You are here

Workplace Cyber Surveillance: Rights and Obligations

Les conditions licites de la cybersurveillance du salarié
Published on
25 January 2018

Monitoring employee computers and emails is only legal if certain procedures are followed. While E.U. courts limit how businesses can monitor their employees, the application of such regulations remains under the control of each member state. What criteria have been selected to control cyber surveillance and why? 

Interview: We speak with Nathalie Devillier, a professor of law at Grenoble Ecole de Management.

Why is employee cyber surveillance allowed?

According to the laws that regulate the workplace, employers have the right to implement electronic monitoring. As we evolve in a world where e-reputations and cyberattacks are essential factors for business, employers must have this capacity.

However, the courts require companies to inform employees of any surveillance and the company's works council must also be consulted. In addition, employees must be informed of these measures via the company rules and regulations, an ethics charter or a guide for best practices before surveillance is implemented. Finally, if an employer decides to implement electronic monitoring, the company must declare the initiative to the CNIL and document all collected information.

What criteria must employers follow if they wish to monitor private electronic activity by employees?

The E.U. courts have set boundaries for such surveillance. States are required to ensure that any surveillance measures are reasonable and accompanied by procedural protective measures. Employers must first clearly inform the employee of any surveillance measures before implementing them.

The E.U. courts distinguish between the flow and content of communications. The more a surveillance method is invasive, the more it must be justified. The E.U. courts encourage employers to favor methods that are less invasive than direct access to content.

Companies must also explain the consequences for employees as well as how the collected data is used. The courts guarantee the protection of an employee's electronic communications if they have not previously been informed of surveillance measures. This forbids companies from accessing content without an employee's knowledge.

Cyber surveillance measures must be proportional to the goals of the employer… Could you explain this concept in greater detail?

According to the courts, consequences such as firing an employee for misconduct could be considered a disproportionate result if the employee was not informed of surveillance measures in advance. In France, all emails written from work locations during work hours are assumed to be professional emails. The same goes for professional mobiles, folders created on a computer or data stored on a USB key.

If the concept of loyalty is respected, an employer can check the content of messages written by an employee in order to ensure there are no secret encryptions or that he or she is not playing games online or using Facebook. In terms of workplace regulations, laws concerning cyber surveillance are first oriented towards protecting the security of the employer.

What about the example of sending an email from work using a "personal" label?

By definition, this is a personal communication and in theory the employee is protected. But according to the E.U. courts, the employer can anticipate the right to open such personal emails by using the company rules and regulations. The need to control an employee's activity in such a case must once again be balanced in terms of the goals and means used for monitoring.

The analysis of social network usage by employees is rather vague...

In this particular case, there are contradictory legal guidelines. In the framework of using social networks for personal reasons (with family and friends for example), workplace laws and regulations are faced with a difficulty if someone expresses an opinion about their company in private. There's some discord between the protection of freedom of speech and the diffamation of one's company.

The courts have published three diverging opinions on these situations and therefore judges are left to themselves to decide the nature of a comment. That means being able to decide if a post is private or public. And if it is considered public, is it diffamatory. There is still work to be done to clarify this issue.


A general regulation for the protection of personal data

On May 25th, 2018, a general regulation will be implemented to protect personal data. The fruit of 10 years of negotiations on the topic of cyber surveillance at work and the right to access data, this regulation confirms that member states can follow their own national legislative measures. However, companies must also comply with European regulations.

Therefore, any employee data that is collected must be tied to professional activities. Some important points in European regulations: a company must inform employees of what data will be collected; a company must inform employees that they have the right to oppose these measures if they have valid reasons; a company must ensure the protection of personal data when designing these methods, including in particular a delegate in charge of data protection who will work with the IT department. For sensitive information, companies must carry out an impact study. They must also clarify who is responsible if digital equipment is stolen or lost (a 72 hour deadline exists to report such loss of equipment) or if there is a cyberattack.

