Information Commissioner's Office
Blog: Video conferencing: what to watch out for
The COVID-19 crisis is changing the way we live our lives. Keeping our distance means many of us are working from home for the first time and adapting to new ways of doing our jobs.
Thankfully, technology is helping us all stay connected. Video conferencing software and apps are valuable ways of doing business, holding staff meetings and keeping in touch with colleagues.
But with everyone working under such extraordinary circumstances, it’s easy to prioritise convenience over security. The ICO can help make it easy to have it all ways – combining the efficiency of digital connection with the necessity for privacy protection.
We’ve got advice you can share with your staff to ensure they can communicate with confidence.
Have you checked the privacy and security settings?
Video conferencing technology must be transparent. Users need to know how their data will be processed, as well as having choice and control over it. So you should make use of privacy and security features. These can include restricting access to meetings using passwords, controlling when people can join the meeting or controlling who is allowed to share their screens. Think about who and how you share the meeting ID or password.
You should make these choices before you start the meeting and consider providing employees with clear advice on which features to use and how.
Are you aware of phishing risks?
Many of us are aware of the signs of phishing emails or texts, but would you know what to look out for in a video chat? The ‘live chat feature’ can be used by malicious people to spread phishing messages. Be vigilant. Don’t click on links or attachments you were not expecting or from meeting attendees you do not recognise.
Have you checked your organisation’s policy?
Whilst you may have a preferred app to keep in touch with your friends and family, you should check to see which tool your organisation has chosen to use. Organisations should select a video conferencing platform that matches their policies.
Have you ensured all software is up-to-date?
One of the most effective security measures you can take is to keep all your software up-to-date, and video conferencing software is no exception. If you have installed a video conferencing app, keep it up to date by applying all available software updates regularly. Your organisation may well have configured your equipment to do this automatically. If you access a video conferencing service via a web browser, then make sure the browser is kept up to date too.
Is this still the right tool for the job?
In a time of crisis, decisions are often made quickly in order to get the job done. But in the long run, circumstances can change and the risk balance case might look different. There is no reason to remain committed to using a particular tool or service forever just because you used it in an emergency. Re-visit your decision when you eventually have time and resources to do so.
Ian Hulme is Director of Regulatory Assurance at the ICO.
Latest News from
Information Commissioner's Office
Statement on the publication of ICO guidance to businesses collecting personal data for contact tracing03/07/2020 09:10:00
Statement from Deputy Chief Executive Paul Arnold as the ICO publishes initial guidance for businesses asked to record and maintain personal data of customers, staff and visitors in support of the test and trace scheme.
UK regulators join forces to ensure online services work well for consumers and businesses02/07/2020 12:20:00
The Competition and Markets Authority (CMA), Information Commissioner’s Office (ICO) and Ofcom have set up a new forum to help ensure online services work well for consumers and businesses in the UK.
ICO statement on the Competition and Markets Authority’s market study01/07/2020 16:38:00
ICO statement given on the Competition and Markets Authority’s market study.
ICO releases findings on the use of mobile phone extraction by police forces18/06/2020 14:33:00
The Information Commissioner’s Office (ICO) has released an investigation report into the use of mobile phone extraction (MPE) by police forces when conducting criminal investigations in England and Wales.
Statement in response to media enquiries about the Data Protection Impact Assessment for the NHSX’s trial of contact tracing app11/05/2020 09:15:00
An ICO spokesperson said: “We are reviewing the Data Protection Impact Assessment for NHSX’s pilot of its contact tracing app in the Isle of Wight.”
Blog: Information Commissioner sets out new priorities for UK data protection during COVID-19 and beyond06/05/2020 09:10:00
Blog posted by: Elizabeth Denham, Information Commissioner, 05 May 2020.
COVID-19 contact tracing: data protection expectations on app development05/05/2020 09:10:00
Information Commissioner Elizabeth Denham and Executive Director of Technology and Innovation Simon McDougall appeared before the Human Rights Joint Committee yesterday (4 May 2020).
Statement in response to details about an NHSX contact tracing app to help deal with the COVID-19 pandemic27/04/2020 09:10:00
Statement given recently (24 April 2020) in response to details about an NHSX contact tracing app to help deal with the COVID-19 pandemic.