The URL can be used to link to this page

Home My WebLink AboutMobile Devices in Department FacilitiesIdaho Department of Correction Standard Operating Procedure Title: Mobile Devices in Department Facilities 1 of 5 232.002 Version: 1 Adopted: 02/05/2026 Liz Neville, Chief of Prisons, approved this document and it was published on 02/05/2026. Open to the public: Yes No SCOPE This standard operating procedure applies to all IDOC facilities and all people entering, within, or exiting IDOC facilities. Version Summary Version 1: This SOP replaces SOP 510.02.01.002, Facility Access – Personal Cell Phone v1.0. The SOP is expanded to cover all IDOC facilities and mobile devices. Terminology and definitions were updated to clearly distinguish approved and prohibited mobile devices, unnecessary wording was removed, and references to Idaho Technology Authority policies were added to strengthen security requirements and align with statewide mobile device management practices. TABLE OF CONTENTS Scope ....................................................................................................... 1 Table of Contents ........................................................................................ 1 A. Statutory Authority .............................................................................. 2 B. Board of Correction IDAPA Rule ............................................................. 2 C. Governing Policy Statement .................................................................. 2 D. Purpose ............................................................................................. 2 E. Responsibility ..................................................................................... 2 F. Definitions.......................................................................................... 2 G. Standard Procedures ............................................................................ 3 1. Introduction .................................................................................... 3 2. Prohibited Activities and Devices ......................................................... 3 3. Authorization for Mobile Devices ......................................................... 4 4. Incident Reporting ........................................................................... 4 H. References ......................................................................................... 5 Document Number: 232.002 1 Title: Mobile Devices in Department Facilities Page Number: 2 of 5 Idaho Department of Correction A. STATUTORY AUTHORITY 1. Idaho Code § 20-217A, Appointment of Director – Salary – Powers and Duties 2. Idaho Code § 20-244, Government and Discipline of the Correctional Facility – Rules and Regulations B. BOARD OF CORRECTION IDAPA RULE None C. GOVERNING POLICY STATEMENT It is the policy of the Board of Correction that the Department of Correction ensure the safe operation of all its facilities including the exercise of control over all mobile devices in its facilities. The department recognizes there are serious security and safety concerns involved with having mobile devices within correctional facilities. The procedures in this SOP are to help ensure accountability, tracking, and control of mobile devices and their use in IDOC facilities. D. PURPOSE The purpose of this standard operating procedure is to provide specific guidelines regarding state-owned and personally owned mobile devices brought into IDOC facilities which might have residents or clients. E. RESPONSIBILITY 1. Facility Head Facility heads or their designees are responsible for implementing this SOP and ensuring that IDOC staff comply with the standards and procedures outlined herein. Facility heads may issue a field memorandum to establish additional security measures for tracking mobile devices based on the specific needs of their facility. F. DEFINITIONS 1. Client: A person who has been convicted of a crime against the laws of the state and is on probation supervision as ordered by the court or parole supervision as ordered by the Commission of Pardons and Parole. The term client includes any use in Idaho law, Board of Correction rule, or IDOC policy or procedure of the terms “offender(s),” or any other term referring to a person on probation or parole supervision by the Board of Correction. 2. Facility: A building or residence—including the property and land where the building or residence is located—owned, leased, operated, or managed by the Board or Department. 3. Facility Head: The person primarily responsible for overseeing, managing, or operating a department facility 4. Mobile Device: A handheld or tablet-sized computer that is easily carried Document Number: 232.002 1 Title: Mobile Devices in Department Facilities Page Number: 3 of 5 Idaho Department of Correction and which can be used to access business information. These include, but are not limited to, cellular telephones, smartphones, smartwatches, personal digital assistants (PDAs), enterprise digital assistants, and tablets. A Mobile Device is further characterized as such if it is not otherwise protected, monitored, or managed by traditional automated enterprise tools used for workstations, servers and other traditional IT systems. This definition excludes simple mobile storage or memory devices. 