Companies must all protect an individual's health-related data such as information that might be collected during a meeting with the workplace doctor. This is to ensure such data will not be sold to companies in sectors such as health insurance.

On the same subject

  • Rentrée virtuelle à GEM : « dessine ton avatar, je te dirai qui tu es »
    Published on 15 September 2020

    Virtual Reality 2020 Back-To-School Challenge

    On Monday September 14th, 700 first year students of the Masters in Management (Grande Ecole Program) at Grenoble Ecole de Management came together, in the main auditorium of its new digital Virbela campus created by Laval Virtual. No masks, no gel...

  • Vers des notations financières responsables et durables
    Published on 14 September 2020

    Sustainability in credit ratings

    The importance of environmental and social governance (ESG) has grown rapidly over the past years. As a result, investor demand for ESG information has also grown. How are companies and credit ratings adapting to this evolution?

  • Published on 08 September 2020

    The GEM New School year in Five

    Grenoble Ecole de Management (GEM) stretches the boundaries of technology to provide an immersive and human experience for its new students. The transition to a fully ecological and zero waste school continues to be at the heart of all our...

  • Published on 16 September 2020

    Les enjeux d’une rentrée 100 % phygitale à GEM

    Grenoble Ecole de Management mise sur l’agilité et la sécurité pour la rentrée scolaire 2020/2021. Jusqu’en décembre, les cours en distanciel seront articulés par cycles flexibles de deux mois, au terme desquels un nouvel arbitrage devrait être posé...

  • Infox : comment se prémunir des fake news ?
    Published on 17 July 2020

    How to recognize fake news?

    In times of crisis, fake news can take on unprecedented proportions as seen during the Covid-19 epidemic. How can you sort fact from fiction and help promote the spread of useful, factual information?

  • Un nouveau Campus de GEM à Paris
    Published on 16 June 2020

    Paris: A New Campus for GEM

    Grenoble Ecole de Management (GEM) has been located in Paris since 2014. A conclusive experience that has led to a more ambitious investment, with the opening of our new Paris campus in January 2020. The new campus located at 96 rue Didot (in the...

  • Le dilemme de la consommation énergétique des solutions digitales
    Published on 16 March 2020

    The dilemma of digitalization versus energy consumption

    The growth of digital technology has created a real revolution in services and opportunities for business. Yet this opportunity also has a cost in terms of energy… How can we balance energy consumption and digitalization?

  • Le dilemme de la consommation énergétique des solutions digitales
    Published on 16 March 2020

    Le dilemme de la consommation énergétique des solutions digitales

    La numérisation du secteur de l'énergie constitue une évolution majeure. Toutefois, l'expérience des crypto-monnaies et du Bitcoin en particulier, soulève des questions sur la consommation d'énergie additionnelle, associée à la numérisation. Cette...

  • Lorsque le numérique réinvente les métiers de l’audit financier
    Published on 18 February 2020

    The digital (r)evolution is reinventing the world of financial audits

    The digital revolution has impacted all sectors. In the field of auditing, new digital technology is reinventing auditing services and processes.

  • Service Freemium : lorsque la qualité fait la différence
    Published on 20 January 2020

    Freemium offers: quality the key to converting free users?

    Free digital services have become so commonplace that converting users to premium offers has become a major challenge for many digital companies. New research highlights quality as a key factor in successfully implementing a freemium strategy.

  • Est-ce la mort annoncée de la « fast fashion » ?
    Published on 20 January 2020

    Is “fast fashion” coming to an end?

    H&M, Zara, Forever 21, Gap, Bershka… Fast fashion brands are recognizable around the world. Despite representing 10-20% of the global fashion market, is this business model coming to an end?

  • Service Freemium : lorsque la qualité fait la différence
    Published on 20 January 2020

    Service Freemium : lorsque la qualité fait la différence

    Des recherches récentes soulignent l’importance de la perception des consommateurs dans le succès d’une stratégie de service « Freemium » (gratuit + premium).

  • Est-ce la mort annoncée de la « fast fashion » ?
    Published on 20 January 2020

    Fast fashion : la mort annoncée ?

