BYOD

BYOD without privacy conflict.

Bring Your Own Device is reality in German SMBs. The challenge: how do you bring personal devices into your security strategy without intruding on employee privacy? Vyrex Mobile draws a clear line.

TRANSPARENZ

What the employer sees — and what they do not

Sichtbar

Vyrex sieht

  • Device name (assigned by the owner)
  • OS version and platform
  • Last check-in timestamp
  • Mobile risk score
  • Compliance status against company policies
Niemals

Vyrex sieht nicht

  • Installed apps or game progress
  • Browser history, messages, emails
  • Photos, videos, contacts
  • Location history (except voluntary incident mode)
  • Authentication data or stored passwords
HERAUSFORDERUNGEN

The five BYOD challenges

01

Employee acceptance

Classic MDM often fails due to employee resistance. No employee wants a management profile on their personal phone. Vyrex Mobile installs no profile and has no control over the device.

02

Privacy clarity

What data may an employer collect on a personal device? GDPR is clear: only what is necessary for the purpose. Vyrex Mobile collects exclusively security signals.

03

Visibility without control

IT teams need an overview of the security status of all devices accessing company resources — without having to manage those devices.

04

Enrollment overhead

MDM rollouts take weeks and tie up IT resources. Vyrex Mobile is enrolled with a QR code in under two minutes — no IT ticket, no profile configuration.

05

Compliance evidence

NIS-2 and ISO 27001 require evidence that mobile endpoints are included in risk management. Without enrollment, this evidence is not possible.

ANTWORT

What Vyrex Mobile delivers for BYOD

  • Enrollment without MDM profile: only the companion app, no management access
  • Clear GDPR-compliant privacy consent at enrollment
  • Security signals made visible without collecting personal data
  • Compliance reports show BYOD devices as a separate category
  • Edge pairing passively detects unenrolled BYOD devices in the LAN
  • Employees can withdraw enrollment and consent at any time
RECHT

Legal basis for BYOD

  • Vyrex Mobile is based on informed consent under Art. 7 GDPR — no deployment without active agreement.
  • The consent document explicitly lists which data is collected and who has access.
  • Employers have no access to personal device data — technically and contractually excluded.
  • A works agreement or company policy on BYOD usage is recommended — Vyrex provides a template.
FAQ

Häufige Fragen

Do I as an employee have to install the app?+

That depends on company policy. If your employer has defined BYOD enrollment as a prerequisite for accessing company resources, then yes. The consent itself is always voluntary — you can decline enrollment.

What happens when I change devices?+

The old device is marked as inactive in the portal. The new device must be enrolled again. Personal data from the old device is deleted after the defined retention period.

Can my employer remotely wipe my device?+

No. Vyrex Mobile has no remote wipe function. Device configurations are not changed by Vyrex. The voluntary device lock opt-in in incident mode is the only exception — and requires your active confirmation.

Does GDPR consent apply during probation?+

Yes. Consent is voluntary regardless of employment status. Employers may not impose negative consequences for declining enrollment where no contractual BYOD obligation exists.