When can companies “spy” on their employees? Monitoring data systems and employee digital activity is critical to reducing the significant cybersecurity risks that employees pose (either inadvertently or maliciously), but companies do need to make sure they comply with consent and other legal requirements when implementing surveillance programs. This first part of a two-part series on the topic addresses the role of data monitoring, effective notice, legal considerations, and specific policies regarding BYOD, termination and remote employees – including stories from the trenches. Part two will provide operational guidance on implementing effective and compliant monitoring programs, and discuss privacy concerns in different types of employee surveillance, including the contrasting rules and approaches in Europe. See also “Strategies for Preventing and Handling Cybersecurity Threats From Employees” (Apr. 8, 2015).
Apr. 5, 2017
Effective and Compliant Employee Monitoring (Part One of Two)
- Amy Terry SheehanCybersecurity Law Report
To read the full article
Feb. 27, 2019
Preparing for the CCPA: Securing Buy-In and Setting the Scope
Jul. 18, 2018
What to Expect From California’s Expansive Privacy Legislation
Mar. 6, 2019
Preparing for the CCPA: Best Practices and Understanding Enforcement
Feb. 13, 2019
Reducing Risk in the Dawn of Equifax and Other Cyber-Related Securities Fraud Class Actions
Feb. 13, 2019
Practical Ways to Incorporate Security Protection Into Supplier Agreements
The CSLR’s Rebecca Hughes Parker will be participating in Millennium Alliance’s Transformational CISO East Assembly on March 19 and 20, 2019, in Charlotte, N.C. The event brings together prominent security professionals to delve into the top trends affecting the industry today. She will be moderating a panel and hosting two roundtables. More information is here.
Measuring the effectiveness of a compliance program can be tricky, but some companies are finding ways to use their existing internal controls to generate useful data. Join our sister publication the Anti-Corruption Report (ACR) for a complimentary webinar that explores Hewlett Packard Enterprises’ new travel-and-entertainment-approval tool. On Wednesday, March 27, 2019, from 1:00 p.m. to 2:00 p.m. EDT, the ACR’s Megan Zwiebel will interview Becky Rohr, vice-president of anti-corruption and global trade at Hewlett Packard Enterprises, about how they are using their T&E tool to measure and improve compliance. Registration information is here.