Re: Corporate policy question - Personal Laptops

On Fri, Sep 12, 2008 at 2:36 PM, Svetoslav P. Chukov
<svetoslav.chukov@xxxxxxxxx> wrote:

On Thu, Sep 11, 2008 at 8:53 PM, Tom Yarrish <cdtdelta@xxxxxxxxx> wrote:

Hey all,
Needed some advice on a corporate policy issue. If an employee has a
personal laptop in the office, and that employee is terminated in the
process of a merger, can the company wipe the hard drive of the
personal computer before it's returned to that employee? Here's the
scenario:

Our company is going through a merger, and through the rounds of
"integration" of the two companies, employees that are let go from the
IT department are escorted out of the building immediately, and not
allowed to return. Their manager packs up their personal affects and
ships it to them. In one case, the employee had some personal laptops
in their office, and wants them back (obviously). Are we allowed to
wipe the hard drive of that personal laptop before giving it back to
the employee?

I'm trying to determine if this is even legal or not, so I'm not sure
where to look for advice.

Thanks ahead of time....



I would recommend you to contact your lawyer. The laptops are personal
and when they are allowed to be in that office then some man in charge
did allow that. But that laptops are personal so all the data
available on them is personal too. If you delete the laptop's data
then you may go in a legal nightmare and could be forced to compensate
the damages to the laptop's owner.

Assume the following situation:
The laptop contains some personal data as well as legally purchased
applications for about ($10 000). Also on that laptop are the personal
projects of the employee, that projects cost money, the owner of the
laptop worked on them in his/her spare time.

So, You wipe out the laptop, and then? You do damage to the laptop's
owner of about $10 000 + all the lost data.

I would recommend you to contact your lawyer...

Relevant Pages

  • Re: [Full-disclosure] Undisclosed breach at major US facility
    ... If the effects of HIPAA, SOx, GLBA et al could be measured in dollars, it has cost corporations millions of dollars in software, hardware and personnel expenses. ... A perfect example of the dichotomy between what should be and what is is the recent theft of a laptop with millions of VA records on it. ... Furthermore, I'm certain that the theft of the laptop never crossed the mind of the employee who took the records home or of his supervisors, who merely winked at the violation of policy, because they were more concerned about getting "extra" work out of the employee than they were about the potential loss of data should the laptop be stolen. ... When passwords finally go away, almost one-half of the security problem will be solved, simply because humans will no longer be making decisions about what constitutes a secure authentication methodology. ...
    (Full-Disclosure)
  • Re: Corporate policy question - Personal Laptops
    ... laptops before any wiping occurs. ... in which wiping a personal laptop known to have been connected to the ... Needed some advice on a corporate policy issue. ... and that employee is terminated in the ...
    (Security-Basics)
  • Re: Dial up question
    ... >>>restrict home PC or any other computer from making the same connection via ... >> 1) Employee takes laptop home, dials in to the Internet, allows other computers ...
    (microsoft.public.windowsxp.network_web)
  • Problem Installing XP Pro over W2K Pro
    ... I recently was laid off and took advantage of the offer to buy the laptop, ... etc. that I had used while an employee. ... I wanted to start over with Win XP Pro and, of course, ... I bought a full, retail copy of XP Pro, performed a 'full' install on the ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Corporate policy question - Personal Laptops
    ... Seriously your NDA should be your protection against the laptop and the ... "Everything that can fail, will fail. ... Corporate policy question - Personal Laptops ... and that employee is terminated in the process ...
    (Security-Basics)