Personnel Today
  • Home
    • All PT content
  • Email sign-up
  • Topics
    • HR Practice
    • Employee relations
    • Learning & training
    • Pay & benefits
    • Wellbeing
    • Recruitment & retention
    • HR strategy
    • HR Tech
    • The HR profession
    • Global
    • All HR topics
  • Legal
    • Case law
    • Commentary
    • Flexible working
    • Legal timetable
    • Maternity & paternity
    • Shared parental leave
    • Redundancy
    • TUPE
    • Disciplinary and grievances
    • Employer’s guides
  • AWARDS
    • Personnel Today Awards
    • The RAD Awards
  • Jobs
    • Find a job
    • Jobs by email
    • Careers advice
    • Post a job
  • Brightmine
    • Learn more
    • Products
    • Free trial
    • Request a quote
  • Webinars
  • Advertise
  • OHW+

Personnel Today

Register
Log in
Personnel Today
  • Home
    • All PT content
  • Email sign-up
  • Topics
    • HR Practice
    • Employee relations
    • Learning & training
    • Pay & benefits
    • Wellbeing
    • Recruitment & retention
    • HR strategy
    • HR Tech
    • The HR profession
    • Global
    • All HR topics
  • Legal
    • Case law
    • Commentary
    • Flexible working
    • Legal timetable
    • Maternity & paternity
    • Shared parental leave
    • Redundancy
    • TUPE
    • Disciplinary and grievances
    • Employer’s guides
  • AWARDS
    • Personnel Today Awards
    • The RAD Awards
  • Jobs
    • Find a job
    • Jobs by email
    • Careers advice
    • Post a job
  • Brightmine
    • Learn more
    • Products
    • Free trial
    • Request a quote
  • Webinars
  • Advertise
  • OHW+

Employment lawData protectionHR practiceHR strategyKnowledge management

Managing the risk from removable media

by Personnel Today 29 Mar 2005
by Personnel Today 29 Mar 2005

Corporate data has never been so insecure and the ease with which it can now be removed from your office is frightening. Magnus Ahlberg, managing director at security experts Pointsec, looks at how you can minimise the risk.


The rise of the mobile data market has been rapid, lucrative and dangerous. Long gone are the days when you needed identical tape drives and software on both computers. The traditional floppy disk market and local tape markets were superseded by super-floppies and zip drives. And now, even these formats are disappearing as the mobile data storage market evolves.


Thanks to their large capacities, portability, and simplicity, removable media have become one of the most popular types of storage devices around today. You’ve only to go on a training course and you may be given a memory stick with all your computer notes stored on it.


The arrival of the MP3 music player has had a significant impact on the market. While Apple sees music as the only reason for owning an iPod, its competitors have simply created large data stores with some built-in music software. And a growing number of people now view the MP3 player as both a data and entertainment tool.


The danger here is that, as an entertainment device, it falls below the business radar and with storage capacities set to exceed 80GB by the end of 2005, it is a serious threat to data protection.


Here are some facts about corporate data:




  1. The average word-processing file is three pages long and between 25k and 30k. That means that a 20GB MP3 player could hold more than 750,000 documents


  2. The majority of corporate networks do not audit what data a user copies to a local machine or attached device


  3. 99% of those using mobile devices to transfer data use no encryption to protect that data

Preventing people bringing devices and media into the office is an extremely difficult problem. Look at the physical size of much of this media and it’s easily missed in a pocket, briefcase or handbag. Short of instituting an invasive and very workforce unfriendly search policy, keeping devices out of the company is virtually impossible.


The solution then, appears to be one of management. The first step here is to decide on what you can and cannot enforce. Remarkably, few companies actually realise how limited their powers actually are, especially with respect to current privacy and human rights legislation.


For example, preventing employees from bringing their MP3 player to work and then using it during lunchtime would require draconian terms of employment that would almost certainly be illegal. Companies that have tried similar experiments with regard to camera phones have found it hard to police and enforce.


