How to Develop a Social Media Policy for Your Employees

WRITTEN BY: Link Humans

Writing a social media policy can be like walking on eggshells. It is a potentially overwhelming process with many things to take into consideration, from legal matters to employees’ perceptions of privacy. There are certain best practices to keep in mind when drafting your company’s social media policy: it should be comprehensive, without being too broad, and must be readily understood by all employees. Below are some guidelines and examples to help you get started on writing your policy.

Does My Company Need a Social Media Policy?

With the increasing use of social media in both our business and personal lives, it is more important than ever for companies to protect their reputations. There are several issues of importance to any company when it comes to social media use, including productivity, privacy, and host of legal matters. Therefore, organizations of all sizes, across all sectors, should seriously consider developing a formal social media policy. At the very least, an official policy should serve as a reminder for employees to use common sense when it comes to social media, and to remind them that their online activities can have consequences for the entire organization.

Legal Considerations of Social Media Policies for the UK

The Human Rights Act 1998 provides a ‘right to respect for private and family life, home and correspondence.’ Relevant case law surrounding the Human Rights Act indicates that employees have a reasonable expectation of privacy when it comes to separating their private lives from the workplace.

The Regulation of Investigatory Powers Act 2000 has implications for the extent to which employers can monitor or record communications that take place through the company’s networks. There are only two conditions under which an employer may lawfully intercept communications: 1) there is reasonable belief of consent on the part of the sender and recipient, or 2) the employer does not have consent but is acting to protect their business, comply with financial regulations or prevent crime.

According to the Computer Misuse Act 1990, it is an offense to use a computer to gain access to data you are not authorized to use. This means employers should not have access to employees’ social media accounts.

An emerging issue regarding the use of social media for business is the question of who owns social media accounts and the contacts that are gathered as part of a social network – the employer or the employee? Generally speaking, an employer may not claim an employee’s social media contacts (i.e., LinkedIn contacts, Facebook friends or Twitter followers) when the employee leaves the organization. It is possible that the answer to this question may be slightly different if the employer, rather than the employee, sets up the account, or if the employee is instructed to create a corporate-branded profile for business purposes (i.e., @CompanyXYZ_John). Regardless, employers who wish to claim ownership of social media accounts that employees use should assert this well in advance as part of a formal social media policy.

A corporate social media policy should be written with these regulations in mind, and should only include those aspects covered explicitly by the law. Making a social media policy too broad, violating any rights that employees should have, can be very damaging for an employer.

Creating Your Social Media Policy

Social media policies come in different shapes and sizes. They can either be a small section in your company’s employee handbook or a lengthier stand-alone document. There are some things to keep in mind when crafting your social media policy, including the size of your organization, company culture, and the nature of your business. Any well-written policy should be clear and concise, with easily understandable language free from legal jargon.

8 Key Points to Include in Your Policy

Introduce the purpose of social media as part of your corporate strategy, be it concerning marketing, recruitment or employer branding.
Add value – when employees publish work-related social media content, they should provide useful information or insight that is relevant to the business.
Employees should be prohibited from sharing confidential and proprietary information online.
Responsibility for content – employees should know to exercise good judgment and be prepared to deal with any consequences that result from inappropriate actions or statements online.
Authenticity is critical – users of social media should identify themselves by name, and when relevant, position and company.
Keep your audience in mind – before publishing any content, employees should ensure they are not alienating readers that may be current clients, potential clients, or past/current/future employees.
Productivity is essential – social media efforts can only be successful if employees find a proper balance between social media and other work.
Remember to keep it simple so that everyone can easily understand the policy.

Example Social Media Policies

Intel has done an excellent job crafting Social Media Guidelines that are easily understood by employees, separated into 3 Rules of Engagement: disclose, protect and use common sense (as per the image above).
Coca-Cola’s Online Social Media Principles effectively convey the organization’s vision and strategy surrounding social media use for business purposes. Their 5 Core Social Media Values are transparency, protection, respect, responsibility, and utilization.
BBC kept the reader in mind when drafting their Guidance for Social Networking. A Summary of Main Points in the form of a bulleted list ensures that employees will grasp the most essential elements of the policy.
IBM employees helped to create the company’s Social Computing Guidelines, which are continually under review as online social tools evolve.
The UK Civil Service provides a colorful, reader-friendly document titled Social Media Guidance for Civil Servants, which includes an introduction to social media, guidance for various kinds of employees and resources for further information.
Ford Motor Company’s Digital Participation Guidelines are centered on five core principles: honesty about who you are, the clarity that your opinions are your own, respect and humility in all communication, sound judgment in sharing only public information and awareness that what you say is permanent.
Perhaps the most innovative and ‘user-friendly’ social media policy I’ve seen comes from Edmunds Inc, owner of websites built to inform automotive consumers and enthusiasts. Their unique social media guidelines, referred to as Edmunds’ Rules of the Road, are in the form of a welcoming infographic that provides clear, comprehensive and concise information for employees while successfully representing the Edmunds culture.

