With the GDPR deadline having passed, what are you doing to ensure that your company is keeping compliant?

 

We here at Miradore understand the heightened security and compliance needs of our customers. Whether it’s separating company and personal data with Profile Owner mode on an Android device, or separating data from managed and unmanaged sources on iOS devices, we are focused on providing solutions that help you effectively control, restrict, configure, and manage your organization’s devices.

 

At issue are third-party messaging apps like WhatsApp. While popular and ubiquitous, apps like WhatsApp—thanks to a phone’s default settings—receive that user’s personal data, such as a name and phone number.

 

Regarding data privacy, WhatsApp’s updated Terms of Service and Privacy Policy for users in the European Union notes:

 

We are not currently sharing account information to improve your product and ads experience on Facebook. As we have said in the past, we want to work closer with other Facebook companies in the future and we will keep you updated as we develop our plans.

 

At issue is the company’s use of the word ‘currently.’ While WhatsApp has agreed not to share data with its parent (for now), it is uncertain in the future.

 

WhatsApp-device

 

Additionally, WhatsApp is vague about the countries in which the company stores user data. These countries may not necessarily comply with security or privacy laws of the U.S. or EU:

 

The Privacy Policy sets out the legal bases for our processing of personal information about you, including the collection, use, processing, and sharing of such information, as well as the transfer and processing of such information to the United States and other countries globally where we have or use facilities, service providers, affiliated companies, or partners, regardless of where you use our Services.

 

Several of Miradore’s customers have found Microsoft Teams to be an alternative to WhatsApp. There is a free version, and users can be enrolled with Miradore Online.

 

Microsoft became one of the first companies certified under the Privacy Shield in 2016. The Privacy Shield helps to ensure that Europeans’ data remains protected—and their privacy is respected—when data is sent to the U.S.

 

As such, sharing personal data with Teams is considered safe.

 

(For the most complete advice about GDPR, however, we suggest that you consult with your legal counsel.)

 

User contact information, such as that stored in a messaging service, is only one category of data that is regularly uploaded to a smartphone app. Photos, documents, and other content stored in a cloud storage service are also considered data that is subject to GDPR.

 

We’ve worked with several companies who’ve begun using Miradore Online in order to meet GDPR guidelines. Austrian steel producer Breitenfeld sought out Miradore specifically for our ability to help them with GDPR – setting everything up in less than two hours.

 

Today, Breitenfeld uses Miradore for

  • Separation of business and personal data with the help of secure container (Android devices)
  • Separation of business email, contacts and documents from personal data (Secure email for iOS)
  • Automation of apps and configuration deployments with business policies
  • The pushing of apps and configurations (like Exchange)
  • Enforcement of passcodes
  • Deployment of WiFi settings
  • The ability to read security settings via Miradore reports (to identify rooted devices)

 

Control and restriction are key, of course. But for phones purchased and owned by your users, a BYOD policy ensures that these users can still access and enjoy apps for their personal use.

 

Unsure about the separation of your users’ personal and work-related data? We’d be happy to discuss.

 

 

 

Not managing your mobile devices yet?

Sign-up now for free!