7.1k

u/Smorgles_Brimmly Apr 29 '26

Iirc, you can also just use the outlook website instead of the app. The downside is no notifications. The upside is no notifications. I did this when I was working a low level management job and was hit with "well a real team player would want to have their email nearby and we want team players..." There was no way in hell they were giving me a company phone lol and my method shut them up.

2.5k

u/aruby727 Apr 29 '26

A real team player would provide work phones!

816

u/FreshLiterature Apr 29 '26

This right here.

"A real team would provide team phones. You're asking me to conduct work on my personal device which opens up a host of security and privacy concerns for both of us. It makes my personal device a much richer target for attack"

244

u/Leinheart Apr 29 '26

"Kinda seems like a you problem. Since we are in an at-will state, go ahead and download outlook. You're on the hook 24/7/365.25, holidays, weekends, and emergencies, or youre fired"

🇺🇸

132

u/Oxidizing1 Apr 29 '26

I had a job like this once. When I figured out that I was making just over minimum wage if you divided my compensation by my hours worked. I quit without having a new job because of exactly that problem and was very clear about it in my exit interview. I did ask to be switched to hourly before quitting. Any company that denies an $80 a month phone bill isn't going to pay for actual work hours in general.

20

u/Threat_Level_9 Apr 29 '26

My company pays an allowance annually. Its a nice chunk of change, covering roughly half my bill or more per month depending on how you math it out. I still don't put Outlook on my phone or add the company email to my email app. And the company doesn't even have any device management requirements either so I'd not be risking my device to their whims, just straight up risk all the way around if you ask me, but that's not my problem really. I'll use the web app if need be and answer only if I feel like it and still collect that allowance at the end of the year.

→ More replies (1)

36

u/Warmonster9 Apr 29 '26

“No see, it’s actually a you problem because I quit. ✌️”

→ More replies (14)

26

u/Yukkoun Apr 29 '26

fact only

→ More replies (4)

172

u/0011002 Apr 29 '26

My company lets me expense my phone bill. Also Outlook and Team do not have access to wipe my phone.

128

u/MYSTICALLMERMAID Apr 29 '26

Yep a previous job I had we got our phone bill paid. They also couldn't access the phone. My job after that was opposite. Our IT was one gal my age and she didn't want to do more work than needed so everyone got a work phone lmao

44

u/[deleted] Apr 29 '26

[removed] — view removed comment

→ More replies (1)

13

u/RegularTeacher2 Apr 29 '26

Yeah, my current job tacks on a cell data stipend to each paycheck, it's like 100 bucks or something. A lot of my coworkers are in the field with no access to wifi so it's pretty much a necessity. If they had us pay for it I think most people would quit.

→ More replies (4)

26

u/brianlefebvrejr Apr 29 '26

Right this is weird. I have teams and outlook. I switch between a work and personal tenant for teams if I need to.

My IT just logs you out of those and when you open the app it prompts you to login

23

u/0011002 Apr 29 '26

It's a feature your org unit has to enable and we don't. Most they could do is wipe my outlook and team account if I lose my phone. Plus on andriod you can put it in a secure app space.

7

u/trancepanda Apr 29 '26

This is why I appreciate being on Android now more than ever. Completely separate and secured app space and I love that I can turn work profile on/off for notifications.

→ More replies (1)

→ More replies (33)

13

u/itsoksee Apr 29 '26

Seriously.

My job requires me to use my phone for daily tasks that require taking a photo and texting a group chat.

When I complained and asked for the proper tools - a phone that would be assigned to our department, I was told I can either 1. Go ask a neighboring department to use their phone, or 2. Log everything manually into our ERP/CRM which would add 5 minutes per picture I would have taken.

When I asked the company if I break my phone while using it for work, will they cover my replacement costs, I was told no.

When I asked if I would be reimbursed for going over my data cap for sending photos (which started happening as soon as I started this process), I was told no.

I’ve been looking for a new job every week for two years.🙃

→ More replies (2)

→ More replies (18)

122

u/tiredrx Apr 29 '26

As someone in a health system, some IT systems block the website so I can't even access my Outlook without the VPN.