    Le modèle économique low-cost, porté par quelques mastodontes du prêt-à-porter, s’essouffle-t-il au profit d’une mode plus « durable » ?

  • Les MOOCs géopolitiques de GEM ré-accrédités EOCCS
    Published on 15 October 2019

    GEM’s Geopolitical MOOCs re-accredited EOCCS

    Grenoble Ecole de Management’s (GEM) online training program « Global Studies: International Relations and World Politics » renews its EOCCS (EFMD Online Course Certification System) accreditation, a guarantee of quality awarded by the EFMD....

  • Des catalogues digitaux enrichis… Pour quoi faire ?
    Published on 16 September 2019

    Digitally enhanced catalogs… A winning promise?

    3D images, videos, detailed product files… Digitally enhanced catalogs offer a new, trendy marketing tool. Yet research confirms that such enhancements aren’t necessarily a worthy investment.

  • Published on 22 May 2019

    Climat mondial des affaires : récession en 2020 aux Etats-Unis ?

    Cet article est tiré de la dernière enquête Duke University–Grenoble École de Management qui mesure chaque trimestre, depuis plus de 20 ans, le climat des affaires tel qu’il est perçu par les responsables financiers des entreprises à travers le...

  • Comment gagner en valeur en co-créant avec ses clients ?
    Published on 15 April 2019

    How to increase value by co-creating with customers?

    Co-creating new services and products with customers enables companies to better match customer expectations and increase the success of their offers. With the advent of digital technology, the co-creation process has become all the more accessible...

  • Published on 25 March 2019

    Digital jobs: leading by example

    With two women in charge of its big data and information systems programs, Grenoble Ecole de Management seeks to lead by example and help break down barriers to women in the digital sector.

  • Margaux Raab et Hugo Avale, Fondateurs de neojobs
    Published on 25 February 2019

    Agility: the first key to entrepreneurship

    The co-founders of neojobs share first hand advice drawn from their startup experience. And behind all of their advice lies the importance of agility for any entrepreneurial project.

  • Les femmes et les métiers du numérique
    Published on 25 February 2019

    Women in a digital world

    The Grenoble Business Review continues its series on women in the digital world. We speak with Charlotte and Jalila, both of whom entered and found their place in a digital world often perceived as being open only to men.

  • Federico Pigni a propos de Digital Twins dans une interview accordée au canal Xerfi.
    Published on 14 February 2019

    Why are Digital Twins becoming a business imperative?

    What are these custom and very specific types of virtual simulations and how can they open up a multitude of new opportunities for us?

  • Published on 24 January 2019

    Women and digital jobs: a love-hate affaire?

    The digital sector is booming, yet only 16% of technical jobs are filled by women. As a recent graduate of GEM’s Advanced Master’s in Big Data, Zineb Bennis shares her positive experience in the world of data science.

  • Michel Albouy, professeur de finance à GEM
    Published on 21 December 2018

    France implements an important change for its income tax

    On January 1, 2019, all French residents will begin paying income tax on a monthly basis. Discover the details of this change.

  • les fondamentaux pour bien gérer son marketing personnel.
    Published on 12 July 2018

    The fundamentals of personal marketing

    Successful personal marketing is an art. How can you go beyond compulsive tweeting or an excessive use of social networks in order to create a solid strategy to build and maintain your e-reputation?

  • Chirag Patel et Christophe Haon
    Published on 18 May 2018

    Research: Retail Website Performance, to Outsource or not to Outsource?

    To improve sales, retail websites focus on personalizing their web pages and increasing their influence on social networks. To achieve these goals, should they rely on internal resources or call on external service providers? A study of 105 U.S....

  • Nathalie Devillier, professeure de droit, à Grenoble Ecole de Management
    Published on 26 April 2018

    General Data Protection Regulation Increases Company Responsibility

    New European regulations on data protection will increase the rights and privacy of internet users in Europe. However, much of the burden of this increased protection will fall on companies. How can businesses prepare for this change?

