O365 Basic Mobility and Security Guidelines

Basic Mobility and Security or BMS will help protect SM Data on mobile devices especially when device is lost or breached. It will enforce password settings that are aligned with the Company policy and perform data wipe out in case the device was reported lost or breached. 

When enabled, users will be prompted to install Intune Company Portal from App Store or Google Play Store when using corporate account on mobile devices with apps such as Teams, Outlook, OneDrive, etc.



FAQs about Basic Mobility and Security
Question: What are the controls to be implemented for BMS? 

1. Mandatory PIN protection

2. A minimum PIN length of 6 digits

3. Minimum idle time before screen lockout

4. Full device deletion triggered remotely in case of loss or breach 

Question: Will installing the Intune Company Portal delete my phone data?

No, installing it will not delete your phone data.  

Question: Can it monitor device activity and data? 

The activity and contents of the mobile device will not be monitored. 

SM can never:

1. View browsing history on your device/s
   
2. See your personal emails, documents, contacts, or calendar
   
3. Access your passwords
   
4. View, edit or delete photos

SM may see:

1. Device model, serial number and operating system
   
2. Identify your device by name
   
3. Reset lost or stolen device to factory settings
   
4. View information collected by corporate apps and networks
   
5. See your full phone number
   
6. See all apps installed on your device
   
7. See the location of a lost device
   

Question: In case of device loss or breached, will it delete only the company data or will it delete also the employee’s data? 

It will delete all the device contents (both company and employee’s data). This protect both the company data and employee’s data from unauthorized access. It is the employee’s responsibility to perform backup measures on their mobile device to prevent the permanent loss of essential data during a data deletion task.

Question: What will I do if my device is lost?

Answer: You must report it by filing an ITS Helpdesk ticket and provide the following information for the company to wipe out the device contents:

1. Name

2. Contact Number

3. Email Address

4. Device Type (e.g., iOS, Android)

5. Device Model (e.g., iPhone 11, Samsung A14) 

Question: What happens if the device is lost and the device is not connected to the network, will its contents still get deleted? 

No. Internet connection is needed to wipe out the device's contents. Once there is internet connection, policy will take effect on the device (i.e. contents will be deleted). 

Question: Where can I backup my device data?

You can create cloud account to automatically backup, sync and restore your data (contacts, messages, etc.). You can back up the company data (files from O365, Teams, etc.) to One Drive if allowed.

Question: I don't have a company issued mobile device, can this BMS still apply to me?

Yes, if you have O365 like Outlook client and Teams installed on your personal mobile device the BMS policy will be enforced upon signing in using your SM O365 account. 

Question: Do I need to install an application on my mobile device?

Yes, once your profile is added in the BMS policy, O365 applications will prompt you to re-log in and install Microsoft Intune Company Portal app.  

Question: If there is a new mobile device, will it automatically install the app and the policy? 

BMS policy will be enforced per account thus, it will be enforced to all mobile devices connected to O365.

Question: I have both company issued device and a personal device, and BMS is set up on both devices. What if I want to retain BMS only on my company issued device and remove BMS on my personal device? What is the process? 

On your personal device, open Company Portal App, then click the 3 lines located at the upper left corner. Then click on “Remove Company Portal. No need to inform ITSS nor any need to file ticket via ITSS-Helpdesk.

Question: What mobile devices are in scope and out of scope?

Mobile devices that are in scope are smart phones and tablets only, excluded are desktops/laptops.  

• Related Articles

• How to Update to Windows 11

  Windows 11 is the latest major release of Microsoft's Windows NT operating system, released on October 5, 2021 as the successor to Windows 10 (2015). It is provided free for any Windows 10 devices that meet the new Windows 11 system requirements. ...

• Campaigns Zoho Portal Guide

  Creating An Account For new users without accounts, you may click the "Sign Up" button from the home page as seen on the image below. https://campaigns.sm-dac.com/portal/en/signup Sign up page will require for your account name and email. Email ...

• DAC ZOHO Help Portal User Guide

  by: Shamvil U. Gases <shamvil.gases@sm-dac.com> v. 1.0