A best practice in cybersecurity is to set computers to automatically lock, shut down, and require a password or login after a period of inactivity. This helps prevent unauthorized access if the device is left unattended.
“Locking computers when not in use and requiring passwords after periods of inactivity is an essential safeguard to protect sensitive consumer data.”
— FTC, Cybersecurity for Small Business; GLBA Safeguards Rule
Other options are not best practices: laptops may need to leave the office, should not be shared, and passwords should never be shared with anyone.
[References:, , FTC, Cybersecurity for Small Business, , SAFE MLO National Test Study Guide, , ]
Submit