  • Pourquoi les DRH doivent-elles se saisir du digital ?
    Published on 26 March 2018

    Why Is the Digital Revolution Essential for HR?

    The digital revolution is impacting all areas of business. While HR are particularly affected by this change, it’s an opportunity for them to focus their efforts on the “employee experience”.

  • paiement mobile
    Published on 26 March 2018

    How to Encourage User Adoption of Mobile Payment Options?

    Despite the convenience of mobile payment technology, customer adoption of this new technology is not a given. How can companies build on previous internet experience to facilitate this transition?

  • Must the U.S. Lead the Digital Revolution?
    Published on 22 February 2018

    Must the U.S. Lead the Digital Revolution?

    As the digital revolution unfolds, the U.S. and Silicon Valley have so far led the march. What role can Europe play in this major evolution?

  • Published on 18 January 2018

    Technology Sourcing: How to Optimize Web Performance?

    To increase the performance of retail websites, companies should explore both internal tech development and outsourced tech services. New research confirms the advantage of mixing technology sources.

  • Les conditions licites de la cybersurveillance du salarié
    Published on 25 January 2018

    Cybersurveillance : Quels droits et obligations pour l’employeur (et réciproquement) ?

    La Cour européenne des droits de l’homme impose des limites au contrôle des communications électroniques par l’employeur, qui reste régi par chaque Etat membre.

  • Caroline Cuny, GEM
    Published on 14 December 2017

    Going Digital to Improve In-Store Customer Relations

    How can digital technology help companies improve a customer’s shopping experience? We look at emerging trends such as artificial intelligence, facial recognition and olfactive marketing.

  • Published on 17 June 2017

    Nanovalor: a Platform to Evaluate the Value of New Tech

    Emerging technology can impact society and the economy in a variety of ways. Nanovalor creates a platform to analyze and learn about the value of new tech.

  • Published on 18 June 2017

    Company Nurseries: Improving Performance and Quality of Life at Work

    Private nurseries provide many benefits for companies and employees. A win-win situation that is becoming all the more popular.

  • Une quarantaine de collaborateurs Ubisoft en France sont issus de Grenoble Ecole de Management
    Published on 15 May 2017

    Recruitment: How Does Ubisoft Rely on Its Alumni Employees?

    Alumni from various schools can be a precious asset for companies to build connections with potential recruits.

  • Cybersécurité : prévenir les risques spécifiques aux TPE/PME
    Published on 17 May 2017

    Cybersecurity: the Challenge for SMEs

    SMEs are a prime target for cybercriminals. Training remains the best defense against such threats.

  • Research: Safety at Work in the Construction Industry
    Published on 20 April 2017

    Safety at Work in the Construction Industry

    A recent study of safety at work in the construction industry provides insights to understand the evolution (and uberization) of work and potential safety risks.

  • Gazi Islam, professor of business administration at Grenoble Ecole de Management.
    Published on 20 March 2017

    Is It Time to Work on the Weekend?

    How are markets and capital using new economic models to eat away at our free time on weekends? Gazi Islam, a researcher and professor at Grenoble Ecole de Management, studies individual and organizational work experiences. He recently looked at how...

  • research on Contextual Television Advertising
    Published on 28 February 2017

    Research: Questioning the Effectiveness of Contextual Television Advertising

    As businesses and marketing go digital, companies have to track the effectiveness of their advertising across many channels. The growth of online transactions has made website conversions an essential factor for many businesses. Thanks to detailed...

  • research on Contextual Television Advertising
    Published on 28 February 2017

    Recherche : Quelle efficacité pour la publicité contextuelle à la télévision ?

    Du fait de la digitalisation de leurs activités économiques et marketing, les entreprises se préoccupent de plus en plus de l’efficacité de leurs campagnes publicitaires. Le taux de conversion, mesuré comme le nombre de transactions en ligne par...

