Whilst we're all busy working away at securing our business data, ensuring we have a legitimate business reason for communicating with our clients and prospects - it has regularly crossed my mind how GDPR will affect the use of Smartphone Apps and the dissemination of the reams of data that these apps regularly collect about me.
I might sit at my desktop and choose not to accept cookies when I visit a website. I might choose to give or remove my consent to have marketing emails sent to me when asked by a company who is doing the right thing by GDPR standards. But where does that leave me as a private individual, when it comes to the exacting profile that I am creating on my smartphone and via Social Media?
As an organisation you should consider the seemingly harmless apps that your staff might be regularly using as part of their day to day business activities. As an example, in a survey conducted by the BMJ, over a third of NHS doctors who own a smartphone admitted to using app-based messaging (33.1%) and picture messaging (46%) to send patient-related clinical information to their colleagues.
As the article below outlines - 70% of smartphone apps share their data with third parties. I would urge you to take a read of this article, and take a close look at what apps are on your phone right now and really understand what information is being potentially harvested about you. Check your social platforms and revoke previous access you may have given via Facebook or Twitter etc, to apps you no longer use.
As a business, you need to understand what data and applications are in use by your staff, and make decisions around whether they are necessary and should continue to be used.
It's a complex path to full GDPR compliance as it is, but check that you are not inadvertently breaking any GDPR rules by not considering the potential pitfalls of smartphone usage within your business.
A recent study found that 70% of smartphone apps share data with 3rd party tracking companies. Many smartphone users install apps without considering the privacy aspects of the app and the permissions explicitly granted, such as access to the photo gallery or the ability to read your communications and capture your location history.