NDP Community

communities_1.jpg
  • 1.  Security of information downloaded to staff personal device - when they leave

    Posted 15-08-2024 22:51

    Hi there, I'm new to this group so hope this question is what the community is intended to be used for.  I am seeking some advice on how organisations manage the security of information (such as client plans and documents) that are downloaded from an app/CRM on to a Support Worker's personal device such as their mobile phone.  Some IT systems/CRMs allow the document to be viewed but some systems require the user to download the document.  This raises risks of security of information once that staff member leaves the organisation or someone else obtains their phone (phone gets lost etc).  Does anyone have any practices in place to address this issue?  Thank you 



    ------------------------------
    Shirley Smyth
    ------------------------------


  • 2.  RE: Security of information downloaded to staff personal device - when they leave

    Posted 18-08-2024 18:58

    That's a great question, unfortunately i can't answer it only add to the inquiry. We have to use our personal phones and download a number of apps, plus access client information as well. I'm told everything is safe and secure but given the amount of times Australian business and Govt have been hacked i can't see this being very safe at all. What kind of security do we have as workers? Once a hacker is inside our phones all sorts of personal information can be accessed ie. banking apps ect.



    ------------------------------
    Gary Ashton
    ------------------------------



  • 3.  RE: Security of information downloaded to staff personal device - when they leave

    Posted 19-08-2024 18:33
    "This raises risks of security of information once that staff member leaves the organisation or someone else obtains their phone (phone gets lost etc).?? Does anyone have any practices in place to address this issue?"

    This is what I do personally.
    • I do not leave anything on my phone (or laptop) longer than absolutely necessary.
      • Stuff that is necessary for any particular period is transferred to a memory stick.
    • Once whatever information has been utilised, it gets deleted.
    • I ensure that the security on my phone/laptop is tight and virtually impenetrable.

    That way, my client's information remains private and confidential.??

    If I leave, their information is no longer with me.

    If my phone gets lost or stolen, There is nothing there for anyone to see.






  • 4.  RE: Security of information downloaded to staff personal device - when they leave

    Posted 20-08-2024 09:17

    Something to consider –

    Regardless of the security measures you put in place on the personally-owned individual support worker mobile device, you would need to consider if the phone data is also being stored in the CLOUD.  Deleting from mobile will not delete from the Cloud (unless specific actions are undertaken to do that).  I suggest expert advice from IT specialist is required.

     

    Thank you

    Angela

     

     

     
    Angela Hegarty
    Business Transformation Manager
    CPL ‑ Choice, Passion, Life
    Level 2, 340 Adelaide Street
    Brisbane City QLD 4000
    www.cpl.org.au
    P
    04 6636 7577
    M
    0466 367 577
    Follow us on
    This message and any attachment are private and confidential. If you have received this message in error, please notify us and remove it from your system. If you have received this message in error, you must not copy this message or attachment or disclose the contents to any other person. Neither CPL nor the sender accepts any responsibility for viruses and it is your responsibility to scan or otherwise check this email and any attachments. Incoming and outgoing email communications may be monitored by CPL, as permitted by applicable law and regulations.