Talking Shop: Was this tech's e-mail investigation abuse of power or necessary precaution?

by Becky Roberts | Oct 28, 2002 8:00:00 AM

Tags: Becky Roberts

Takeaway: Read an example of when an IT pro may have let his power overstep ethics.

Our "What would you do?" column is a forum for sharing your knowledge and experience in dealing with the softer side of computer support. Every two weeks, I will present a scenario that requires more than a technical solution. Each situation will be an accurate description of an actual event, with the names and other identifying factors changed to protect the innocent—and sometimes not so innocent.

I will first present the outcome and discussion of a scenario from a previous week. Then, we'll jump right in to the next problematic situation. So without further ado, here are your responses to our column "Employee borrows company equipment for personal use: How should IT respond?"

Case of the missing Zip drive
With the exception of a few readers who felt that Mark had done nothing wrong in borrowing the Zip drive, the overwhelming consensus was that, at minimum, the tech should:

• Begin securing his equipment.
• Suggest an addition to the company policy regarding the use of computer equipment for noncompany purposes.
• Confront Mark and/or report the incident to Mark’s boss or the IT manager.

Much of the discussion focused on the degree of heinousness of Mark’s actions; many members offered suggestions on whether he should be asked politely not to do it again, be fired, or be arrested. Some felt that the tech should also bear some responsibility for the incident because he had failed to secure his equipment.

Unfortunately, many of the actions suggested would, in most companies, be beyond the authority of the tech. Some extreme actions could seriously jeopardize the tech's relationship with the employee if the tech did not receive managerial support for his actions. “This guy should make no political moves whatsoever, except to inform his boss of the situation," wrote Aaron_lvs_IT. "It is important for a support technician to establish and maintain a good working relationship with everyone.”

So what did the tech actually do?
After considering the situation for a couple of days, the tech unofficially reported the incident to his boss. The tech felt considerable conflict in so doing, because the company was lax on taking appropriate action to correct such problems. The tech was afraid Mark would receive a slap on the wrist and then try to make the tech’s life miserable for reporting him.

The tech’s boss reported the incident to his own boss who was also disturbed by the incident and was already aware of Mark’s tendency to misuse company time/resources. As of this date, however, nothing has been said or done to Mark. Our tech now locks his office, has suggested that an explicit statement be added to the company computer usage policy regarding the use of company equipment, and has informed Mark of his rates for consulting outside company hours. We'll continue to track this case, so stay tuned for future updates.

Tech reads user e-mail: Abuse of power or necessary action?
This week's scenario is a little complicated, but all good detective stories are. Once you've looked it over, I hope you'll take a moment to comment.

---

Update: So what really happened?
To learn the outcome of the scenario outlined below and get a recap of the comments and suggestions given by TechRepublic members, click here.

---

A tech is called into the IT manager’s office and is told that Marcus, a secretary, has complained to the IT manager's boss, the IT director, that the tech treated him very discourteously when denying his request for help downloading clip art from the Internet. The manager instructs the tech to meet with Marcus, discuss his clip art needs, and make an appropriate purchase. Furthermore, the tech should treat Marcus' request as a top priority.

Because our tech takes prides in his customer service skills, he is deeply disturbed by Marcus' complaint. The entire conversation perplexes the tech, since he can remember no such request from Marcus. Regardless, he agrees to quickly resolve the issue and leaves the IT manager's office.

A little IT detective work
The tech immediately consults with other techs and reviews the help desk logs, but he finds no record of Marcus' request. This leads him to suspect there is more to this situation than meets the eye. Unfortunately, the tech feels unable to address Marcus directly without first knowing all the facts. To investigate the matter on his own, our tech exercises his privilege as an e-mail administrator to access Marcus' company mailbox.

Even though the company has a written policy stating that there is no expectation of privacy when using the company's e-mail system, the tech feels a little uncomfortable in taking this approach but doesn't feel he has any other option. Almost immediately, he finds the e-mail that started the incident.

Marcus had sent an e-mail to the IT director's secretary complaining about several IT procedures. In particular, Marcus mentioned that he disliked having to send an e-mail requesting assistance when the help desk office was just down the hall.

