13 crucial measures to ensure a (cyber)secure reception
IT and facility managers often ask what their access control and reception areas need to meet today’s (cyber)security standards (and ISO 27001 compliance). This handy checklist gives you a clear picture of how (cyber)secure your company currently is – and what you should definitely do to reduce potential risks.
To safeguard your company, it’s vital to implement measures that minimise all risks related to physical security and access control.
For visitors and employees
- Keep the front door closed at all times
Cybersecurity quite literally starts at the front door of the company. Ensure it stays shut to prevent unauthorised individuals (tailgating) from entering the premises. - Ask visitors to sign a privacy statement
Having visitors sign a privacy statement ensures you are legally allowed to process their personal data (such as name, email, time of visit, etc.), which is essential for GDPR compliance. - Have visitors sign a non-disclosure agreement (NDA)
An NDA is crucial for protecting your data, as well as intellectual property, ideas, and other sensitive company information. - Clearly communicate safety procedures (if applicable)
Depending on your line of work, it may be necessary to inform visitors in advance about specific safety rules and procedures. - Issue a visitor badge to every guest
Every authorised visitor should wear a visible badge. This makes it easier to spot intruders or unauthorised individuals on site. - Provide each visitor with a guest Wi-Fi login
For cybersecurity reasons, visitors should only have access to a separate guest network, isolated from the company infrastructure. - Monitor who is in the building - at all time
A real-time overview of who is present – both visitors and staff – is key for security and essential during emergencies or evacuations. - Do not use tablets to register visitors
Tablets such as iPads contain company and customer data. They can be easily stolen or hacked, and their batteries also pose a fire or explosion risk.
Deliveries and collections of parcels
- Keep delivered parcels securely locked away
Parcels should never be left unattended at the front desk. This helps prevent misuse of parcel contents or labels for malicious purposes. - Never leave deliveries or collections unattended at the reception
Parcels awaiting delivery or collection can be stolen or misused. They must be handed over securely to couriers or customers. - Track IT equipment and company documents
Ensure that company documents and IT assets (such as replacement devices, etc.) are always exchanged securely and remain traceable at all times. - Log every delivery and collection
Maintain a record of all incoming and outgoing parcels so you always know who dropped off or picked up a delivery. - Remove shipping labels before disposing of packaging
Ensure (reception) staff remove all shipping labels before discarding packaging. These often contain sensitive information such as phone numbers, emails, and staff names.
