The increasing use of mobile devices in the government sector, FOIA, and a wide array of regulations controlling the archiving and release of government information and documents all point to one conclusion — every government agency needs a texting policy.
Lately, the government sector has been in the spotlight because officials use consumer-based text messaging apps to instantly communicate with each other and the general public. Used for these purposes, text messaging comes with a plethora of security, privacy and compliance concerns that can impair government organizations’ communication efforts and incur unnecessary costs.
To deal with these issues, it is necessary for government agencies to protect and preserve data sent to and from their mobile devices by establishing an accurate and detailed text messaging policy. This infographic maps out the fundamental steps in its creation and implementation.
Archiving text messages is a crucial requirement for government agencies to ensure compliance with legal and regulatory obligations.
Compliance and Government SMS
Text message regulations
Text messages are considered public records if they pertain to public business. Therefore, they must be retained and archived according to the same standards as emails and other forms of communication.
Retention Schedules
Each state has specific retention schedules for public records, including text messages. These schedules dictate how long messages must be kept and when they can be disposed of.
FOIA Compliance
Text messages may be subject to Freedom of Information Act (FOIA) requests. Agencies must be able to retrieve and provide text message records when requested by the public or oversight bodies.
Archiving Software
To meet these requirements, government agencies often employ archiving software that automatically captures and archives text messages. These solutions ensure that messages are stored securely and can be easily accessed when needed.
Creating a Texting Policy for Government: 4 Key Steps
To create a texting policy for your agency, make sure to:
Identify the applicable regulatory and legal requirements
The first step towards creating an effective text messaging policy is to identify all the relevant federal, state and industry regulations that apply to your agency.
After that, discuss these rules with key stakeholders (the agency’s legal counsel, human resources, compliance officers) to make sure they fully understand and implement the requirements.
Specify the devices that will be permitted
Have in mind that retention regulations apply not to only government-issued devices, but also to business-related texts sent from personal devices.
What you need to do is determine whether the policy will prohibit the use of personal devices at work and whether government-issued devices can be used to send personal messages.
You also need to define which devices and operating systems will be allowed across the organization.
Identify the employees authorized to use text messaging
Depending on the communication needs of your agency, the text messaging policy should also clarify if all (if not, which) employees are permitted to use SMS messaging.
If the intended purpose of text messaging is to engage with the public (e.g. to send incident alerts), the policy should specify the responsible people.
If texting is a peer-to-peer communication medium, the policy should make it clear what type of information can be sent via SMS. In the case of BYOD, employees should be informed that they will have to enable access to their mobile devices.
Train employees for proper text message archiving
Lastly, the policy must set guidelines on how text messages must be documented. Employees should know that they can’t rely on screenshots or mobile carriers to properly retain their mobile communication.
To ensure these common mistakes are avoided, the agency should incorporate archiving technology that will automate the process and ensure compliance.
Creating a text messaging policy is essential for government agencies to ensure compliance and manage communication effectively.
Government SMS Texting Policy Checklist
A comprehensive text messaging policy should include the following elements:
Scope and Purpose — Clearly define the scope of the policy, including which employees it applies to and the purposes for which text messaging can be used.
Usage Guidelines — Establish guidelines for acceptable use, including what types of information can be shared via text message and what should be avoided.
Archiving and Retention — Outline procedures for the automatic capture and archiving of text messages. Specify retention periods in accordance with applicable laws and regulations.
Privacy and Security — Include measures to protect the privacy and security of the information shared via text messaging. This can include encryption requirements and protocols for handling sensitive information.
Compliance and Training — Ensure that employees are aware of and understand the policy through regular training sessions. Outline the consequences of non-compliance.
Review and Updates — Establish a process for regularly reviewing and updating the policy to reflect changes in laws, regulations, and technology.
Did you know?
- Freedom of Information Act (FOIA) is a US federal law that ensures an increased transparency in the government sector and deals with making records more accessible to the public. The definition of record varies from state to state, but generally includes various paper documents and electronically stored information including website content, email, chat logs, social media posts and mobile content – calls, voicemail and text messages. When agencies receive a records request, they must be able to provide access to the public records within a specified time frame (typically between 3 and 30 days).
- Government agencies shouldn’t assume that their service provider is archiving their data on their behalf. In Washington state, officials looking for employees’ text messages were surprised to learn from Verizon that text message content is retained for only 3-5 days after the transmission.
- Mobile phone evidence is admissible in courts. In a famous 2014 case, the Environment Protection Agency was rebuked by a federal judge when it failed to retain the text messages of its top administrator, Gina McCarthy. It was believed that she switched from email to texting to get around the law.
- 88% of employees use mobile phones for work while on personal time, and almost 50% of work-related content is now accessed on mobile devices.
- If your agency allows iPhones and other iOS devices, your users should refrain from using iMessage because these messages are very difficult to archive.
- In Arizona, the state law requires all public officials to retain records of SMS messages related to public business exchanged on personal devices. If an official deletes information that is not “of purely private or personal nature”, they may be charged with a Class 4 felony.
- In a 2016 case Stinson v. City of New York, the defendant was sanctioned because they failed to preserve the text messages sent between NYPD personnel using department-issued smartphones. The phones were within the possession, custody and control of the city and were subject to the same preservation obligations as the city’s other electronically stored information.