal communications become intertwined, leaving businesses open to possible data risks or security breaches.”
Further findings in the Censuswide survey identify the issues business professionals are facing in managing business and personal communications: 73 percent of respondents said that they own just one mobile handset, which may create difficulties in splitting business and personal calls.
More than half (55 percent) say they have answered a work call, believing it to be a personal call. While a quarter (25 percent) of respondents are juggling two or more phones, possibly in an attempt to manage work and home calls on separate devices.
“If your employees use their own mobile phone for work, either formally with a BYOD policy in place, or informally without the company’s knowledge, then you need to consider five key questions: do you have a clear BYOD policy in place that all employees are aware of?
Can you make it easy for employees to follow your policy? How can they keep work and personal contacts and communications separate? How secure is customer data and communications on their device? And can you ensure that you retain, or easily control, customer data if an employee leaves your business?
“These are important questions that company directors should not overlook – particularly with GDPR upon us and the penalties that may come as a result of non-compliance.”
