Data protection and remote working

Article by Karen Holden, CEO of A City Law Firm

As the country starts to re-open, lots of businesses are still carrying on with remote practices, and many more wish to adopt them.

Many businesses are adopting a hybrid approach to staff working remotely and in the office. Whilst many are having to weigh up the pros and cons of the new styles of working and make decisions in respect of what they want, we have considered some of the key considerations for employees in respect of protecting company data.

  1. Check Staff Policies

Staff policies should have been updated to reflect more widespread remote working. Staff policies should suitably cover how and where personal data should be stored and sent. If your own devices are being used then there should be policies in place that cover the costs of repair, usage etc as well as internal policies and plans for security or data compromise.

If this has not happened, you should clearly document with your employer what devices you will be using, who is responsible for the upkeep and maintenance of the same and how data is being transferred and stored.

  1. Device Security

It is important that you practice a reasonable level of security of any device you use during the course of your employment, especially when working remotely. 

You should ensure your device has a suitable level of password protection, in line with any staff policies, or if there are no polices in place, this should be a reasonable level of security relevant to the data being transferred. Devices should also be locked when not in use.

You should not ignore prompts on your device to update software. Out of date software can give rise to security breaches and it is therefore fundamental that devices are constantly updated. If you are unsure you should speak to your IT department.

You should restrict who is able to access your device as family members may inadvertently have access to the sensitive data of the company. Others with access to your devices should be made aware of the potential impact their actions may have on you and your employment if they cause or commit a security breach whilst using your device.

  1. Storage

There should be updated and clear policies on how and where you should be storing data, especially personal data, within the organisation.  It is important that you comply with any storage policies or requests from your employer. If you fail to do so then infringement may result in sanctions and ultimately termination.

  1. Communication

Whilst working from home there may be increased temptation to use alternative methods of online communication such as unapproved instant messaging services. You should check any staff handbook and policies as there is likely to be restrictions on how you can communicate company data. You should really only use corporate email solutions i.e., ones that the employer implements and provides and should stay away from other means of communication, including personal email accounts, when distributing information to reduce the risk of a data breach.

Karen HoldenAbout the author

Hot shot solicitor Karen Holden launched A City Law Firm in 2009 after growing concerned about the impact pregnancy would have on her career at an international law firm.

The company are now the go-to legal experts for entrepreneurs and they have won several prestigious accolades including Most Innovative Law Firm of the Year 2016. Karen has also been shortlisted for Working Mums Champion this year by WorkingMums.

Karen’s drive to succeed stems from being raised on a tough council estate in Wales, where her her mum worked three jobs as a single parent. Desperate for a better life, Karen managed to secure a scholarship to study at Cambridge before qualifying as a solicitor.

 

Related Posts

Comment on this

X