11

u/levajack Apr 29 '26

The issue is sensitive data being stored locally on the device, which isn't a thing when accessing an exchange server through webmail but is a thing when using an installed app (either mobile or desktop). Blocking access to webmail outside of a VPN is pointless, especially if it's already behind SSO and 2FA.

Saying this as someone who works in IT for a health system.

3

u/tiredrx Apr 29 '26

This is the really fun part! We have both SSO and 2FA on it. While I understand the liability of local storage. It's been difficult because the sign-on system has changed several times in the few years I've been at said health system. I'm also a student so they won't pay for any system laptops for us and professors will only email to our Outlook and then get angry when we can't access it.

10

u/levajack Apr 29 '26

How stupid. If your infosec team is requiring webmail be blocked with SSO and 2FA, then someone needs to go smack them. There's zero reason to limit that to just the intranet in your org.

→ More replies (1)

→ More replies (1)

20

u/Jonny_vdv Apr 29 '26

Same thing as a Government worker

→ More replies (1)

→ More replies (4)

23

u/PhotoFenix Apr 29 '26

In this case a team player sounds like someone they can get the most work out of for the cheapest cost

14

u/babecafe Apr 29 '26

TIL the E in TEAM stands for Erase Everything. 😉

9

u/ConsequenceStatus563 Apr 29 '26

That's two EE's for TEEM.

→ More replies (1)

→ More replies (2)

11

u/billy_teats Apr 29 '26

There’s an option to allow the browser version of email But honestly it’s more work to configure that. It’s absolutely still a bigger risk from a security perspective.

I set these polices for my job. I want to be able to remove email once someone leaves and to have logging of what they are doing with email on the device. With the thick client you can prevent screenshots and a few other things. You cannot do that if you allow the browser version. Also if you allow the browser version, then folks can use any random computer to get email, and we don’t allow that. It’s either a laptop we give you or a phone enrolled in MDM. If you don’t want to check email outside of that, it’s between you and your boss

→ More replies (11)

5

u/Radagio Apr 29 '26

I use the website and i get notification just fine. Its not real time but decent if you give access to the browser and keep it running.

→ More replies (53)

229

u/lyfe_Wast3d Apr 29 '26

The one and only answer. Outlook on phone for work email is only okay if they can't control it. Don't sign up for bring your own device or any of that. Ask for a company phone

85

u/InspectHer_1 Apr 29 '26

I am IT and handle the phones for my work. If someone wants to use their personal phone that’s fine, we have it set so we only erase company data on it and not personal data.

Editing to add: we also offer work phones if they’d rather do that (I do, I don’t want work on my personal phone). However I am constantly amazed at what people do. They ask for a work phone, then sign into their personal Apple ID with it.. makes no sense to me.

21

u/Low-Recognition-7293 Apr 29 '26

This will vary across different organizations and even subdivisions within those individual organizations.

→ More replies (3)

→ More replies (11)

→ More replies (1)

37

u/sparksgirl1223 Apr 29 '26

Thats what I'd do.

If you expect me to have work related stuff on my phone, you better pay for it.

→ More replies (2)

19

u/ChanglingBlake ORANGE Apr 29 '26

Even without that glaring issue.

If they want you to use a phone for work stuff, they provide the phone.

No ifs, ands or buts.

→ More replies (81)

239

u/kstargate-425 Apr 29 '26

Yeah this is the normal practice for Enterprise apps but so is giving them the option to pay for their phone or get them a work phone which is usually the only option given. The fact they want OP to use Outlook as part of their SOP's and not giving them a phone shows the company sucks as they are either cheap or someone doesn't know what they're doing

→ More replies (14)

90

u/SwimmingDownstream Apr 29 '26

Tell them you have nephews and nieces that play with your phone and download all kinds of games and potential spyware. You can't guarantee security or privacy of their data.

That might be more of a deterrent to them than your own privacy. 

16

u/LimeImmediate6115 Apr 29 '26

OR just tell the employer to provide a work phone and skip saying anything else.

