A multinational organization allows its employees to access work email via personal smart devices. However, users are required to consent to the installation of mobile device management (MDM) software that will remotely wipe data in case of theft or other incidents.
Which of the following should the organization ensure in exchange for the employees' consent?
The organization should ensure that personal data on the device cannot be accessed and deleted by system administrators. This is crucial to maintain the privacy and trust of employees using their personal devices for work. Mobile Device Management (MDM) should focus solely on work-related data and actions to protect personal information from being accessed or wiped out by mistake or otherwise.
B is the right answer here
Why B?
Org allows its employees to access work email via personal smart devices. Once employee installs MDM there's a consideration for a 2nd work environment and only that from this environment should be wiped out not all of the data including personal one. Thus I think that B is the right answer. System Admins shouldn't access and delete employee's personal data.