  • Gazi Islam, professor of business administration at Grenoble Ecole de Management.
    Published on 20 March 2017

    Quand le temps libre se réduit au profit du travail et du capital

    Gazi Islam démontre que la colonisation de l’espace de loisirs par le travail crée les conditions sociales et psychologiques permettant au travail de se faire.

  • Comment se prémunir de l’infobésité
    Published on 10 January 2017

    How to Avoid an Information Overload?

    You cannot multi-task. Prioritizing is the key to efficiency.

  • Published on 09 January 2017

    Bosses Without Power: the Efficiency of Democratic Company Governance

    A worker cooperative where employees poke fun at their bosses? A look at highly democratic governance structure.

  • Comment se prémunir de l’infobésité
    Published on 10 January 2017

    Infobésité : comment s'en prémunir ?

    La surcharge d’informations numériques appauvrit notre mental, nous exposant au burnout. La chaire des Talents de la transformation digitale édite un guide de bonnes pratiques

  • Published on 09 January 2017

    Les chefs sans pouvoir : condition d’efficacité d’une organisation ?

    Les leviers d’une gouvernance démocratique efficace expliqués par S. Jaumier, chercheur à Grenoble Ecole de Management, qui a conduit son étude en s'immergeant dans une SCOP.

  • Published on 08 December 2016

    Does a Country’s Culture Influence the Use of Lean Production Systems?

    With globalization, companies have been forced to expand across borders. As a result, they have to check the validity of their management theories and tools when applied to various cultural contexts. Laurent Rannaz, president of Caterpillar France,...

  • Published on 06 December 2016

    Uberization Can Also Mean Destruction

    An entire portion of the sharing economy is enabled by “uberized” work forces. Unfortunately, the reality behind uberized work is in fact Taylorism 2.0! We speak with Thibault Daudigeos and Vincent Pasquier who highlight the limits of the sharing...

  • Published on 08 December 2016

    Systèmes de production et culture locale font-ils bon ménage ?

    Les fondamentaux culturels d'un pays influent-ils sur la performance d’un système de production, et selon quels critères ? Dans le cadre d’une thèse (DBA) soutenue à GEM, Laurent Rannaz, Président de Caterpillar France, dévoile les ressorts du...

  • Published on 06 December 2016

    L’uberisation est également une force destructrice

    Un pan de l’économie dite “collaborative” est porteur d’une uberisation du travail. Or, la réalité de la plupart des emplois uberisés, c’est surtout celle d’un taylorisme 2.0 ! Thibault Daudigeos, professeur associé au Département Hommes,...

  • Published on 13 September 2016

    Dans les entrailles de Pokémon Go

    De l’utilisation abusive des datas collectées à la constitution d’un algorithme capable de prédire le comportement des utilisateurs, Nathalie Devillier met en lumière l’opacité de l’application Pokémon Go. Une technologie qui attise les...

  • Federico Pigni, Professor at Grenoble Ecole de Management
    Published on 01 July 2016

    Research: Creating Value from Digital Data Streams

    The big data era is upon us. Startups, major companies, organizations and governments are all rushing to extract essential insights from big data. Yet in doing so, many have overlooked the potential value of the digital data streams (DDS) that make...

  • Federico Pigni, Professor at Grenoble Ecole de Management
    Published on 01 July 2016

    Recherche : Le big data temps réel, une nouvelle source de création de valeur

    Enregistrés et analysés en quasi temps réel grâce aux progrès de la technologie, les flux de données du big data donnent naissance à de nouveaux services créateurs de valeur. Une étude portant sur 171 initiatives du monde entier décrypte la logique...

  • Published on 30 June 2016

    Grenoble Ecole de Management rejoint l’International Telecommunication Union (ITU) de l'ONU

    Grenoble Ecole de Management devient la première école de management dans le monde, et le premier établissement d'enseignement supérieur en France à rejoindre l’International Telecommunication Union (ITU), agence spécialisée des Nations Unies basée...