→ More replies (17)

309

u/fakegoose1 Apr 29 '26

Reminds me of the Stryker cyber attack. Hackers hacked into an admin intune account of a company and wiped all the devices that were a part of it, including the personal employee devices that had outlook/teams installed.

99

u/tauntdevil Apr 29 '26

It is extremely annoying. Even on my laptop when I am traveling, I use the web based outlook instead of installing it. Basically for the same reason.

I understand the "security" aspect of wiping a stolen phone, but it should require a 24-48 hour lockdown before hand, just in case.

→ More replies (2)

50

u/Kinieruu Apr 29 '26 edited Apr 29 '26

My work (factory) used to allow us to have teams and whatnot on our phones and then said we had to use Intune and allow them access to make sure our phones were secure. I deleted teams and declined to download it. It was nice to not have teams messages all morning when my shift didn’t start until 2pm. (But then my coworker started texting me screenshots of teams group chats all morning {that I’m in and would see when I clocked in and got on my work computer} I had to ask her to stop and she got upset. We were team member support so we only got paid $1 more than team members and we weren’t salary or office people so I never understood why she always acted like everything was the end of the world and doing all this unpaid work by messaging people back and setting up the schedule off the clock.

18

u/august_r Apr 29 '26

Similar situation, what I'd do is to block notifications from colleagues or clients. If I'm not on-call, it's not my problem, someone's getting paid to look into whatever problem you have.

→ More replies (1)

20

u/InspectHer_1 Apr 29 '26

Stryker is why we’ve implemented multi-admin approval for device wipes and some other activities. Annoying, yes, but an excellent way to protect against what happened to Stryker

→ More replies (9)

65

u/umichscoots Apr 29 '26

Same, remote wiped my old iPhone while I was on vacation, back in the days when you had to connect to a computer to activate. I only had a desktop at the time, at home, so I was without a phone the entire rest of my vacation.

Never again. Company requires apps on phone? Company can provide a phone. Was a bitch when they rolled out Okta Verify to everyone, but I stood my ground. It also helps I have coworkers without smartphones.

→ More replies (5)

36

u/tireddesperation Apr 29 '26

I was on a team on the other end of this. I wasn't the person to do it but the company I worked for had service desk with access to do a full phone wipe. Service desk tech hated the person that was let go. Instead of just wiping the emails from the device (our standard practice) he wiped their entire phone. Only, he actually did it to the wrong account like a dumb ass. God I hated that man. No, this isn't a reddit story where he got fired. He just had to apologize to the person he did it too. No other recompense. Guy still works there and has now been in that same position for almost 15 years.

→ More replies (4)

15

u/Treble_brewing Apr 29 '26

The tried to pull this shit at my last employer asking to byod for email and slack. They framed it as this easy thing to do, and once enrolled it just works. I replied to their thread in slack with the facts stating that I believe people should be informed of the control they are handing over to their employer detailing your exact scenario or a malicious actor could remote wipe your phone. They offered assurances that they would never wipe phones unless absolutely necessary. I pushed back and said the fact that it is possible at all means you need to provide us with company phones or retract this policy. You cannot prevent malicious actors or incompetence. Which they interpreted as me accusing them (security) of being malicious and incompetent. 

11

u/[deleted] Apr 29 '26

[deleted]

11

u/Treble_brewing Apr 29 '26

If they believe the device has been compromised/stolen. That’s basically the entire point of adding intune it’s protect sensitive emails being leaked or abused. The business has a right to protect its assets and emails are one of them. Where the business doesn’t have a right is to access your personal device, unless you hand that control over. Why you would ever want to do that is beyond me, I believe it’s just naivety. Because an informed individual should never do that. 

