Mobile Device Policy
Covered in this policy
Responsibility
Ensuring security on mobile devices is vital to our overall IT & data security approach.
Compliance with this policy is considered mandatory.
Violations of the policies, standards and procedures will result in corrective action by management. Disciplinary action will be consistent with the severity of the incident, as determined by an investigation, and may include, but not be limited to: Loss of access privileges to information assets and other actions as deemed appropriate by management.
This document provides policies, standards, and rules of behaviour (ROB) for the use of smartphones and/or tablets by Etch employees, employees of temporary employment agencies, vendors, business partners, and contractor personnel and functional units (herein referred to as staff) regardless of geographic location to access Etch network resources.
Access to and continued use of network services is granted on the condition that each user reads, respects, and follows Etch’s policies concerning the use of these devices and services.
Etch will respect the privacy of personal devices and will only request access to the device in order to implement security controls, as outlined below or to respond to legitimate discovery requests arising out of administrative, civil, or criminal proceedings.
This differs from the policy for Etch-provided equipment/services, where staff do not have the right, nor should they have the expectation, of privacy while using Etch equipment or services.
While access to the personal device itself is restricted, Etch policies and ROB regarding the use/access of Etch email and other Etch systems/services remain in effect.
- Staff will not download or transfer any data that is not explicitly marked as unclassified to their devices.
- Staff will password-protect their devices per the IT Security Policy.
- Staff must maintain their devices operating systems and keep their devices current with security patches and updates.
- Staff will not share their devices with other individuals, including family members.
- Staff will delete any sensitive business files that may be inadvertently downloaded and stored on their devices.
- Staff agree that Etch reserves the right to remotely remove Etch accounts and data from their devices.
In this policy, the following terms are defined as follows:
- Us/We/Etch
- Etch Software Limited
Although this Policy explicitly covers the responsibilities of staff, it does not cover the matter exclusively. Other Etch policies, standards, and procedures define additional responsibilities. All users are required to read, understand and comply with other policies, standards, and procedures. If any staff member does not fully understand anything in these documents, they should consult with the persons listed under responsibilities. The aforementioned persons shall resolve any conflicts arising from this policy.
Thanks for reading this policy
Please feel free to use it as a template for your own document.
This policy is licensed under CC BY 4.0
Policies
We have shared our other policy docs publicly too.
Read more
Feedback
If you have any questions or feedback please contact us.
[email protected]