GT Insurance Blog

Insurance problems and cures

Posts Tagged ‘cyber breach insurance

Do You Allow Surfing At Work?

leave a comment »

SurfboardWhy would you worry about your employees surfing the Net?

Salary.com survey said that 64% of workers admitted visiting websites not related to work, every day while at work.  24% of those employees said they spent 5 or more hours a week on such websites.  (Note that Salary.com, ironically, has a section for job searches.)

Since another survey suggests that 40% of Internet use in the workplace is not business related, I’d guess that (surprise!) people are understating how much they use your computers for non-work purposes.

Let’s just skip over how much your company’s bandwidth may be used for watching porn.

In 2012 the Federal Court of Appeals for the Ninth Circuit  held that using an employer’s computer for inappropriate  purposes is not a Federal crime, though one statute called that into question.  You the owner may have to prove that your employee was harming your company before you can discipline/fire/jail him or her.  Here’s a link to a Wall Street Journal law blog.

IT service provider IT Radix recommends that you implement Internet monitoring software to go with your anti-virus, encryption, and other defenses. It’s not insulting any more than a railing on stairs is insulting.  Tell your employees what the rules are, have a written policy, and the software will remind people when they trip.

(Thanks to our client Surfernetwork for the picture of the surfboard hanging from the ceiling of their office.  Surfernetwork provides live streaming of radio stations, virtual radio station support, and streaming of corporate meetings and messages. )

Who owns your company’s data? How do you make sure?

leave a comment »

You own your data, but you have to take steps to make sure you can control it, both legally and in the cyber world.

Do your employees use only devices your company owns?
Have they acknowledged that their information on those devices is not private?

If they use their own devices to access your information, have they agreed to let you review any and all information on those devices?
Have they agreed to let you wipe their devices if you find your information on them?

All of this should involve help from your own lawyer.

Even if you get a signed acknowledgement that you can look at their information and look at information on devices they own, you’d better be talking to your own lawyer if you run into a communication between your employee and his or her own attorney.

On the IT front, a good IT provider can help erect barriers to penetration by outsiders, and to theft of data by insiders.

But multiple platforms are complicating IT.  Mobile malware is exploding.  And many small businesses don’t keep current with firewalls and monitoring of data use.

If you’d like to discuss IT issues in more depth, try this link to IT Radix.  And we thank them for putting on the seminar that provoked many of these questions today.

The legal questions in the seminar today were posed by Colin Page, Esq.  Try this link to make contact with his law firm if you have questions on data ownership and employment issues.