Important information regarding cookies
Social Media – How to Protect Your Business
Social media has permeated almost every aspect of our daily lives, and many businesses are using sites such as Facebook, Twitter and LinkedIn for marketing, advertising or recruiting. However, social media can create huge challenges as well as opportunities for businesses. Claire McDermott and Barry Connolly of Flynn O’Driscoll provide a legal perspective on the internal and external social media challenges facing businesses.
When it comes to social media, the first priority for most employers should be to implement a social media policy to protect their business and to prevent costly misunderstandings at a later date.
Employers should have a clear and straightforward policy setting out the conduct they expect from their employees when interacting on social media sites where it is clear that the employee is working for them.
There are several perspectives from which an employer must consider the risks surrounding social media, and these should all be covered in your social media policy.
Protecting your Brand
How you manage access to company social media sites, and the content to be included therein, should be monitored and controlled to ensure that your company’s reputation is protected at all times. Content to be uploaded on social media in the name of the company should be signed off by management before it is published. Passwords to access social media should also be strictly controlled, and employment contracts should provide for the return of all login details along with all company property upon termination of employment. Once anything is published on social media it is instant and out there in the public domain for all to see. So it’s critical that the appropriate people sign off on your social media content before it is published – and while it is still within your control.
Managing Company Contacts and Client Lists
Your company needs to put in place some contractual provisions to ensure that your company’s client lists and business contacts remain your property. The social media policy should clarify that:
- the employee is not entitled to add company contacts to their personal social media accounts
- client contacts are the property of the company and any social media accounts used by the employee for company business are the property of the company, to be returned upon termination of employment.
Companies should, in the normal course, consider appropriate contractual restrictions on employees post-termination, such as non-compete and non-solicitation provisions.
It is quite common for us to be consulted by an employer client seeking advice having heard, after a former sales employee has joined a competitor, that most of its client contacts have been contacted via LinkedIn or other sites suggesting meetings from the employee in their new role.
Studies suggest that employees are spending upward of an hour a day on social media sites, whether through their own devices, such as smart phones or tablets, or by accessing social media sites on their work computers. The company should, where appropriate, block – or at least restrict – access to social media sites on their own network. In relation to employees’ own devices, the company’s social media policy should make it clear that employees are prohibited, during working hours, from accessing social media and/or using their mobile devices.
The possibility of disciplinary issues arising through inappropriate use of social media is far reaching and very serious.
Employers should ensure that their social media policy is linked to their disciplinary policy so that any breach of the social media policy, which could damage the company reputation, can be dealt with accordingly. If you do not have a social media policy, Irish employment tribunals have held that employees cannot be dismissed or disciplined for misuse of social media.
Managing External Risks
Although it is important to ensure the proper use of social media inside a company, there are still several legal risks associated with social media from outside of the company. Unfortunately, in these cases, you are likely to have less direct control (if any) of the use of such social media. However, there are several actions a company can take in order to ensure that it protects itself from such risks:
(a) Are there any restrictions on what can be published on the company’s social media account?
(b) Who will own any intellectual property on the social media account?
(c) What terms apply to the processing of any personal data collected through a social media account?
For example, Facebook has separate guidelines for companies using a Facebook Page to advertise or promote their brand. These include specific requirements on Page names, advertising on a Page, organising of promotions through a Page and an obligation to comply with data protection legislation where any personal data from users is collected through Facebook.
- Beware of User-Generated Content – Prepare to take-down if necessary
Whether you have a presence on a social media platform or facilitate user contributions on your own website, it is imperative that you are aware of the possible dangers associated with users posting content online. Possible risks can range from causing damage to a brand’s reputation, breaching intellectual property rights or defaming a third party. Online forums, hosted or otherwise arranged by the company, should be moderated to ensure that content does not infringe another party’s rights. Under Irish and European Law, such companies that essentially act as hosts for such content (intermediaries) may be equally liable for it, unless they act expeditiously to remove or disable access to it, once they are made aware that it is unlawful.
In these circumstances, it is essential that the company have in place a clear policy and procedure for removing such unlawful content. In many cases, the third-party social media platform will have their own policy. However, where possible, the company should also act to remove any such content in order to avoid any damage being associated with the company.
There may also be circumstances where the company will want to have certain content removed where it infringes its own rights. In these circumstances, the first response is usually to follow the take-down procedure of the relevant social media platform. Unfortunately, these procedures are not always clear to follow. However, before making any formal complaint, it is usually more efficient to go through a social media platform’s own take-down policy in advance. It can save costs in having to consult lawyers and can (sometimes) prove to be an effective way of tackling infringement of the company’s rights online.
- Protect the Brand – now and for the future
There is no doubt that, for many businesses, social media can often be the most effective marketing tool available to them. However, this presence should be protected. Rights in a company’s brand can become extremely valuable and social media should be seen as another avenue to enhance those rights.
Unfortunately, social media allows others to easily piggyback on a brand’s value in the online world. It is important that the company is therefore vigilant in ensuring its brand is protected online. Where an online presence may be valuable to a company, it should always register on a number of the most popular social media platforms, in order to at least prevent others from taking the name or establishing a profile that may be confusingly similar to that of the company’s brand. Whereas certain social media platforms may have their own view on “reserving” such profiles, it is nevertheless essential to create some type of online placeholder in order to prevent others from passing off on the company’s brand.
SMEs should feel confident about embracing social media throughout the business. It is undoubtedly a powerful tool that can give a company more reach than it has ever had before. However, when it comes to social media, companies should look both inside the company and outside of it in order to ensure that it is protected.
Written by: Claire McDermott & Barry Connolly, Flynn O'Driscoll – Business Lawyers
Please be aware that all of the views expressed in this Blog are purely the personal views of the authors and commentators (including those working for AIB as members of the AIB website team or in any other capacity) and are based on their personal experiences and knowledge at the time of writing.
Some of the links above bring you to external websites. Your use of an external website is subject to the terms of that site.
Allied Irish Banks, p.l.c. is regulated by the Central Bank of Ireland. Copyright Allied Irish Banks, p.l.c. 1995.