One of the challenging and often expensive aspects of collecting data for litigation, regulatory investigation or audit is locating all sources of potentially relevant evidence. That exercise is difficult enough when considering only company equipment and devices (computers, Blackberries, servers, shared drives, etc.). The scope grows exponentially when one considers the personal devices possessed by employees, including home computers, cell phones, Blackberries, iPhones, iPads, etc. Your employees are using these personal devices for business purposes, which means that potentially relevant evidence is stored on devices your organization does not ultimately control.
Think this doesn’t apply in your business? Think again.
According to a study of 4,500 users in 13 countries by KRC Research (published in The Globe and Mail on Tuesday, April 19, 2011 on page B7), 40% of workers use their personal devices for business purposes. Further 50% of workers who use their own devices for business reasons access company networks without their employer’s knowledge.
Perhaps it is time to revisit your organization’s Records Retention, Acceptable Use, Security and/orTechnology policies?