On several occasions, Marcus had walked into the support techs' offices and been informed that the help desk could not help him until they had received an e-mail request. Marcus had found this response personally offensive. Marcus also objected to the policy forbidding users from installing their own applications; he was disappointed to discover that this policy included clip art downloaded from the Internet.

It all makes sense now
The tech now understood the source of Marcus' complaint and deduced that as the complaint had been filtered through the IT director's secretary, the IT director, and finally the IT manager, it had lost something in the translation. But what should he do about it? Should he proceed to purchase a clip art program for Marcus as instructed, or should he try to address the underlying issue—Marcus' resistance to follow company policy?

Following the IT manager's instructions would ensure that the tech remained in good standing, but it would also serve to perpetuate Marcus' belief that he doesn't need to follow standard IT procedures, which would set a bad precedent for the other users. On the other hand, attempting to address the underlying problem could require the tech to reveal that he read Marcus' e-mail.

What would you do?
After reading this scenario, if you have ideas about how a satisfactory resolution might be achieved, send them to us. Don’t hold back and don't be afraid to be creative. And if you've ever encountered a similar situation, we're particularly interested in hearing the steps you took to achieve a resolution.

You can submit your ideas either by sending us e-mail or by posting a discussion item at the end of each column. A week after the publication of a scenario, we'll pull together the most interesting solutions and common themes from the discussion. We will later present them with the situation's actual outcome in a follow-up article. You may continue to add discussion items after the week has elapsed, but to be eligible for inclusion in the follow-up article, your suggestions must be received within a week of the scenario's publication.