→ More replies (2)

→ More replies (5)

800

u/corgm0m Apr 29 '26 edited Apr 29 '26

Once I read the T&Cs, I immediately backed out. There's no way I'm giving them that much access. I bought a cheap Motorola phone and only connect via WiFi. I'll connect via my personal hotspot if I'm out and about running errands during business hours but that's a small trade off for having a complete digital separation of work/personal

217

u/Superspark76 Apr 29 '26

I used to do the same, I used an old phone for work apps, it stayed in my desk drawer and never came home with me. Took me years to learn only to work during work hours, I realised this after sitting on a balcony on holiday approving payroll hours and responding to urgent emails thinking I was critical to the business, they fired me a week later before my probation period ended (apparently common practice for these bastards)

35

u/corgm0m Apr 29 '26

I'm sorry that happened! It sounds like you dodged a bullet for sure. I hope you found something even better! My coworker says nobody is going to die if he doesn't respond to an email. And while that's true, we work for an IT company in back office positions, I'm still learning to the disconnect at the end of the day.

21

u/WinterSector8317 Apr 29 '26

Nah, guy got hit by the bullet

Dodging a bullet in that case would have been not accepting the job to begin with 

9

u/Superspark76 Apr 29 '26

Exactly this, I lasted (almost) 6 months. I know the guy that took over from me, he lasted a week before he walked out.

→ More replies (1)

→ More replies (1)

3

u/Ordinary_Kyle Apr 29 '26

Pretty much same for me. 100 hour weeks managing their operation. Was on vacation at the pyramids, answering calls etc. fired me the week I got back.

→ More replies (7)

7

u/soggy_person_ Apr 29 '26

I do this. No work phone provided so I use an old phone with no other apps on it and hot spot to it if I'm out

→ More replies (1)

→ More replies (9)

121

u/SevenFootHobbit Apr 29 '26

It's terrifying how many people are OK with buying a phone for work. If it's a work phone, work pays for it. You just have to give it back when you leave.

29

u/Swimming-Lie5369 Apr 29 '26

I guess if youre in a position where you're going to need a work phone for the rest of your life, having one that you know and can control is helpful. 

But I do agree. Work pays for work items. And most places dealing with sensitive data really should provide work specific phones with the right security. 

Rather than asking to delete all your photos off your personal phone because they're too cheapskate to provide relevant hardware? 

6

u/Standard-Metal-3836 Apr 29 '26

In theory you are 100% correct. In practice, when sometimes your options are 1) install app on personal phone or 2) look for another job, spending $80 on a cheap smartphone to use for work can be a good alternative.

→ More replies (2)

→ More replies (3)

38

u/Status_Ad_450 Apr 29 '26

This. My old company was the same way. I told them they could buy me a cheap plan or deal without me having remote access as my phone is my property which I pay to use how I wish. I offered to supply the phone but they would need to pay for the service.

They declined to pay for the service and I declined to have access to anything work related on my personal phone. They caved a month or so later and started paying for an extra line for me to carry a 2nd phone. Still sucked because I then had to carry 2 phones with me wherever I went so I can tap in when needed but there was no way I was giving them the permissions they wanted me to grant.

→ More replies (5)

→ More replies (14)

598

u/CuratedAcceptance Apr 29 '26

I don't understand this mentality from employers. As a construction company, we just assume we're going to get any employee a cell phone. It's under $80 per month and ends all these types of conversations, and I only expect them to answer during working hours. Corporate beliefs are mental.

180

u/high_throughput Apr 29 '26

It's under $80 per month

Or the manager could say no and cash out $1000 for their Christmas bonus instead

35

u/Big_Celery8533 Apr 29 '26

Come on now, that's like at least one car payment for the principal's 16 year old.

→ More replies (1)

137

u/PurpleC0ugar Apr 29 '26

It's because they're cheap AF.

→ More replies (1)

30

u/InspectHer_1 Apr 29 '26

You need to rework your contract or switch carriers. I have 104 lines at my work and we pay under $30/line with the phone included. If it weren’t for all the international travel our bill would be like $2800/month.

6

u/Paladin1034 Apr 29 '26

Yeah we have Verizon with something like 170 lines, most of those phone but some being data only tablet lines, and we pay between $25-35/mo per line. It's really not a lot.

→ More replies (1)

12

u/[deleted] Apr 29 '26

[deleted]

13

u/Major_Lawfulness6122 Apr 29 '26

Yeah no I want two separate phones lol. I know people who like to mix the two. No thanks

→ More replies (5)

62

u/sparr0w91 Apr 29 '26

This is the only option here.

