"This raises risks of security of information once that staff member leaves the organisation or someone else obtains their phone (phone gets lost etc).?? Does anyone have any practices in place to address this issue?"
This is what I do personally.
- I do not leave anything on my phone (or laptop) longer than absolutely necessary.
- Stuff that is necessary for any particular period is transferred to a memory stick.
- Once whatever information has been utilised, it gets deleted.
- I ensure that the security on my phone/laptop is tight and virtually impenetrable.
That way, my client's information remains private and confidential.??
If I leave, their information is no longer with me.
If my phone gets lost or stolen, There is nothing there for anyone to see.
Original Message:
Sent: 8/18/2024 4:58:00 AM
From: Gary Ashton
Subject: RE: Security of information downloaded to staff personal device - when they leave
That's a great question, unfortunately i can't answer it only add to the inquiry. We have to use our personal phones and download a number of apps, plus access client information as well. I'm told everything is safe and secure but given the amount of times Australian business and Govt have been hacked i can't see this being very safe at all. What kind of security do we have as workers? Once a hacker is inside our phones all sorts of personal information can be accessed ie. banking apps ect.
------------------------------
Gary Ashton
------------------------------
Original Message:
Sent: 15-08-2024 22:51
From: Shirley Smyth
Subject: Security of information downloaded to staff personal device - when they leave
Hi there, I'm new to this group so hope this question is what the community is intended to be used for. I am seeking some advice on how organisations manage the security of information (such as client plans and documents) that are downloaded from an app/CRM on to a Support Worker's personal device such as their mobile phone. Some IT systems/CRMs allow the document to be viewed but some systems require the user to download the document. This raises risks of security of information once that staff member leaves the organisation or someone else obtains their phone (phone gets lost etc). Does anyone have any practices in place to address this issue? Thank you
------------------------------
Shirley Smyth
------------------------------