Planning your BYoD programme beyond device security
Any organisation either considering or revisiting their BYoD policy will primarily, and rightly, be considering the security-related issues surrounding BYoD. Securing corporate data and applications, and deciding which variant of Mobile Device Management (MDM) or Enterprise Mobility Management (EMM) software will best meet IT security requirements has been at the heart of most BYoD discussions for some time.
The MDM software has come a long way since 2011, when Gartner released its first MDM Magic Quadrant. Back then the “leaders” included Good, Mobileiron and Airwatch. Between 2012 and 2014 the market grew substantially, and a few joined the “leaders”; as of the latest 2016 report, the key players still included Mobileiron & Airwatch, closely followed by Blackberry (Blackberry acquired Good), Citrix and IBM.
The truth is that the software has matured. Most of the key vendors have comparable functionality, and whilst not widely accepted, the biggest real differentiator is now more about how an organisation implements and manages its MDM solution and policies, rather than the platform that it selected.
So, this article is going to place aside the MDM software debate and instead looks at a number of key, day-to-day financial, administrative and HR challenges that cause BYoD policies and ambitions to fail, and encourages organisations to look beyond security before progressing with their BYoD plans.
Why are you adopting BYoD?
Let’s be clear, BYoD is still a confused message, and information gleaned depends on who you talk to. Everyone has a different view of what it really means, and what can be achieved as a result of BYoD – and by everyone, we mean even within IT teams in each organisation, not just within different organisations.
There are arguments for cost savings, reduced IT support, improved employee satisfaction, increased productivity, and enhanced business continuity. Each has, from what we can see, a solid case for adoption, and an equally good case against. In practice, however, defining exactly what BYoD means in your organisation, and why you are considering deploying a BYoD strategy, is critical to avoid wasted efforts, resources, and employee confusion.
So, we would recommend starting with an honest appraisal of the premise for BYoD adoption. Is it employee driven? Does it relate to mobile phones, or is about having corporate email on personal tablets? Is it finance driven? If so, what assumptions or business case is the finance model based on? Is yours the type of organisation that always provided staff with mobiles to perform their role – what has changed?
Being able to clearly define where the demand or requirement really came from, and what benefits it will truly deliver to your organisation and employees, is critical. Just because a senior executive heard that company XYZ got rid of all their mobiles and went BYoD doesn’t mean it really happened that way, or, more importantly, was successful. This decision is not one to base on market or competitor hearsay, and in our experience, there is no free lunch on BYoD business case that is based purely on perceived finance grounds.
If your organisation currently pays for business mobile devices and airtime, and you’re moving to BYoD for financial cost savings, then it’s important to understand the real financial impact – not just on your bottom line, but on where the costs will actually go to. Assuming your people will still use phones, there will continue to be a cost, whether it is recognised on the budget line or not.
Will your organisation instead provide the employee with a stipend or allowance? Or will it allow for mobile charges to be reclaimed in expenses? Will you insist the employee uses a corporate SIM? Or, as some organisations are doing, are you simply mandating or enforcing BYoD with no expense or payment to the employee?
Depending on the model selected, the organisation may end up simply transferring its mobile costs from a central IT/mobile budget to a different and unclear expense budget. Or in some cases, it’s simply going to end up with costs being transferred to the end user (i.e. a pay cut). In many scenarios, removing the corporate airtime contract actually has the reverse effect, and drives everyone’s costs higher where expenses can be claimed, as the real price consumers pay can often be higher for a corporate traffic profile.
The only scenario that exists where the business financially benefits and the employee doesn’t lose is where the employee already has their own unlimited voice/data package on their smartphone, and they only ever make inclusive calls for business, and they simply want to give up their legacy mobile, and avoid using two phones – or where the business doesn’t already provide a phone. BYoD does have a clear model with tablets, where many users will have invested in the tablet personally, and this offers the business an opportunity to benefit from this investment at relatively low cost.
BYoD expenses policy
For organisations that elect to reimburse their BYoD users for business-related usage, a whole new range of issues present themselves. Administering employee expenses relating to BYOD is complex: determining business vs. personal cost; addressing VAT on charges; ensuring all employees accurately submit claims; and the lack of visibility for costs and itemised data to validate claims.
All of these issues will ultimately lead to greater administrative costs, which will often be hidden from view. It’s also likely that where employees are allowed to reclaim business usage, the cost of that usage will be materially more expensive than corporate-negotiated pricing.
Finally, if you are a UK based organisation then at the moment, whilst there is no income tax, national insurance or benefit in kind on corporate provided mobile devices and airtime, it’s a different story for reclaimed mobile expenses. Currently, if you simply reimburse employees for their mobile costs, or pay a fixed stipend or allowance, those payments are treated as taxable income. So, if you incur £100 of legitimate business costs on your mobile, then you’re going to get taxed on that £100 if you’re compliant in the treatment of those expenses.
Who really funds the device?
BYoD, (especially in the UK), often misses the critical issue that most consumer mobile devices are funded not by individuals, but by mobile phone networks as part of a long-term contract. If employees can reclaim the cost of airtime incurred (partially or fully), then it’s likely that the monthly network charge will include the cost of the device also.
