In this How-To we show you how to prevent privately used apps (such as WhatsApp, Clubhouse or Facebook) from gaining access to your users’ business contacts
If users are using their iOS devices for both private as well as business purposes, there is a risk that private apps could copy and download business contacts. In this How-To we will show you how you can use a policy to prevent that.
For such a policy to take effect, the business emails and contacts must also be managed with the Cortado management console. Create an Exchange profile for this and assign it to your users. Proceed with that as described here.
- To set up the policy, select Control Panel→ Policies in the management console. Click on the plus sign to create a new policy (upper arrow in illus.).
- Then select iOS Policies.
- For private iOS devices that were enrolled via User Enrollment, select User Enrollment (middle arrow in illus.) as the enrolment type.
- For supervised iOS devices (supervised devices), that are used with a private Apple ID, select the Supervised Devices enrolment type.
- Retain the checkbox setting (unchecked) for Allow unmanaged apps to read from managed contacts and uncheck the checkboxes Allow documents from managed sources in unmanaged destinations (lower arrows in illus.).
- Then assign the policy to the users/groups/devices.
Now private apps can no longer access the users’ business contacts.