What you can do, however, is ensure that all members of staff are aware that their employment does not allow the connection of non-company devices to their computers or other peripherals. This means banning people from downloading their photos to that nice colour printer and no swapping music with the person who sits next to you if that means connecting to the computer and using it as a transfer point.


Sign up to our weekly round-up of HR news and guidance

Receive the Personnel Today Direct e-newsletter every Wednesday

OptOut
This field is for validation purposes and should be left unchanged.

Administrators need to create security solutions that log the amount of data that a user downloads. It is already acceptable to search an employee’s hard disk for illegal files, but few companies do this. Nightly sweeps of hardware to find MP3, WMA, JPG and other file extensions would seem a simple thing. Unfortunately, all of these formats have legitimate work uses and are often used by software packages for saving business files.


Remember, we are now in a world where almost every month a new piece of regulation over data protection and access appears. If you don’t sort this out now, the Office of the Information Commissioner – which is responsible for enforcing the data protection regulations – will simply fine you extensive amounts of money and you will still have the problem.

Personnel Today

Personnel Today articles are written by an expert team of award-winning journalists who have been covering HR and L&D for many years. Some of our content is attributed to "Personnel Today" for a number of reasons, including: when numerous authors are associated with writing or editing a piece; or when the author is unknown (particularly for older articles).

previous post
HSBC bank faces industrial unrest as pay talks collapse
next post
TUPE changes promise clarity, at a cost

You may also like

Company director wins £15k after being told to...

4 Jul 2025

How can HR prepare for changes to the...

3 Jul 2025

Government publishes ‘roadmap’ for Employment Rights Bill

2 Jul 2025

Employers’ duty of care: keeping workers safe in...

27 Jun 2025

When will the Employment Rights Bill become law?

26 Jun 2025

With HR absence rising, is your people team...

24 Jun 2025

Seven ways to prepare now for the Employment...

20 Jun 2025

The employer strikes back: the rise of ‘quiet...

13 Jun 2025

Lawyers warn over impact of Employment Rights Bill...

13 Jun 2025

Racism claims have tripled and ‘Equality Act is...

12 Jun 2025

  • Empowering working parents and productivity during the summer holidays SPONSORED | Businesses play a...Read more
  • AI is here. Your workforce should be ready. SPONSORED | From content creation...Read more

Personnel Today Jobs
 

Search Jobs

PERSONNEL TODAY

About us
Contact us
Browse all HR topics
Email newsletters
Content feeds
Cookies policy
Privacy policy
Terms and conditions

JOBS

Personnel Today Jobs
Post a job
Why advertise with us?

EVENTS & PRODUCTS

The Personnel Today Awards
The RAD Awards
Employee Benefits
Forum for Expatriate Management
OHW+
Whatmedia

ADVERTISING & PR

Advertising opportunities
Features list 2025

  • Facebook
  • Twitter
  • Instagram
  • Linkedin


© 2011 - 2025 DVV Media International Ltd

Personnel Today
  • Home
    • All PT content
  • Email sign-up
  • Topics
    • HR Practice
    • Employee relations
    • Learning & training
    • Pay & benefits
    • Wellbeing
    • Recruitment & retention
    • HR strategy
    • HR Tech
    • The HR profession
    • Global
    • All HR topics
  • Legal
    • Case law
    • Commentary
    • Flexible working
    • Legal timetable
    • Maternity & paternity
    • Shared parental leave
    • Redundancy
    • TUPE
    • Disciplinary and grievances
    • Employer’s guides
  • AWARDS
    • Personnel Today Awards
    • The RAD Awards
  • Jobs
    • Find a job
    • Jobs by email
    • Careers advice
    • Post a job
  • Brightmine
    • Learn more
    • Products
    • Free trial
    • Request a quote
  • Webinars
  • Advertise
  • OHW+