Share this post:

STAY CONNECTED.
DATA-DRIVEN EMPLOYER
BRAND INSIGHTS.

Our newsletter is exclusively curated by our CEO, Jörgen Sundberg, for leaders who make decisions about talent. Subscribe for updates on The Employer Branding Podcast, new articles, eBooks, research and events we’re working on.

SUBSCRIBE FOR EMAIL UPDATES

Play Video

Recent Articles

Why Activision Blizzard Manages 3 Employer Brands with 3 EVPs

As you can imagine, we talk about EVPs a lot on the Employer Branding Podcast. It’s a distillation of what makes your organization a good fit for potential hires. A shorthand way of saying, “these are my people.” But what...

How Google Adapts Its Global Employer Brand Strategy in APAC

APAC is the fastest-growing region in the world when it comes to digital transformation, with well over half the world’s internet users. It contains 60% of the global population, including over half of the world’s under-25 population, and is projected...

Netflix: From Culture Code to Employer Brand

It’s impossible to have a conversation about company culture without bringing up the famous Netflix presentation, “Freedom & Responsibility Culture.” The 127-slide deck made waves and introduced ideas that are now commonplace, like unlimited paid time off with a radical...

Cookie	Type	Duration	Description
cookielawinfo-checkbox-necessary	0	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary	0	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
csrftoken	0	11 months	This cookie is associated with Django web development platform for python. Used to help protect the website against Cross-Site Request Forgery attacks
JSESSIONID	1		Used by sites written in JSP. General purpose platform session cookies that are used to maintain users' state across page requests.
PHPSESSID	0		This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.
viewed_cookie_policy	0	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Type	Duration	Description
__hssc	0	30 minutes
__hssrc	0
__hstc	0	1 year
__smToken	0	1 year
__smVID	0	4 weeks
_uv_id	0	2 years
ARRAffinity	1
bscookie	1	2 years
language	0
lissc	0	1 year
mc_session_ids[default]	1	5 minutes
mc_session_ids[multi][0]	0	5 minutes
mc_session_ids[multi][1]	0	5 minutes
mc_session_ids[multi][2]	0	5 minutes
mc_session_ids[multi][3]	0	5 minutes
mc_session_ids[multi][4]	0	5 minutes
sc_anonymous_id	0	9 years
UIDR	0	1 year	This cookie is set bu scorecardresearch.com. The cookie is used to tracks the users activity across the internet on the browser such as visit timestamp, IP address, and most recently visited webpages. and may the data send to 3rd party for analysis and reporting to help their clients better understand user preferences.
vuid	0	2 years

Cookie	Type	Duration	Description
IDE	1	2 years	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
uid	0	1 year	This cookie is used to measure the number and behavior of the visitors to the website anonymously. The data includes the number of visits, average duration of the visit on the website, pages visited, etc. for the purpose of better understanding user preferences for targeted advertisments.
VISITOR_INFO1_LIVE	1	5 months	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.

Cookie	Type	Duration	Description
__utma	0	2 years	This cookie is set by Google Analytics and is used to distinguish users and sessions. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmb	0	30 minutes	The cookie is set by Google Analytics. The cookie is used to determine new sessions/visits. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmc	0		The cookie is set by Google Analytics and is deleted when the user closes the browser. The cookie is not used by ga.js. The cookie is used to enable interoperability with urchin.js which is an older version of Google analytics and used in conjunction with the __utmb cookie to determine new sessions/visits.
__utmt	0	10 minutes	The cookie is set by Google Analytics and is used to throttle the request rate.
__utmz	0	5 months	This cookie is set by Google analytics and is used to store the traffic source or campaign through which the visitor reached your site.
_gat	0	1 minute	This cookies is installed by Google Universal Analytics to throttle the request rate to limit the colllection of data on high traffic sites.
YSC	1		This cookies is set by Youtube and is used to track the views of embedded videos.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, camapign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assigns a randoly generated number to identify unique visitors.
_gat_gtag_UA_18716532_1	1 minute	Google uses this cookie to distinguish users.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
GPS	30 minutes	This cookie is set by Youtube and registers a unique ID for tracking users based on their geographical location
hubspotutk	1 year	This cookie is used by hubspot to keep track of the visitors to the website. This cookie is passed to Hubspot on form submission and used when deduplicating contacts.