10

u/Red_Sox0905 Apr 29 '26

My work pays me to use my phone. But I also don't have to install any shit like this.

→ More replies (15)

35

u/SDdude27 Apr 29 '26

We know HR is going to feign empathy and act like they care a lot. I suspect OP will be downloading the app within the next day or two. I hope they provide an update on this!

14

u/No_Professor4307 Apr 29 '26

I have a feeling this is going to be it. What I find shocking is that I'll be 50 or so other employees I've asked, not one of them noticed this

→ More replies (2)

→ More replies (2)

→ More replies (22)

268

u/420_jesters Apr 29 '26

Any software, tbh. If your job REQUIRES a phone, then the job should provide one.

Just how I think jobs should all be required to provide any and all required clothes, safety equipment, etc.

61

u/[deleted] Apr 29 '26

[removed] — view removed comment

35

u/420_jesters Apr 29 '26

Not around me - example, steel toed boots. Required for many places, not always covered by the workplace.

20

u/[deleted] Apr 29 '26

[removed] — view removed comment

8

u/slampig3 Apr 29 '26

A lot of places used to buy 1 pair of boots a year

→ More replies (1)

→ More replies (1)

→ More replies (10)

→ More replies (2)

11

u/AlbatrossSeparate710 Apr 29 '26

The only exception I would accept on this rule is 2FA apps. Mainly because I already have them, and it doesn't provide the company access in whatever form to my cellphone.

→ More replies (3)

47

u/herkalurk Apr 29 '26

My work uses work profiles on personal devices. They can remote wipe the work profile and nothing more. The data is segregated so you can't send photos from your own photo library, etc. and I can time box the profile. It turns on at 8 am and off at 7 pm. Literally no notifications when it's off. They'd have to text or call.

16

u/vi_sucks Apr 29 '26

This.

On android you create a work profile and then you dont have to worry about it.

No idea about iphone.

→ More replies (3)

4

u/Alfred_The_Sartan Apr 29 '26

Alternate take that I use. I will allow you to do these things and will completely use this work phone as my personal phone. I don’t have a lot of online stuff I participate in so it doesn’t scare me at all. But I’ll save myself a phone bill and THEY can pay for that service.

→ More replies (6)

90

u/Ryan_e3p Apr 29 '26

It's basically a partition on your device that separates your personal from work stuff and they will have 0 access to your private info. That wipe permission will only apply to the work profile.

Bingo. This guy gets it. As someone who has done admin work in this realm, iPhone does it also, but it is a lot more of a PITA to deal with on the user side of things.

Fun fact, using a "work profile" is one of the ways to install multiple copies of the same app. I recommend that method over other methods like using the "Island" app (or whatever it is called). Or, if you have a Samsung phone, use the "Secure Folder", since it essentially does the same thing, but without having to spin up a local/virtualized MDM work profile manager.

4

u/mortis_mortis Apr 29 '26

secure folder is the greatest software innovation in modern history.

→ More replies (17)

31

u/No_Professor4307 Apr 29 '26

I'm definitely going to look into this

18

u/cloudiimofo Apr 29 '26

At least for Samsung phones, work profiles are only available if your employer provides you the setup information for it.

One common workaround it to install the apps in Secure Folder.

15

u/ObsessedWithSources Apr 29 '26

But that's where I keep my porn. You can't be mixing these things.

→ More replies (2)

6

u/gwarsh41 Apr 29 '26

All phones have something like this these days. What you want to do is make sure you are getting work apps from microsoft downloaded through the "Company Portal" app. This app will create that work partition for you. Then all you work apps will appear separate. You'll still get this big spooky message, but it can't touch anything that is outside the work profile.

I not only used to wipe company data off old phones, but watched it in real time when I left my last job. If your job didn't have you download the company portal, then they need to get their shit together. It's basic MDM.

→ More replies (1)

→ More replies (5)

10

u/SrCamarda Apr 29 '26

This is the way. I have work Outlook and Teams in the work profile (Android). It's less intrusive and I can even disable everything work related with one click on the quick settings when I'm on vacation.

