Remote Work Policy
The constantly changing conditions, new needs, technological advancements, and increasing demands have led to the emergence of new forms of work provision.
A primary position among the new forms of work provision is occupied by Remote Work. This form of employment played a significant role, especially during the pandemic, with the Legislative Act of 11/03/2020, as a measure to prevent the spread of COVID-19, to limit it, and to ensure public health. Thus, if it is deemed necessary to impose emergency protection measures and for the duration of their application, it is provided by the Legislator that the employer may, by decision, determine that work for part or all of the staff, when the nature of the work allows it, can be performed through the system of remote work (telework). Beyond this, however, telework can be considered a new form of employment that provides flexibility for both the employee and the employer, while also contributing to the saving of energy and time. In our country, telework or remote work is provided for in Article 67 of Law 4808/2021.
Definitions/Abbreviations
Remote Work (Telework):
Remote work or telework is the provision of an employee’s dependent work remotely, whether part-time, full-time, rotational, or another form of employment. The provision of remote work (telework) is carried out using ICT (Information and Communication Technology).
ICT (Information and Communication Technology):
This refers to the set of technologies provided to GreenFence employees within the framework of the employment relationship, enabling them to deliver their services outside company premises.
Information:
The term information refers to data transferred through technological means and includes texts, images, and sound.
B.Y.O.D. (Bring Your Own Device):
Describes the use of personal device equipment in a professional context, which is widely applied in the provision of remote work. This capability is also provided for by Law 4807/2021.
Purpose of Policy
The purpose of this policy is to establish a management framework that ensures the safe use of portable devices and information security in accordance with the Information Security Management standard ISO27001:2013. Due to the nature of GreenFence's activities, it is essential that this policy is adhered to by each employee engaged in telework.
Η τήρηση της πολιτικής αυτής αποσκοπεί στην πρόληψη της διαρροής των πληροφοριών που μπορεί να αφορούν πελάτες ή συνεργάτες της εταιρείας και παράλληλα στην προστασία της ιδιωτικότητας των εργαζομένων που δουλεύουν εξ αποστάσεως. Ειδικότερα, η τηλεργασία καθιστά δυσδιάκριτα τα όρια μεταξύ σπιτιού και εργασίας. Η χρήση της τεχνολογίας ως μέσο εργασίας από το σπίτι επιτρέπει και μεγαλύτερη διείσδυση στον ιδιωτικό χώρο και χρόνο με αποτέλεσμα να τίθεται θέμα αμφισβήτησης της προστασίας της ιδιωτικότητας, των προσωπικών δεδομένων και του δικαιώματος στον ιδιωτικό βίο, πράγμα που θα μπορούσε να έχει αρνητικό αντίκτυπο στην ισορροπία μεταξύ της επαγγελματικής και της προσωπικής τους ζωής. Για το λόγο αυτό η εφαρμογή των κανόνων προστασίας δεδομένων προσωπικού χαρακτήρα είναι επιβεβλημένη. Συνεπώς, σκοπός της πολιτικής είναι η υλοποίηση της τηλεργασίας με τον ενδεδειγμένο τρόπο, τόσο για την ασφάλεια των πληροφοριών της εταιρείας και των πελατών της, όσο και για τον ίδιο τον εργαζόμενο και την προστασία της προσωπικής του ζωής.
Application
The Remote Work (Telework) Policy applies to those employees whose job positions are suitable for remote provision. This means it cannot be applied to all employees, as the physical presence of a significant part of GreenFence’s workforce is necessary for the execution of their duties. Additionally, remote work is implemented following a written agreement with the employer and is deemed necessary either due to the employee’s illness, for public health or safety reasons, or for convenience when the employee’s place of residence is far from the company’s facilities, to save time and energy.
Policy
GreenFence, recognizing the potential damage that remote work can cause to information security and employee privacy, and consequently to the company’s reliability and reputation, adopts a specific policy for managing remote work (telework).
Specifically, it adopts the following measures:
1. Avoidance of Password Storage: Temporary storage of passwords should be avoided. If storage is deemed necessary, it must be ensured that the device is protected with a password.
2. Protection of Devices Used for Telework: The device used for telework must be kept in a secure location when not in use to prevent theft.
3. Activation of Security Updates: All security updates for the operating system, application security, and anti-malware must be enabled.
4. B.Y.O.D. Policy: If an employee uses their own device (B.Y.O.D.) for remote work, the company is not allowed to interfere with parts of the personal device that are presumed to be used solely for private purposes. The ultimate goal of this policy is to distinguish between personal and professional use of the device and, specifically, to prevent the collection of data related to the employee’s family and private life. In the context of B.Y.O.D. usage, the following must be observed, among other things:
– Physical or logical separation of personal and professional parts of the device.
– Requirement to adhere to basic security measures, such as using antivirus software.
– Informing and sensitizing users/employees about the risks of improper use of devices.
– Prior approval from GreenFence Management for the use of personal equipment.
5. Training and Information: Educating and informing employees about the protection of personal data when using devices for telework.
Consequences of Non-Compliance
Non-compliance with the aforementioned policies can be detrimental to the reputation and reliability of GreenFence. Improper use of devices during remote work can lead to information leaks that may harm the interests of the Company, its clients and the privacy of the users themselves, especially when such leaks involve personal matters.
For this reason, if such an incident is detected, it is essential to report it to Management or the Compliance Officer without undue delay, to restore order. If you become aware of such a discrepancy, please contact us via email at kchristopoulou@greenfence.gr or by phone at 22990 42494.