Privacy is difficult to protect in the digital world. New technologies are allowing us to work whenever and wherever, using a variety of devices. With more organizations dealing with decisions on Bring Your Own Device policy, privacy is again in the spotlight. With mobile devices and cloud storage being more stable and easy to use, they sometimes falsely give the impression that someone else MUST be taking care of the privacy and security of the information. But is that the case?
Privacy cannot be passively protected. It requires constant attention, and an informed strategy. In August, the Federal, Alberta and British Columbia Privacy Commissioners issued a joint publication on strategies for BYOD policies and practices as they relate to privacy. Notably, rather than pointing out the risks (there are many) and recommending that BYOD be avoided at all costs, the Commissioners recognize the need to adapt. They helpfully provide insight on ways to mitigate risk without standing in the way of progress.
On such a dynamic topic, the Commissioners were prudent in taking a strategic rather than directive approach. The document provides clear considerations for developing a BYOB policy. Most helpful is the Appendix that summarizes the 11 strategic considerations. If your organization is thinking about BYOD, this resource is a good starting point.