BlogLegislating Social Privacy When Privileged Access is no longer a Privilege Information Governance in the Cloud |
RSS Feed
RSS Feed
Why You Need a Social Media Policy: A Case StudyMay 15, 2009Many companies are struggling with how best to integrate social media into their day-to-day business activities. Some have taken a Draconian position, forbidding employees from engaging in social networking and blocking access to sites like Facebook, MySpace, and Twitter. Some have fully embraced the concept and allow -- even encourage -- their employees to participate in the online social scene with all gusto. Others have taken the time to consider both the benefits and risks and have established rules for online engagement. The latter approach seems to be the exception. Upcoming Ponemon research will shed some light on that subject, but a recent situation at the New York Times illustrates what can happen when there is a disconnect between what an employer wants and what an employee believes. According to a story in the New York Observer, a number of Times reporters attending an internal staff meeting related to nytimes.com business strategy decided to tweet some of what went on in the meeting -- information Metro editor Jodi Rudoren, said should not be shared with outsiders. In an ironic twist, the Observer reports that the event took place the day before a Tmes training session entitled, "How Reporters & Editors Use Twitter." With the previous day's tweeting in mind, Times columnist Bill Keller opened the Twitter session by offering some pointed words, asking that Times employees use "common courtesy" before tweeting anything heard or overheard internally, saying that a "zone of trust" was needed if candor was to prevail. Let's learn from the Times. Leaving the security sensitive information to the best judgment of employees without first establishing clear boundaries and expectations, is a recipe for disaster. Social media can be a tremendously useful tool for many businesses, but as we privacy professionals should well know, the risks must first be understood and addressed with sound policies, education, and enforcement if we are to help maintain informational integrity. Posted by Mike Spinney at 9:38 amAdd Comment (1 comments) Comments |
Blogging using wireless and dial-in devices poses a significant threat that many have not addressed as a risk to their business. Check out the blog by blog account of attendees at shareholder meetings at the links below; eBay Annual Meeting of Stockholders from San Jose, California. April 2009 http://blog.auctionbytes.com/cgi-bin/blog/blog.pl?/comments/2009/4/1241017252.html Citi's Annual Investor Meeting April 2009 http://dealbreaker.com/2009/04/live-blogging-citis-annual-inv.php Live-Blogging the Wells Fargo-Wachovia Conference Call Oct 2008 http://blogs.wsj.com/deals/2008/10/03/live-blogging-the-wells-fargo-wachovia-conference-call/ (In The Wall Street Journal) . Some even have live screen shots as presented. This could easily turn into insider information when announcements are made that haven't yet hit the market! This takes the ability of disgruntled personnel/stockholders to new levels as they put their spin on meetings taking place and feed the detail to the outside world with inaccuracies, supposition and speculation! Now you know WHY YOU DO NEED a Social Media policy!