Companies increasingly allow their employees, agents and subcontractors to access business data and customer data using privately owned devices (i.e. iPads, tablets, mobile phones and laptops). If staff access business data using a “bring your own device” (BYOD) you need to protect your own confidential business information from misuse. Additionally, you should be aware of, and comply with, your legal obligation to protect each customer’s personal data accessed via BYODs.
ICO Guidelines
In 2013 the Information Commissioner’s Office (ICO) published guidelines providing advice on how to protect personal data accessed using a BYOD. The Commissioner underlined that companies are obliged to look after personal data in accordance with the Data Protection Act 1998 (Act) regardless of who owns the device on which the processing is carried out. [Read more…]