IT Professional says “No” & Phil Bradley Responds

I was following a thread by Phil Bradley about Facebook and bosses and found this:

Charlie says this:

As an IT professional I believe it would be a short-sighted and risky to allow employees or contractors to even possibly exchange corporate/business information through an unaccountable service such as facebook.

For the following reasons:

* user submitted information to Facebook is stored in the US where there is no comprehensive data protection legislation.

* Facebook is a free service – what’s in it for them in the long run? What of intellectual property implications?

* Facebook applications are notorious for being security and privacy hazards, as well as being potential hazards to the security of a coprorate network

* Facebook are known not to delete user information even after accounts have been cancelled and numerous requests for deletion. Is this the kind of company with which businesses should store any kind of communications history?

And Phil responds brilliantly:

Interesting views Charlie – thanks for sharing them. To be honest, I don’t think anyone is really suggesting that sensitive corporate information should be shared across an open network, but equally that shouldn’t preclude its use in more general discussion.

NOT participating in Facebook doesn’t stop people talking about your organisation or things that are pertinent to that organisations business. To pretend that Facebook doesn’t exist and to ignore it is the equivalent of sticking your fingers in your ears and saying la la la.

People should of course be sensitive when it comes to making their data available but surely that again should not preclude the use of that or any other service? In fact, one could make the point that it’s more sensible to actively use the service, be aware of the dangers and limitations and work with them. A lack of understanding leads to far greater problems.

Facebook is indeed a free service. This is neither the time nor place to go into detail about the funding for Web 2.0 resources but in short – it makes its money by selling advertising. Tell me – if you have a concern over this aspect I can confidently expect that you don’t use Google either, since that works on the same financial model.

As an IT professional you’ll be fully aware of firewalls, how to block a virus and so on. Surely it’s the job of IT professionals to warn and educate their users regarding this and to ensure that they have put appropriate measures in place? To simply say ‘it’s dangerous – you can’t use it’ it to abrogate any responsibility, which I don’t regard as being particularly professional. Someone could use their work phone to ring their aunt in Australia – but we don’t ban the use of phones. I don’t regard this as a reasonable or indeed reasoned approach.