Bring Your Own Device Policy

Purpose

The purpose of this policy is to define your responsibility to help ensure that the Specialized network and our information remains secure when using personally owned devices to access the company’s network. Using a personally owned device to access the network is known as Bring Your Own Device or BYOD. A BYOD device includes but is not limited to: smartphones, laptops, tablets, smart devices, and wearable technology.

Scope

This document applies to all Specialized employees, affiliates, and all other individuals or companies such as external partners, suppliers, vendors, retailers, or consultants who use BYOD to access the Specialized network.

Policy

BYOD is a rapidly changing technology and Specialized reserves the right to modify this policy, including eliminating all support for BYOD, at any time.

You are permitted to use BYOD devices to access the Specialized network subject to the following requirements:

  1. Your device meets minimum security standards such as, but not limited to, an up-to-date operating system and all storage (including removable storage) used by the device is encrypted. Rooted (Android) or jailbroken (iOS) devices are strictly forbidden from accessing the network.
  2. You will not store confidential Specialized data on your personal computer or device.
  3. You approve the installation of security software/agent on your phone and/or personal computer to help ensure that minimum security requirements are in place prior to accessing the Specialized network. The agent/software is not designed to monitor your computer use.
  4. You understand that if your device is lost or stolen it may be remotely wiped in order to protect any company data that may be on it. Lost or stolen BYOD devices must be immediately reported to the Help Desk.
  5. You agree to abide by the Employee Acceptable Use Policy and follow all company policies regarding data security and privacy.
  6. You understand that Specialized has the right to monitor all communication to BYOD devices. Specialized reserves the right to disclose the substance of any electronic communication (or any facts relevant to such electronic communications) whenever it has a business or regulatory need to do so or is compelled to do so by law.

Compliance

All persons who have access to the Specialized network are required to understand and comply with all requirements established in this document. Violation of this policy could result in loss or limitations on use of information resources, as well as disciplinary and/or legal action, including termination of employment or referral for criminal prosecution.

Exceptions

Any exception to this policy shall be supported by a business justification, reviewed by the Head of Security, and approved by the CIO.

Support

IT and the Help Desk will provide support for Specialized owned devices. You are responsible for supporting any personal devices used to connect to the Specialized network.