Corporate Device Usage Policy

Purpose

This policy defines the acceptable use standards and security requirements for all computing devices issued by Global Bank, including laptops, desktops, tablets, and corporate mobile phones. All employees and contractors who are issued a corporate device are bound by the terms of this policy.

Policy Reference: IT-DEV-003
Effective Date: 1 July 2024
Review Date: 1 July 2025
Applies To: All employees, contractors, and temporary staff issued with corporate devices

Device Issuance

Corporate devices are issued based on role requirements and approved by the employee's line manager during the onboarding process or through the IT Service Portal. Devices remain the property of Global Bank at all times and must be returned upon termination of employment, conclusion of contract, or when a replacement device is issued.

Acceptable Use

Permitted Use

• Performing authorised business activities related to your role at Global Bank.
• Limited personal use during breaks, provided it does not violate any other bank policy, compromise security, or interfere with work productivity.
• Accessing approved cloud services and applications through corporate credentials.

Prohibited Use

• Installing unapproved software (see Approved Software List, IT-DEV-001).
• Storing personal files, photographs, or media that consume significant storage or violate the bank's Code of Conduct.
• Connecting to unsecured or public Wi-Fi networks without an active VPN connection.
• Allowing any other person, including family members, to use the device.
• Disabling, uninstalling, or tampering with security software (antivirus, endpoint detection, encryption).
• Using the device for any illegal activity, including downloading copyrighted material.
• Connecting the device to personal printers, external networks, or non-approved peripherals.

Security Requirements

Physical Security

• Never leave your device unattended in public places, including cafes, airports, and hotel lobbies.
• When travelling, carry the device in your hand luggage at all times; do not place it in checked baggage.
• In the office, use a Kensington lock to secure your laptop to the docking station when leaving your desk for extended periods.
• At home, store the device in a secure location when not in use.
• Report any lost or stolen device immediately to the IT Service Desk and your line manager. See the IT Incident Reporting Procedure (IT-INC-001) for the reporting process.

Data Handling

• Do not store classified or restricted data on the local hard drive. Use approved network drives or cloud storage (SharePoint, OneDrive for Business).
• If local storage of sensitive data is temporarily required, ensure the data is deleted as soon as it has been transferred to the approved location.
• Do not transfer corporate data to personal devices, personal email accounts, or personal cloud storage services.

Monitoring and Compliance

Global Bank reserves the right to monitor, access, and audit all corporate devices at any time. Monitoring includes but is not limited to:

• Software inventory and compliance scanning
• Endpoint Detection and Response (EDR) telemetry
• Web browsing activity (via corporate proxy)
• USB device connection logs

Employees have no expectation of privacy when using corporate devices, in accordance with the bank's Employee Monitoring Policy (HR-MON-001).

Non-Compliance

Violations of this policy may result in:

• Temporary or permanent revocation of device privileges
• Remote wiping of the device
• Formal disciplinary action, up to and including termination of employment
• Referral to law enforcement where criminal activity is suspected

Contact

• IT Service Desk: servicedesk@globalbank.com | Ext. 2000
• IT Security Team: itsecurity@globalbank.com | Ext. 2200