But can they monitor your IMing at home?
Maybe.
Become a Patron of Ask Leo! and go ad-free!
You mentioned that you connect through your company’s server for email. Well, depending on what that really means, it’s quite possible that your IM conversation is traveling over the company’s equipment. For example if your company has you establish a VPN or Virtual Private Network connection to the corporate network in order to access your email, while you have that VPN connection established then it’s quite possible that your IM conversation is hitting the corporate servers, and possibly being logged.
On the other hand, if all you are doing is POP3 mail, or even better, web mail provided by your corporation, then it’s highly unlikely that you have a problem.
If you are concerned, I would take three steps, now:
- Use different IM accounts for your personal and business conversations. Keep the conversations to their appropriate topics – business or personal – and use only one at work, and the other at home. Don’t mix.
- In any case, but especially on your business account, don’t say anything you wouldn’t want your boss to read. Or his boss. Or the entire IT department.
- Connect to your company’s equipment from home only when you actually need it.
It’s a fine line between privacy and responsibility in any case, but the bottom line is that when using your company’s equipment they have every right to examine all the data thereon including your email, IM conversations, documents, browsing history and whatever else you might have.
It’s something that’s worth remembering next time you’re surfing the net over your lunch break.
Ask the IT department. They should be able to tell you what is going over the company equipment and how to make sure your personal stuff isn’t.
While on the surface it’s hard to disagree with that statement, it makes a couple of assumptions that I don’t really like.
1) Your IT department may not know. Or they may get it wrong. Depending on your company there may be several levels of competancy in the department (or incompetancy, if you’re cynical), and they might just think they know, guess, or get it wrong. Especially since it’s something that’s typically configured once by one person and ignored until needed, it’s not in front of them each day, so they don’t need to remember it every day.
2) They might lie. Unethical and as wrong as it is, there are companies out there who may choose to explicitly hide this information, for fear of not knowing whatever it is you are doing. The thinking might be that if you have to ask, you must have something to hide, so we better watch.
I’m not saying that 99% of all companies aren’t going to be honest and accurate – but if you work at that 1% that might not be, asking could be both missleading and problematic.
http://www.aimencrypt.com/ has information on how to encrypt AIM. It is probably possible to encrypt other protocols using similar methods, but I haven’t really looked into it. The certificates you can download from aimencrypt can be broken by someone who really knows what they’re doing, but should prevent 99% of IT people from seeing what you’re saying. If you want to be protected from 100% of the IT people, you need to generate your own certificate, which can be a complicated process. Of course, the encryption only protects against people watching your traffic as it goes over the network. If you’re IM-ing from a company-owned computer, you still need to keep your hard drive clean. Leo has several other articles about that.
I have a ? can we instant message not at home but in other placse?
how could i find some of past convos that ive had in the instant messaging?
If you encrypt your messages and they are watching you, then they’ll probably assume you’re up to something you shouldn’t be, which could cause problems later on. In any case, all they’d need to do would be to monitor your keystrokes and work and get your password.
Which reminds me- don’t ever use a password at work for something you wouldn’t want them to see.