Feeds

Employer snooping code: don't eavesdrop on staff

Delays anger unions

  • alert
  • submit to reddit

Protecting users from Firesheep and other Sidejacking attacks with SSL

Delays in the arrival of the code to set out employees rights regarding company snooping has been angering Unions.

The FT has quoted a senior TUC policy officer who believes the delays mean employee rights are inevitably going to be fought for via test cases in court.

Sarah Veale, senior policy officer at the Trades Union Congress, told the FT: "A lot of us were relying on the code to clarify when the right to privacy protects the employee . . . we need it to help employers, as much as employees. If we're not going to have a code (this year), then if someone gets unfairly treated it means we may have to go to court. That's got to be the inevitable consequence."

The full code of practice, being drawn up by the Information Commissioner's Office (ICO), is expected by the end of the year, but it will be released in instalments. Employer monitoring and surveillance of staff is considered the most difficult bit, and is being left until last. Rules about keeping staff records are due in May/June - a bit later than the end of March the Reg was quoted at the start of March.

The ICO is claiming it has never really set deadlines for drawing up the code - 'The Use of Personal Data in Employer/Employee relationships' as it's snappily and provisionally known - because it is such a complicated subject and it is concerned that it gets it right. Iain Bourne, strategic policy manager at the Information Commission, said: "Employers and employees want advice on this and it is important we get it absolutely right."

The code of practice is vital for clarifying what employees and employers are entitled to do in the workplace following several pieces of new legislation. The controversial RIP Act opens up the possibility of widespread email and phone surveillance. But this has also to tie in with the Human Rights Act, which enshrines the right to reasonable privacy, and the Data Protection Act, which insists that data is recovered "in a fair and proportionate manner".

One of the reasons things are taking so long is because the ICO received around 110 full responses regarding the implications and conflicts of the new legislation from a public consultation. Bourne described some of these as very substantial, critical, and technical.

Amongst the feedback the ICO has had is conflicting information about whether technical checks to see if staff are downloading porn actually work. Whatever the case, the ICO favours using technical tests rather than getting into an employees surfing history or hard disk to have a look at what they've been up, to.

Bourne used a phone analogy to give the ICO's view. "If you think an employee has been abusing the phone and making personal calls, don't listen in on them." He recommends checking the phone logs to see where they've been calling." ®

Related Link

FT story

Related Stories

Email snooping code of practice delayed
SurfControl sales rocket by 200%

Website security in corporate America

More from The Register

next story
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Apple CEO Tim Cook: TV is TERRIBLE and stuck in the 1970s
The iKing thinks telly is far too fiddly and ugly – basically, iTunes
Huawei ditches new Windows Phone mobe plans, blames poor sales
Giganto mobe firm slams door shut on Microsoft. OH DEAR
Phones 4u website DIES as wounded mobe retailer struggles to stay above water
Founder blames 'ruthless network partners' for implosion
Found inside ISIS terror chap's laptop: CELINE DION tunes
REPORT: Stash of terrorist material found in Syria Dell box
Show us your Five-Eyes SECRETS says Privacy International
Refusal to disclose GCHQ canteen menus and prices triggers Euro Human Rights Court action
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.