top of page

What's your policy in relation to sending sexual images via text? (Asking for a friend)

Gary Hibberd

I ask because it happened to me once.


I was sat in a meeting, when my phone pinged that I had received a new text. When I left the meeting, I opened the message, only to see some VERY explicit images!

Man looking shocked.

Turns out, they were meant for her boyfriend... but she got the wrong Gary(!) 😳


You may be giggling at this point. But this is serious stuff.


I certainly didn't ask for the images. And what if it had been the other way round? If I had sent images 'accidentally' to the wrong person? What happens if that person is under sixteen?!


Now I've got you thinking, can I ask what your company policy is? Do you have one? Would you know what to do if this happened to you?


🚨Is it time to review your Security policies 🚨


People often think that Information Security Policies are all about technical controls, but in fact they're about setting out your expectations on what behaviour is and is not acceptable.


If you have HR policies then some of what I mention above might be in place. Or it might not. Have you checked?


In ISO27001 there is a requirement for a number of policies, but they don't tell you what they should contain (you can look at ISO27002 for some help there).


Having defined and written policies mean that you have consistency in how you will approach key areas of your business.


Here are some tips for writing better policies;


✅ Make them clear and concise - Aim for a 1 page policy for each topic.

✅ Write with the reader in mind - No jargon. No acronyms.

✅ Communicate them. Don't 'post' them on your intranet!


This last tip is crucial. Simply saying "Oh but we post them on the company intranet" isn't good enough. Yes, communicate where they can be found, but explain the context around them in your inductions, and remind people (regularly as part of your comms plan) why they're important.


Don't leave it to chance, and don't shy away from some of the topics which might seem a little 'icky', or uncomfortable to talk about.


On a personal level, you should consider the context in which the images were sent. Were they sent by accident? Are they unwanted advances?


This is a very delicate topic, and not one which many people want to consider. But it's important that you have these conversations with your teams AND with your family.


The one piece of advice I can give you is that you should seek advice from a trusted person. Talk through what you have been sent and then decide on the most appropriate next steps.


28 views

Recent Posts

See All
bottom of page