Hello I started at this company I think they might be monitoring my data-from my phone. They had me set up a company email they used my cell to set it up I told them I rather not can they monitor it just with just my cell number being in the company email that was set up for me
iPhone 8, iOS 16
Since the question is lacking in details, I will make the assumption that your company email is on either Microsoft or Google. When you claimed your email address, you were prompted to provide your cell number either as a recovery method or as a means of multifactor authentication. You do not mention being required to install an app like Microsoft Authenticator or Google Authenticate so I will assume they are not requiring app based multifactor.
In either case, providing your cell phone number in no way grants monitoring capabilities beyond what checking mail will provide if you did not provide a cell number. Let me explain. Every time a device logins in to a corporate mail system it will send the IP address from where it checks in. While this is not as precise as geo-location, it is generally geographically narrow. But, if you are an employee of the organization, they already know you cell number, your home address, your SSN number, and plenty of other personal items. So, the mail system recording your IP address is not exactly revealing anything of significance unless you decide to call in one day claiming you are sick and then your device is recording logs ins from a vacation spot.
Apple is very conscious about device security. If you provided a cell number, that does nothing but provides function for security or recovery. The only time an organization gains visibility of your device is if you enroll the device into an MDM. There are many levels, starting with a BYOD enrollment which is very limited and the corporate delivered apps and settings are sandboxed from your personal data. The next level up is user-initiated. It is my opinion that no corporation should ask an employee to enroll a personal device into a corporate MDM at this level. While there are still personal/business separation, a user-initiated enrollment opens up about 85% of the MDM spec and that can be too invasive on a personal device.
Bottom line is that if you are uncomfortable using your personal device for work, don't do it. However, if the only thing you provided is your phone number for either recovery or security, relax. This provides no additional monitoring beyond what checking mail already provides.
Since the question is lacking in details, I will make the assumption that your company email is on either Microsoft or Google. When you claimed your email address, you were prompted to provide your cell number either as a recovery method or as a means of multifactor authentication. You do not mention being required to install an app like Microsoft Authenticator or Google Authenticate so I will assume they are not requiring app based multifactor.
In either case, providing your cell phone number in no way grants monitoring capabilities beyond what checking mail will provide if you did not provide a cell number. Let me explain. Every time a device logins in to a corporate mail system it will send the IP address from where it checks in. While this is not as precise as geo-location, it is generally geographically narrow. But, if you are an employee of the organization, they already know you cell number, your home address, your SSN number, and plenty of other personal items. So, the mail system recording your IP address is not exactly revealing anything of significance unless you decide to call in one day claiming you are sick and then your device is recording logs ins from a vacation spot.
Apple is very conscious about device security. If you provided a cell number, that does nothing but provides function for security or recovery. The only time an organization gains visibility of your device is if you enroll the device into an MDM. There are many levels, starting with a BYOD enrollment which is very limited and the corporate delivered apps and settings are sandboxed from your personal data. The next level up is user-initiated. It is my opinion that no corporation should ask an employee to enroll a personal device into a corporate MDM at this level. While there are still personal/business separation, a user-initiated enrollment opens up about 85% of the MDM spec and that can be too invasive on a personal device.
Bottom line is that if you are uncomfortable using your personal device for work, don't do it. However, if the only thing you provided is your phone number for either recovery or security, relax. This provides no additional monitoring beyond what checking mail already provides.
Is my company monitoring my data from my phone
