Exactly. I’m not saying trust my employer or that I dont, I don’t care that much. Logging into slack on my phone doesn’t give them access to all my life. I don’t have to be a slave to the company but I don’t have to be a slave to paranoia either.
Personally there is a difference between logging into Slack on my phone and logging into email (which requires me to enroll into the MDM). I do the former on my personal cell phone, but I would never do the latter. There are many mistakes the company can make (like wiping my personal phone after resigning from the company) to make me regret that decision. But installing Slack is different, I can shut off the notifications and it is oftentimes convenient for me to have the access there if I need it.
Agreed enrolling into MDM shouldn’t be taken lightly. I don’t see that in any modern tech company (at least small ones). For the most part I use gmail and login to the company google account.
I like that you're in a thread about Apple asking employees to straight up merge their personal data into a corporate-owned account and your response is "Phew, at least they didn't ask you to install MDM!"
That's not what people are talking about, they're talking about fully merging your personal and work accounts for things like iphoto, email, etc like Apple is talking about above.
I used to be very strict but I kind of had to give in on the work email because it was so inconvenient. From what I’ve read on iOS this gives them fairly limited access to my activities. Well, hopefully true.
As with any security advice, we each have to know our threat model and understand how it may differ from the advice-giver.
It’s undoubtedly more secure to maintain perfect separation between work and personal information contexts. It can also be expensive and annoying, and may not be worth it for everyone. It really depends strongly on the employer and one’s relationship with them.