For a typical UK smartphone user on an ‘unlimited’ bundle, this device cost will represent £15-£20 per month of a £35 bill – so unless the expense policy is well-structured, the business risks paying for the device, negating a significant financial BYoD benefit for the business.
Where the business mandates that a corporate SIM needs to be used in the device, then in many cases the device is going to be locked to a different network, and unless the user bought the device outright, they will have to continue paying their personal airtime agreement – so they possibly won’t be able to user their device with a corporate SIM, and with have little incentive to do so.
‘Out of bundle’ charges and recharges
Whilst ‘unlimited’ domestic plans work well for consumers, who prefer a fixed monthly cost, the ‘out of bundle’ (OoB) charges, which are applied for usage in excess of bundle limits, or for calls not included in the bundle, can be very expensive compared to a corporate contract.
Calls to international and non-geographic destinations, as well as roaming, (especially outside of the EU), can be as much as 10 times more expensive than with corporate-negotiated contracts. As a result, it does not take much OoB charging to drive costs back up.
Personal usage on corporate SIM
If you’re considering issuing corporate SIMs as a hybrid solution to address the cost issues with employee BYoD expense claims, it won’t be long before the issue of personal use becomes a real problem. Five years ago, the issue of personal usage was still largely focused on personal voice calls – today, it’s all about data consumption.
The average business email user with some browsing consumes about 250-500Mb of data per month. Personal usage drives this figure to between 1Gb and 2Gb for the typical user. However, where users have more consumer-focused devices (e.g. Apple/Samsung) and a quality 4G network, then usage in the 2Gb-5Gb range is common.
Corporate shared data tariffs are not built to support high volume average data consumption, and individual user high volume tariffs drive up the corporate mobile costs significantly. As a result, personal usage quickly starts to become a cost issue. For a corporate owned device, simply stating that personal usage is not allowed is one mechanism for dealing with this issue; however, you can’t tell a BYoD user that they can’t use their device for personal usage.
So, any BYoD policy that involves the use of a corporate SIM is going to need to have a clear set of BYoD policies that make sense, and some form of charging mechanism to enable users to consume more personal data, if they are going to be successful and avoid the corporate costs increasing significantly.
Damage, loss, repairs, and user support
The downside to touchscreen smartphones is that they are prone to damage, and cost a lot more to repair and replace than legacy phones. If an employee loses their device, or it is broken, who is responsible for its replacement or repair?
Most consumers are oblivious to the real cost of replacing their devices without network subsidy. The cost can often range from £300 to £600, and the employee simply may not be able to afford, or be willing, to replace the device immediately – a major issue for the business, especially if it is the user’s primary device. Establishing who is liable for repairs to devices damaged at work is also essential, to avoid future HR issues. If the damage is caused whilst performing work for the business, is the business liable?
Aside from the cost, it makes sense also to establish processes for managing repairs, possibly through a centralised service. The alternative is that users waste significant time (business time) arranging for repairs, and often they will be without a device during the repair. Having access to loan devices, reinstatement of email and company apps, and potentially a corporate streamlined repair service will all remove the impact of damage, loss, and repairs when they happen, or are needed.
Whilst the concept that employees will maintain and support their devices is, in theory, good for the business, the reality is that this burden will often be passed to an IT team as soon as there is a problem. Often, that IT team may not have the tools/knowledge to support the device. Alternatively, the employee may spend significant, unproductive time addressing the problem, leading to greater hidden cost.
As a result, some organisations are limiting the BYoD programme to a defined list of devices, which can: a) be supported if needed; and b) better comply with the device security requirements of the business.
Consider device rental models
It may be that the real issue to be addressed is that users want iPhones and high-end Android devices, but businesses simply don’t have the budget for £500+ devices. So, possibly the future lies in changing the finance model to a lease/rental model, where the business pays a flat monthly value, and the user can upgrade the monthly lease to support a higher value device. In effect, a similar model to business car allowances. This way, the business limits its mobile device expenditure to an affordable level, devices can be standardised to a supportable range of devices, and users can choose to upgrade, but spread the cost monthly. This model is also now being adopted with inclusive insurance, and end of life recycling, to reduce the monthly costs.
BYoD Strategy & Planning
Planning for BYoD requires businesses to look at the wider picture of how mobile telecoms are managed within their organisation. To be successful, we recommend that organisations develop a joined-up strategy for Mobile Device Lifecycle Management that brings together Finance, IT, Procurement, and HR departments. Without this approach, BYoD can easily create new security risks, employee dissatisfaction, and excess costs.
Utelize are a specialist provider of Managed Mobile Services and Procurement Services. We help businesses and public sector organisations to understand exactly how they use their mobile services and budget – and from this insight, we provide ongoing support to help our customers to:
- Proactively manage mobile services, devices, security and usage
- Significantly reduce mobile costs
- Reduce the burden of mobile administration and device support for their IT and Finance Teams
- Negotiate flexible and competitive terms from the telecoms market
- Understand the impact of wholesale and regulatory changes in the telecoms market
- Evaluate which mobile telecoms technologies and services can best support their business needs
To arrange a no-obligation meeting, contact us at firstname.lastname@example.org, or call us on 03300 240 444.
Get in touch
Got a question for Utelize, or want to arrange a discovery meeting or call?
Please feel free to call us on 03300 240 444, or complete the quick contact form below, and we’ll arrange a suitable time to talk.