What BYOD does
BYOD programs offer flexibility for employees, potentially boosting productivity and reducing hardware costs. However, they introduce significant security and compliance complexities. Without proper controls, corporate data can be vulnerable to loss, theft, or accidental disclosure. Microsoft Intune provides tools to manage BYOD, including App Protection Policies (APP) which enforce data loss prevention (DLP) rules within applications, and selective wipe capabilities to remove corporate data without deleting personal content. Conditional Access policies can further restrict access based on device health and user identity.
BYOD in Australian tenants today
In Australia, BYOD programs must be managed with a heightened awareness of regulatory obligations. The OAIC expects organisations to take reasonable steps to protect personal information, including data residing on employee-owned devices. This includes addressing risks associated with personal backups, family device sharing, and the potential for data breaches. APRA CPS 234 and CPS 230 also highlight the importance of data security and resilience, which are directly impacted by BYOD practices. Consideration should be given to MAM-without-enrolment scenarios to balance control with user experience, while remaining mindful of the Notifiable Data Breach scheme requirements.