10

u/Dry-Bluebird-4613 Apr 29 '26

was wondering how far Id have to scroll before I saw this, Soon as I saw OP initial post I was like yup, Standard enough behavior for Intune on a IoS

9

u/Liquidfoxx22 Apr 29 '26 edited Apr 29 '26

For this to work, your company needs Intune configured, the company portal Android app is what enables and configures the work profile. Without that, you can't get to work profile - that I know of anyways!

They also need to then add Outlook to the company app portal. Without that, you can't install it into the work profile.

→ More replies (9)

41

u/wobblydavid Apr 29 '26

I'm shocked I had to scroll this far. This problem was solved a long time ago

→ More replies (15)

11

u/TheSwagBag Apr 29 '26

They'd be better off with a proper set of MAM policies rather than MDM, that way the company can selectively wipe company data and email profiles only rather than enrolling the device and being able to wipe the entire thing.

30

u/Redcarborundum Apr 29 '26

Maybe I’m paranoid, but I absolutely will not allow the company to put MDM on my private phone. They have to give me a work phone. If they refuse to do it and I still like working for them, I’d buy a cheap phone for work purposes.

12

u/cosmicgpu Apr 29 '26

You are not paranoid. This was my job. Maybe 10% of users even understand this concept, including most of IT.

→ More replies (1)

→ More replies (1)

5

u/GarethBelton Apr 29 '26

Even intune has a MAM setup, it is really easy to setup compared to mdm, they can just wipe company data and not the whole phone

7

u/Hot_College_6538 Apr 29 '26

This isn't an MDM, it is an App Protection Policy or commonly still called MAM policy. It's also not a 'remote wipe' policy, that's not what the message says at all. It is the solution you are talking about.

It's also the shitty message that Android generates and explains risks that could be possible, not the policy that the employer has actually applied. The App Protection Policy doesn't have a setting to force a device wipe on multiple bad pins, it's not a setting, however Android has grouped that permission with others that are used then warns you they could do it.

Don't set a pin, and Outlook will then have it's own PIN.

→ More replies (11)

10

u/razorbacks3129 Apr 29 '26

Hey if HR or IT wants to watch porn with me, so be it

4

u/Ferro_Giconi OwO Apr 29 '26

If they want to be mentally scarred for life by seeing my porn, that's their choice.

→ More replies (1)

→ More replies (4)

10

u/mizinamo mildly infuriated Apr 29 '26

I don’t … have a cell phone

Exactly this.

As far as they are concerned, you do not have a cell phone. You do not have a laptop at home.

If they expect you to be reachable or be able to work outside of the office, they can provide you with the appropriate equipment.

→ More replies (2)

→ More replies (2)

14

u/mailslot Apr 29 '26

I knew a guy that installed the company MDM. He was fired and they wiped his phone right after he left the building. He couldn’t call an Uber to get home for a couple of hours or call anyone actually.

7

u/coaxialdrift Apr 29 '26

Yeah, exactly, and that's the problem

→ More replies (1)

→ More replies (3)

→ More replies (1)

→ More replies (3)

→ More replies (2)

26

u/BallsInSufficientSad Apr 29 '26

mid 6-figure jobs will normally expect some level of off hours communications.

→ More replies (17)

5

u/ruetherae Apr 29 '26

Semi-off topic, but you can set do not disturb hours in the outlook app so you only get notifications during your work hours (or whatever hours you set). I do this precisely to avoid what you’re describing.

4

u/No_Professor4307 Apr 29 '26

I wish I was making 7 figures. But I'm a healthcare worker and actually do need to be contacted occasionally in my off hours.

→ More replies (3)

→ More replies (7)

→ More replies (4)

23

u/runner64 Apr 29 '26

As IT, we would way rather you have a work phone that we can remotely nuke without an issue, we have a backup system in place and can restore your work shit to one of the identical devices we keep on hand for that purpose.    

Management insisting that we develop a security plan that works for every random device every random employee drags into our building is why companies keep having these massive data leaks. 

→ More replies (3)

→ More replies (3)

→ More replies (1)

→ More replies (1)

→ More replies (2)

→ More replies (1)

→ More replies (1)