Information Commissioner's Office
Blog: Video conferencing: what to watch out for
The COVID-19 crisis is changing the way we live our lives. Keeping our distance means many of us are working from home for the first time and adapting to new ways of doing our jobs.
Thankfully, technology is helping us all stay connected. Video conferencing software and apps are valuable ways of doing business, holding staff meetings and keeping in touch with colleagues.
But with everyone working under such extraordinary circumstances, it’s easy to prioritise convenience over security. The ICO can help make it easy to have it all ways – combining the efficiency of digital connection with the necessity for privacy protection.
We’ve got advice you can share with your staff to ensure they can communicate with confidence.
Have you checked the privacy and security settings?
Video conferencing technology must be transparent. Users need to know how their data will be processed, as well as having choice and control over it. So you should make use of privacy and security features. These can include restricting access to meetings using passwords, controlling when people can join the meeting or controlling who is allowed to share their screens. Think about who and how you share the meeting ID or password.
You should make these choices before you start the meeting and consider providing employees with clear advice on which features to use and how.
Are you aware of phishing risks?
Many of us are aware of the signs of phishing emails or texts, but would you know what to look out for in a video chat? The ‘live chat feature’ can be used by malicious people to spread phishing messages. Be vigilant. Don’t click on links or attachments you were not expecting or from meeting attendees you do not recognise.
Have you checked your organisation’s policy?
Whilst you may have a preferred app to keep in touch with your friends and family, you should check to see which tool your organisation has chosen to use. Organisations should select a video conferencing platform that matches their policies.
Have you ensured all software is up-to-date?
One of the most effective security measures you can take is to keep all your software up-to-date, and video conferencing software is no exception. If you have installed a video conferencing app, keep it up to date by applying all available software updates regularly. Your organisation may well have configured your equipment to do this automatically. If you access a video conferencing service via a web browser, then make sure the browser is kept up to date too.
Is this still the right tool for the job?
In a time of crisis, decisions are often made quickly in order to get the job done. But in the long run, circumstances can change and the risk balance case might look different. There is no reason to remain committed to using a particular tool or service forever just because you used it in an emergency. Re-visit your decision when you eventually have time and resources to do so.
Ian Hulme is Director of Regulatory Assurance at the ICO.
Latest News from
Information Commissioner's Office
ICO approves the first UK eIDAS Regulations Qualified Trust Service Provider28/07/2021 09:10:00
The Information Commissioner’s Office has approved GlobalSign as the UK’s first qualified trust service provider [QTSP] under the UK eIDAS Regulations.
ICO's blog on its information rights work26/07/2021 16:20:00
Colleagues from the ICO’s FOI Directorate share their experiences and involvement in raising awareness of our regulation of access to information legislation.
Blog: New toolkit launched to help organisations using AI to process personal data understand the associated risks and ways of complying with data protection law21/07/2021 09:20:00
Alister Pearson, the ICO’s Senior Policy Officer – Technology introduces a new beta version of our AI and Data Protection Risk Toolkit. He explains how it can assure organisations that use AI to process personal data that they are processing it in line with the law and how organisations can help the ICO shape a final version.
Blog: What’s next for the Accountability Framework?19/07/2021 09:10:00
Blog posted by: Anulka Clarke, 15 July 2021.
Blog: Reflecting on the past five years of fundraising and data protection regulation16/07/2021 14:43:00
Lord Toby Harris, Chair of the Fundraising Regulator & Elizabeth Denham CBE, the UK Information Commissioner, reflect on the past five years of fundraising and data protection regulation in the charity sector.
Statement on ICO investigation into Department of Health and Social Care CCTV footage16/07/2021 09:10:00
The ICO can confirm it is investigating an alleged data breach.
ICO fines transgender charity for data protection breach exposing sensitive personal data09/07/2021 09:25:00
The Information Commissioner’s Office (ICO) has fined transgender charity Mermaids £25,000 for failing to keep the personal data of its users secure.
ICO publishes annual tracking research07/07/2021 15:15:00
77% of people say protecting their personal information is essential, research commissioned by the ICO has found.