BYOD Policies for Patrons/Users and StaffTopher Lawton & Jill Hurst-Wahl @hieanon @jill_hw
They Just Keep Bringing More: Supporting the CommunityHelpful:• Have a policy• Know your network• Be ready to educate http://en.wikipedia.org/wiki/File:Network_Tree_diagram.png
Less Helpful:• “Support everything”• Too-specific language - requires review• Missing policy Photo Credit: Mario Roberto Durán Ortiz
Best PracticesBefore the policy:• What can my network handle?• What are the needs of my community?What goes in a policy?• Plain/understandable language• Specific, but not too specific• Acceptable tech, acceptable use• Who to ask for helpAfter the policy is written:• Review process• Post it! Share it!
Staff Use of BYOD: A Growing ProblemMobile devices +• Enhanced device functionality• Extended work hours• Need to work from anywhere• Mobile access to confidential information• Can carry org data on an unsecured device• Easy to share / lose http://www.flickr.com/photos/intelfreepress/8389435615/
Solution: Enforceable policy & Employment contract• When can a personal device be used at work?• What can be accessed with no authentication? …with userID/password authentication? …with device-level authentication?• When is encryption required?• What types of devices are supported?• What happens if the device is lost / stolen?• What are the consequences?
A Personal Talehttp://www.flickr.com/photos/mpimagery/4564521012/