5. Resident: A person who has been convicted of a crime against the laws of the state and ordered into the care and custody of the Board of Correction. Resident includes any use in Idaho law, Board of Correction rule, or IDOC policy or procedure of the terms “offender(s),” “prisoner(s)”, “inmate(s)”, “incarcerated person(s)”, or any other term referring to a person residing in a correctional facility in the care and custody of the Board of Correction. 6. Staff: Any employee, volunteer, intern, contractor, or other authorized person who provides specific services, as assigned or requested by a superior, to meet Department tasks. G. STANDARD PROCEDURES 1. Introduction a. This SOP establishes guidelines for mobile device use within IDOC facilities to ensure security and accountability. b. Authorization of mobile devices depends on the type of facility or work location. c. All authorized mobile devices must adhere to Idaho Technology Authority (ITA) Policy 4550 and IDOC policies. i. Department-issued mobile devices for command staff (i.e., director, deputy director, chief, deputy chief, warden, and deputy warden) are exempt from this SOP and its requirements 2. Prohibited Activities and Devices a. Residents are strictly prohibited from having any access to mobile devices, including viewing or interacting with your mobile device. Staff must not allow residents to interact with a mobile device or its content in any way. b. Personal use of department Wi-Fi for streaming, downloading or viewing unofficial content is not permitted and may compromise network security. c. Taking photos, videos, or voice recordings in IDOC facilities is prohibited unless explicitly approved in writing by the director’s office for official purposes. Staff and visitors must not capture or share images, videos or voice recordings of residents, staff, or facility areas without prior approval. Sharing such content in any manner, including on social media or public forums is forbidden unless approved through official channels. d. Unauthorized mobile devices or devices used in violation of any policy may Document Number: 232.002 1 Title: Mobile Devices in Department Facilities Page Number: 4 of 5 Idaho Department of Correction be confiscated. 3. Authorization for Mobile Devices a. Central Office and District Offices i. Staff are authorized to have personal cellular telephones, smartphones, or smartwatches that comply with ITA Policy 4550 and IDOC policies. ii. Any other mobile devices must be approved by the staff’s district manager, division chief, or designee. b. Residential Facilities i. Staff wishing to carry a cellular telephone or smartphone within the facility must submit a completed Mobile Device Authorization Form for Facilities to the facility head or designated approving authority. The request will be reviewed to verify necessity and compliance with security policies, including any additional requirements outlined in the facility’s field memorandum. ii. Any other mobile device can only be authorized by a letter in writing from the facility head. iii. Mobile devices at a minimum must: 1) Require one or more of the following to unlock the device: a) A password or PIN that meet ITA Standard S6030 – Identity and Authentication b) Biometric (fingerprint, facial scan, etc.) c) Authentication pattern d) Multifactor Authentication solution 2) Automatically lock screen after no more than five (5) minutes of inactivity. 3) Use current manufacturer supported operating systems. 4) Include security software that defends against malicious software and regularly scans (recommended weekly) for security issues. 5) Be kept up to date with the latest antimalware definitions, applications, operating system, and firmware. 6) Devices must use encryption for data storage and transmission (full- disk encryption and secure communication protocols). 4. Incident Reporting a. Any incident involving a mobile device—such as misuse, loss, damage, or security breaches—must be promptly reported to the shift supervisor or facility management. Documentation of the incident must follow the procedures outlined in SOP 105.02.01.001, Reporting of Major Incidents. Document Number: 232.002 1 Title: Mobile Devices in Department Facilities Page Number: 5 of 5 Idaho Department of Correction b. If necessary, the involved device may be secured or disabled during an investigation or inquiry into the alleged misuse. Incidents involving a mobile device in a facility will be investigated and appropriate disciplinary or legal action will be taken. c. Violations of this SOP may result in loss of mobile device authorization, administrative action, termination, or criminal charges, as outlined in SOP 205.07.001.001, Corrective and Disciplinary Action. H. REFERENCES 1. Forms a. Mobile Device Authorization Form for Facilities 2. Cited Documents a. ITA, Enterprise Policy 4500 – Category P4500 – Mobile Device Management [https://ita.idaho.gov/psg/p4550] b. ITA, Enterprise Standards S6000 – Category S6030 – Identity and Authentication [https://ita.idaho.gov/psg/s6030] c. SOP 105.02.01.001, Reporting of Major Incidents d. SOP 205.07.001.001, Corrective and Disciplinary Action 3. Other Significant Documents a. Idaho Code § 18-2510, Possession, Introduction Or Removal Of Certain Articles Into Or From Correctional Facilities [https://legislature.idaho.gov/statutesrules/idstat/Title18/T18CH25/SECT18- 2510/] b. SOP 232.01.01.001, Cellular Telephone for Business Purposes c. SOP 510.01.02.001, Facility Access – End of Document –