Print/View all Posts Comments on this article

Right -vs- Perpetuating WrongTech60  | 10/27/02

do and documentDebbi Irene  | 10/27/02

insubordination and snoopingtechnology@...  | 10/31/02

ResponsibiltyPrincipal Business Analyst  | 11/01/02

Dissenting Opinion.Affin55  | 11/03/02

Take the high roadrpwinfree@...  | 10/27/02

Turn this to the Tech's advantageSheena  | 10/28/02

Be careful...montereale  | 10/28/02

Like training a puppyRicoRueter  | 10/29/02

This is exactly what you need to do!Duane Pelkey  | 10/31/02

I agreeslam5  | 10/31/02

Take a higher roadKen@...  | 10/31/02

Higher road 2Ken@...  | 10/31/02

Bravotahliathomas  | 11/01/02

Well Putintec224@...  | 11/20/02

No icons for Marcus...Donald Wood  | 10/31/02

OK...kinda..WJ  | 10/31/02

Do your job fully!johncymru  | 11/01/02

Request a copy of the complaintiswww@...  | 10/28/02

I like this approachhgmeyer@...  | 10/31/02

Request a copy of the complaintiswww@...  | 10/28/02

Use your political skills accordinglydsteckham  | 10/28/02

Same ProblemOZZIEDAZZA  | 10/28/02

Fact of lifeJustinF  | 10/28/02

Politicschazdonna@...  | 10/31/02

CYAlgjr@...  | 10/28/02

and a reflection on gray zones of policyraymond@...  | 11/05/02

A gray area in abuse of powernick.espinosa@...  | 10/29/02

Go by the bookjrandrup@...  | 11/01/02

IT never gets it!SouthernPlaid  | 11/01/02

Lets go back to Win95 workgroupsSecuritytech  | 11/01/02

It's not IT who don't get it.johncymru  | 11/01/02

Making "expert" users happyTonyG324  | 11/01/02

It's about Respect!frankl27  | 11/25/02

End Users Often Don't Get IT Either!robertlong1234  | 06/20/03

the bottom linegrowl86@...  | 11/01/02

Abuse of powerHGIC2  | 11/04/02

de-TECH-tivetechnology@...  | 11/05/02

two issuesGeorge Ewing  | 11/06/02

Downsize Marcusbjorgensen@...  | 11/06/02

Amen and Amenpj@...  | 06/20/03

Stay out of the email.....luhmpei  | 06/20/03

IT DIRECTOR GOING DOWN WRONG ROAD!NYCGRIFF  | 06/20/03

E-mail investigation: Abuse of Powerameltzer@...  | 10/27/02

Been thereSA_Support  | 10/27/02

Post, perhaps 1/4 IT policy reminder.tracy@...  | 10/28/02

Going into Email unnecessaryVB Jeebies  | 10/28/02

Necessary precautionC_M_S  | 10/28/02

How's this?A_TECH_4_U  | 10/28/02

Email is protected by privacy lawstedwilliams@...  | 10/28/02

Not under US Lawaaube  | 10/30/02

Your are correctJimHM  | 10/30/02

Legaly, Yes...in Practice, Nosquirejoe@...  | 10/31/02

I totally agreeJimHM  | 10/31/02

Lying about a colleague is ethical?johncymru  | 11/01/02

Not as legal as you might thinkmlewis@...  | 10/31/02

Having the right doesn't make it right!GeeLove  | 11/01/02

Not the issueKen@...  | 10/31/02

No expectation of PrivacyGM@...  | 10/31/02

Time to drop pure-techie attitudeKahindo  | 10/28/02

IT Dir. didn't know it was a policy issuwabbyl  | 10/31/02

No need to read e-mailjzambrana@...  | 10/31/02

I concur: Abuse of PowerGeeLove  | 11/01/02

Procedure are there for a reasonallways_something  | 11/01/02

Within the scope ot the Tech's joblaw1938  | 10/27/02

Speak Roman while in Romeiisguru  | 10/31/02

Wrong ApproachArt66  | 10/27/02

No need to go through client's emailKristyle  | 10/27/02

Agree with this responseccue  | 10/31/02

My Experience in the CF Forces for IT.un_canadien_errant  | 10/28/02

Un Autre CanadienKen@...  | 10/31/02

Address Non-compliance first.Padmaja  | 10/27/02

Something Missingjason.schell@...  | 10/27/02

Do your job well; no need to blamedfmaestro  | 10/28/02

I agree JasonBlue Collar  | 10/28/02

Power abuseIT Gal  | 10/28/02

The real problem.Ken@...  | 10/31/02

Help, then regain respectMikeH954  | 10/27/02

Management LackingSgt. TechHead  | 10/27/02

Manager washed hands off itblue.sun  | 10/28/02

I agree ...Lorraine Francke  | 10/28/02

E-mail investigationRolf Gitt  | 10/27/02

Abuse of PowerIT_Analyst-Admin  | 10/27/02

re:Abuse of PowerB Campbell  | 10/27/02

Not an abuse of powerThurston, RJ  | 10/27/02

Throw out the policy?Ken@...  | 10/31/02

Moral Issue, toowyldwezl  | 10/27/02

Missed OpportunityCdnITMgr  | 10/27/02

Communicationkmatos1  | 10/27/02

Help Me Understand...Catadmin  | 10/28/02

