Device Privacy
Managing personal devices (BYOD) comes with its own set of challenges. Admins have to ensure that the privacy of the users is not affected and at the same time, the corporate data has to be secured. MDM helps admin to configure the device settings considering the confidentiality of the employees, well defined work and personal data maintenance, protected access to remote control and various other compliance policies.
It is also recommended to configure Server Privacy Settings to ensure data privacy on the server, Server Security Settings to ensure data security on the server and Terms of Use which sets the mandate for the data collected and purposes for collecting the same.
Policy Description
You can configure the settings and data that are collected from personal devices with respect to your compliance policy. Further you can also configure whether to execute remote commands or not. These settings can be applied to both corporate and personal devices.
Configuring Privacy Settings
- On the MDM server, click on Admin tab from the top menu and select Privacy Settings.
- Configure the policy based on the table given below:
Note:You can configure the following settings whether to be enabled/disabled on the devices with respect to your organization's policies. The data collected is used for Inventory tab, reporting and auditing purposes.
PARAMETER | DESCRIPTION |
---|---|
Device Data | Serial number and IMEI number are collected by default as it is used by MDM to identify the device. You can completely restrict collecting the below Device Data by selecting Do not collect. Note: From Android 12, MDM uses only UDID to track device information.
|
Remote Command Execution | Admins can remotely perform the following commands on the user's devices. Configure the settings in accordance with the privacy policies of your organization.
|
Policy Display | Configure whether the user can view this privacy policy defined by the organization or not. Users can also view the list of data collected and the purpose for the same on the ME MDM app under Privacy. It is recommended to provide details regarding the data collected and the purpose for the same, on the Terms of Use distributed to the users. |
Applicable Devices | Specify whether the policy is to be applied to corporate and/or personal devices. |
- In case of Lost Mode, the device location is tracked and security commands such as data wipe etc., get executed irrespective of the settings configured, as the user explicitly grants consent for executing Lost Mode.
- It is also recommended to distribute the updated version of the Terms of Use policy, every time these settings are modified.