|
|
|
|
|
|
by samuel
188 days ago
|
|
|
(IANAL) I don't think there is a simple response to that, but I guess that given that the employer: - has established a detailed policy about personal use of corporate devices - makes a fair attempt to block work unrelated services (hotmail, gmail, netflix) - ensures the security of the monitored data and deletes it after a reasonable period (such as 6–12 months) - and uses it only to apply cybersecurity-related measures like virus detection, UNLESS there is a legitimate reason to target a particular employee (legal inquiry, misconduct, etc.) I would say that it's very much doable. Edit: More info from the Dutch regulator
https://english.ncsc.nl/publications/factsheets/2019/juni/01... |
|
|