HR panics after employee walks into the office wearing auto-recording smart glasses: 'Nobody knows what the policy is because the policy doesn't exist'

Advertisement
  • A close-up of a person wearing smart glasses.
  • "The day someone walked into the office wearing a corporate grade privacy violation on their face"

    So this happened last week, and I'm still recovering from the collective an sm it caused across four departments.
  • I work IT for a company where "please don't leak our stuff" isn't just a guideline, it's practically a lifestyle.
  • You'd think this would be intuitive. You'd think people would maybe ask before bringing in gadgets that can livestream the entire building to M servers.
  • You would be wrong. I'm sitting at my desk, sipping my first coffee, pretending today will be normal, because hope is a d se...
  • when Security calls me. Not emails, not messages. Calls. That's already a red flag because the only time. they call is when someone tries to badge in using a frozen lasagna or something equally cursed.
  • "Uh, can you come to reception? We... have a situation." Great. Love that. Nothing ever begins with "situation" and ends with "and then everyone got cookies." I head down, and there's an employee standing there like they're about to board the Starship Enterprise.
  • Backpack, badge, smile, and the most innocent- looking pair of Ray- Ban glasses I've ever seen. Except these are not innocent.
  • These are smart glasses. As in: camera, microphone, Al assistant, cloud upload, easily mistaken for spy gear smart glasses.
  • Security looks at me with the expression of someone who has accidentally activated a b "Are these... allowed?" Now here's the fun part: we don't have a policy for this.
  • At all. Zero. Nobody thought to write "don't wear personal surveillance devices into the building," because apparently that would have been too obvious.
  • So now it's up to me, the IT guy who once had to explain what a GIF is to an executive, to make a spur of the moment compliance ruling on whether a pair of sunglasses is a tool of industrial espionage.
  • I ask the employee, as politely as possible, if their glasses record. "Oh yeah!" they say proudly.
  • "They do video, audio, photos, voice commands... basically everything!" Cool cool cool cool cool. Just what I needed before 10 AM.
  • Totally normal workplace thing. Security's eyes widen like the glasses have started counting down from 10.
  • So now begins the Grand Corporate Panic. Security is flipping through internal SOPs like they're trying to summon a policy from sheer force of will.
  • HR is pinging me asking if this falls under the wearables guideline (it does not). Compliance is in a meeting because compliance is always in a meeting.
  • Legal is unreachable because apparently the universe hates me. Meanwhile the employee is just vibing. Rocking their CIA cosplay.
  • Probably wondering why half the building suddenly looks like they're participating in a hostage negotiation. After ten minutes of chaos and at least one person Googling "Ray-Ban smart glasses security risks corporate environment," the consensus becomes: We have no idea what we're doing, therefore the answer is probably NO.
  • So I ask the employee if they have normal, non- panopticon glasses they can switch to. Miraculously, they
  • They swap eyewear, Security sighs like they just disarmed a b and the employee walks in like nothing happened while the rest of us collectively reboot our brains.
  • Crisis over... right? Wrong. Because two hours later, we receive an official ticket: "Hi Team, We recently encountered a situation involving connected glasses (Ray-Ban model).
  • We were unsure which guideline applies. As a precaution, we asked the employee to switch to non- connected glasses, which was fortunately possible.
  • Could you please advise if connected glasses are allowed on our premises?" Translation: We panicked and now we want IT to invent a rule so we don't panic again.
  • We have a Legal department. 4 counsels. So the ticket was closed and HR informed that IT cannot advise in this case, and they should be liaising with Legal.
  • But I'm sitting here crafting the most professional follow-up response possible while my brain is screaming: We didn't have a policy because no one expected people to walk in wearing Facebook FaceCams on a Tuesday morning, Karen.
  • We will absolutely have a policy next week, though. Nothing. motivates corporate rule-making like the sudden fear of being involuntarily livestreamed from the coffee machine.
  • TL;DR: Employee shows up wearing Ray-Ban smart glasses. Security freaks out. HR freaks out. IT freaks out.
  • Nobody knows what the policy is because the policy doesn't exist. We tell the employee to please stop being a wearable GDPR violation.
  • They switch to normal glasses. Half the company is now rewriting the rulebook because one guy wanted to look stylish with auto-recording sunglasses.
  • bob152637485 While everyone's reactions were quite hilarious, actually sounds pretty smooth overall. The employee being completely cooperative made it far easier of an experience than it could have been. I half expected the employee to get away with wearing them after insisting that they weren't breaking any rules.
  • a_shootin_star Original Poster's Reply Right? We were fully prepared for the classic "Well technically there's no rule against bringing my wearable surveillance device into a secure facility II 00 Instead we got the mythical creature of IT folklore: a cooperative adult. Honestly the smoothest disaster we've had in ages.
  • Less_Author9432 Re: The mythical cooperative adult My question is, was this guy so dumb that it never occurred to him that his glasses were a problem? Or was he so smart that he knew the glasses were a problem, knew that there were no actual rules against them, and decided that the best way to point out this hole in corporate security was to wear them to work to see what would happen?
  • a_shootin_star Original Poster's Reply Short answer? Design department. He really thought they were just cool glasses. Totally oblivious.
  • ThatUsrnamels Already I don't believe that you didn't have a blanket "no recording devices" policy.
  • Xenoun Yeah but that's why any sane company with security restrictions has a policy that limits functionality of approved devices, and only gives examples of devices that applies to rather than trying to list everything they can think of in a rapidly expanding tech market. This would be a non issue at my work, employee told to change the glasses or go home.
  • Prohibitorum I hate to be the guy, but doesn't this have a distinct chatgpt smell for anyone else?
  • iceph03nix I'm surprised there's not a "no photos or recordings on or of company property without permission" policy in the handbook somewhere. That's been pretty standard everywhere I've worked. There's usually lots of people with some sort of permission, but not blanket recording of everything permission
  • JaschaE Affixing a hidden camera (and microphone) to your person was once a very clear violation of trust. It was mostly an issue in very trust based environments, where official policy was to send the offending party on an impromptu scuba vacation. I'm not saying I recommend this policy, but I kind of understand. Even if it wasn't extremely clear that meta will use that footage somehow and therefore extract information, it wouldn't be the first wearable where the data upload happen to be less e
  • Abracadaver14 > wearable GDPR violation So if you're in the EU, the answer seems pretty simple: recording people on their workplace is not allowed without express and individual permission.
  • DoubleOwl7777 yeah these glasses are scary. i hate that in todays day and age corporations spying on you has just become normalized. the spyware is often literally built into the operating system.
  • RustyKnight83 You deserve cookies.

Tags

Scroll Down For The Next Article