  • Published on 30 June 2016

    Joining the UN’s International Telecommunication Union (ITU)

    Grenoble Ecole de Management becomes the first Business School in the world, and the first higher education institution in France to join the prestigious International Telecommunication Union (ITU), the United Nations specialized agency based in...

  • Published on 27 June 2016

    European CFOs are against Brexit: new Global Business Outlook survey reveals

    European CFOs are overwhelmingly against a British exit from the European Union, the latest round of the Global Business Outlook Survey reveals. More than 75 percent believe it is good for the U.K. to remain in the European Union, and a like number...

  • Research: the impact of performance evaluations on an individual's network.
    Published on 22 April 2016

    Research: Positive Performance Evaluations Help Employees Develop Internal Networks

    Interactions are an essential part of any organization. Whether it is receiving help from colleagues or gaining access to crucial information, developing a strong internal network makes it easier for an employee to get things done. This latest study...

  • Research: the impact of performance evaluations on an individual's network.
    Published on 22 April 2016

    Recherche : Les salariés reconnus font prospérer leur réseau interne

    Un salarié dont le niveau de performance est reconnu par ses managers étend son réseau de contacts au sein de son entreprise et l'exploite davantage. Dans le cas contraire, il réduit le nombre de ses contacts. C'est la conclusion d'une étude sur 150...

  • websites such as TripAdvisor have given consumers the power to impact a company's image.
    Published on 22 March 2016

    TripAdvisor: How Companies React to Negative Ratings

    The world wide web has revolutionized the hotel, restaurant and other travel-related industries. From online bookings to customer ratings, companies have to learn how to operate in this new environment. While an organization's market identity used...

  • websites such as TripAdvisor have given consumers the power to impact a company's image.
    Published on 22 March 2016

    Recherche : TripAdvisor ou l’irrépressible montée du pouvoir des consommateurs

    A travers TripAdvisor, les clients ont une influence croissante sur la réputation des hôtels et ces derniers répondent de plus en plus aux avis défavorables. C'est ce que montre une étude menée entre 2002 et 2012 sur les avis des clients de 600...

  • Research: Creating Visitor Engagement Through Music
    Published on 29 February 2016

    Research: Creating Visitor Engagement Through Music

    Digital communications have created an information overload for customers. To stand out on the world wide web, companies have to offer clients a high-impact experience. When used properly, music provides a simple yet effective means of creating a...

  • -	Projet CHESS – Connected Health Early Stage Researcher Support System
    Published on 08 September 2015

    Connected Health: the New Health Management Models

    Save lives and improve quality of living during and after treatment in the most cost-effective way: the promises of connected health are opening encouraging horizons for the future of healthcare systems. Connected health will contribute to creating...

  • -	Projet CHESS – Connected Health Early Stage Researcher Support System
    Published on 08 September 2015

    Santé connectée : les nouveaux modèles de management de la santé

    Sauver des vies, améliorer la qualité de vie pendant et après le traitement, le tout au meilleur prix : les promesses de la santé connectée ouvrent des horizons encourageants pour l’avenir des systèmes de santé. Elle contribuera à créer un...

  • Published on 16 July 2015

    Research: Unraveling the Link Between Managerial Risk-Taking and Innovation - the Mediating Role of a Risk-Taking Climate

    Innovation has become a crucial factor for companies looking to maintain their competitive advantage. Yet creating innovative ideas requires a certain level of risk-taking. While research on this subject has focused primarily on risk-taking at one...

  • Published on 07 November 2014

    Research : Digitization, Changing How We Work and Coordinate Projects

    All of us use digital tools and objects that can now be shared and combined in a variety of ways. This change has profoundly influenced the organization of work with projects being divided according to specialization and geographical location.

  • Published on 07 November 2014

    Recherche : Effets spéciaux pour le cinéma, l’art de faire collaborer 60 métiers

    Comment les spécialistes des effets spéciaux collaborent-ils sur un même film alors qu’ils appartiennent à 60 métiers différents et sont répartis dans le monde entier ? Deux chercheurs de GEM ont étudié les mécanismes de coordination qui structurent...