Ever wondered who may be eavesdropping as you queue in Starbucks or seeing your work emails when you're on the Tube? You should.
In June 2021, classified UK defence documents were found by a member of the public at a bus stop in Kent. They related to military strategy and the movement of warships. Yet again, it highlighted the importance of information security on the move and in public places. But it is from an isolated incident, showing that lessons have not been learned.
When the hand-written notes of an aide in respect of Brexit were photographed in Downing Street in 2016, saying "have cake and eat it". You'd think this would be a salutary lesson for government officials. However, in 2020 another confidential document, this time for "permanent equivalence" was picked up by the long lenses of journalists.
It's tempting to keep working as you travel on public transport, but what are the implications? How should you balance the competing demands for productivity with confidentiality and security?
If you are accessing company networks or sensitive corporate data avoid wifi in cafés, trains, hotel foyers or other public places even if it asks you to sign up and login. If it says it's not a secure network, then it isn't one...
Before you take a work-related call on your mobile make sure you check over both shoulders before discussing anything confidential. And if you need to, explain to callers that you're in a public place and arrange to call them back later.
Only take necessary files and data with you when you travel; encrypt and password-protect all data first, and ensure that it's returned or deleted after use. Don't carry it around on flash or portable drives!
Working on a laptop when you're on the move can certainly make you more productive, but make sure that you're not sharing corporate information with everyone else in the carriage or café too. Where possible position yourself with a wall behind you. Never sit with your back to a window!
As every visitor to Downing Street can testify, avoid carrying loose documents; always transport paperwork and corporate information in an opaque envelope or folder to protect it from inquisitive passers-by. And if you use a printer or photocopier, make sure you collect your documents promptly.
If you make a mistake, tell your manager or IT immediately so that they can act quickly to limit company losses and inform all those affected. Remember that there may be legal repercussions (e.g. data protection and market abuse).
We’ve created a comprehensive GDPR roadmap to help you navigate the compliance landscape, supported by a comprehensive library of GDPR Courses.
We also have 100+ free compliance training aids, including assessments, best practice guides, checklists, desk aids, eBooks, games, posters, training presentations and even e-learning modules!
Finally, the SkillcastConnect community provides a unique opportunity to network with other compliance professionals in a vendor-free environment, priority access to our free online learning portal and other exclusive benefits.