E-mail responsetonn@...  | 10/27/02

tech reads user e-mailsandedzim  | 10/27/02

E Mail Investigation.bruceslog  | 10/27/02

My 0.02 $blue.sun  | 10/28/02

The Golden Childmbaron@...  | 10/28/02

My 0.02$blue.sun  | 10/28/02

Follow bothSuperBoy  | 10/28/02

I think the tech should go to his boss and expl...Bill_Shane  | 10/28/02

First Meeting - with Boss and Marcus'JimHM  | 10/28/02

management knee jerk reactionironfist03  | 10/28/02

Clarify Protocol with Bossdavid_reed@...  | 10/28/02

Clarify Protocol with Boss - MOREdavidg@...  | 10/28/02

Clarify Protocol with Boss - MOREdavidg@...  | 10/28/02

Following the trailmrwizard10  | 10/28/02

Do then Ask.mattohare@...  | 10/28/02

Be up front and deal with the individualHelp Desk Team Leader  | 10/28/02

IMHOmbaron@...  | 10/28/02

E-mail investigationwes_kosior@...  | 10/28/02

Bad to read e-mail, but....CAnetengineer  | 10/28/02

Policy?PJVDHSR  | 10/28/02

Email investigation on the money Part 1georgec@...  | 10/29/02

Email investigation on the money Part 2georgec@...  | 10/29/02

Privilege, not "rights"RealMe  | 11/01/02

In your situationgeorgec@...  | 11/03/02

However, the tech stated that s/he felt uncomfo...RealMe  | 11/06/02

Wrong to check emailGSG  | 10/29/02

OKAYGM@...  | 11/08/02

Not the best way of going about itMrsPost  | 10/31/02

Bounds of responsibilityGlenn@...  | 10/31/02

Abuse of power or necessary action?noorman  | 10/31/02

Marcus - there is one in every company!ceejaythompson@...  | 10/31/02

The Tech was wrongekelly@...  | 10/31/02

IT service is bad - Marcus is a symptombraunmax  | 10/31/02

May not necessarily be bad service.wabbyl  | 10/31/02

Trouble here - be carefulrobertemcclellan@...  | 10/31/02

Wrong and UnfortunateIT Ken  | 10/31/02

Wrong to access E-Mailgracom@...  | 10/31/02

IT snoop unwarrantedLadyLAN  | 10/31/02

Not Abuse This Timeklb@...  | 10/31/02

Playground Politicsderiths@...  | 11/01/02

Be straightAntagonist  | 10/31/02

Communication FailureHatGuy  | 10/31/02

Tech Should be Fired!tracyb@...  | 10/31/02

Do Your Job - Just Handle with Care!!Another Tech.  | 10/31/02

Focusing on the wrong issue.shraven  | 10/31/02

Go to the sourcedrix-67  | 10/31/02

What would I do~Webadmin  | 10/31/02

Marcus isn't specialtariello@...  | 10/31/02

Following proceedure...doug.owen@...  | 10/31/02

Depending onslam5  | 10/31/02

What a CrockMy Unique Name134  | 10/31/02

Explain policies when issued.Todd@...  | 10/31/02

My 2¢ worth...CjnLdy  | 10/31/02

It's all about trust.RQV  | 10/31/02

IT Nazisjstuber@...  | 10/31/02

Corporate IT policies apply to all...DoughRamey  | 11/01/02

Between a rock and a hard placeBad Dog  | 11/01/02

The go around customerbearwa  | 11/01/02

work around itphildunbarusa@...  | 11/01/02

Let us be policticala.techno.geek  | 11/01/02

I don't think I would have gone that roubackward@...  | 11/01/02

Use diplomacy without fearviasys@...  | 11/01/02

Abuse of power or necessary precaution?jim.chappelear@...  | 11/01/02

I was on the Tech's side at first but...Cactus Pete  | 11/01/02

in conclusion...Cactus Pete  | 11/01/02

Policy review time again...Securitytech  | 11/01/02

Regardless of Admin Authority . . .RealMe  | 11/01/02

Proper use of system accessJMEngman  | 11/01/02

Tech Should Resign2827  | 11/01/02

Shoot the Messengerjohncymru  | 11/01/02

Slippery Slopesysadmin@...  | 11/01/02

e-mail investigationmoney@...  | 11/01/02

Lack of people skills.joaquinz  | 11/02/02

Much Higher Level!!!2jpenajr@...  | 11/02/02

Play it Safepawaskar@...  | 11/02/02

More Than a Zip Here!CobolKid  | 11/03/02

More Than a Zip Here!CobolKid  | 11/03/02

Use his own wordsvrivera@...  | 11/03/02

clfarriacfarria@...  | 11/04/02

What's the problem?ratz_7  | 11/05/02

Act as a buffer.punkdom@...  | 11/05/02

Expose Marcus for the jerk he isReverend Hacker  | 11/17/02

Email snooping is a fireable offense...danananan  | 11/19/02

lawsuit waiting to happenjimcarney6@...  | 11/26/02

No win situation - none deservedron_r_a  | 11/25/02

Not a problem.W.E.  | 06/20/03

Information, Clarity, and CommunicationInfoFreak  | 06/20/03

Just the facts ma'mPrimaTech  | 06/20/03