HelenShout out to my colleague who, when asked in the work chat "has anyone left their work iPad here," responded with "if the passcode to it is [6-numbers] then yes" and caused a cyber security breakdown at 9pm on a Friday 👌
Paper Moon@miffyhelen oh well done colleague! There was a guy in another department at mine who wanted to share a report with his team, so he published it in Google docs. His whole department had to spend a day in training with Compliance.
David Cohen@TazPoltorak @miffyhelen When my son started his job in Property Conveyancing, on his second day a fellow inductee posted a desktop selfie on Instagram with client details visible on her screen, and their Compliance systems spotted it immediately and notified their manager.
Warnings about not using social media in the office had been emphasised the day before…
@davidbcohen @miffyhelen I agree that clients' details must never be shared and it's a possible court case, however, it is still worrying that an employee's private social media account was already monitored two days after she had started the job.
@TazPoltorak @miffyhelen It wasn’t being directly monitored (trust me, HR in his firm is nowhere that good!). The software package supplier that they use has a contract with Meta to fingerprint posted images looking for matches with their software UI and client logos. So they can notify potential breaches to clients without monitoring individual accounts.
@davidbcohen @miffyhelen Compliance sometimes fuck up too. I once investigated a case and the contents of my email were pasted into the client's record together with my name by a Compliance officer(and the client did see it bc they are entitled to).