Then there was the less than ideal hospital honour system.

"Doctors accessed patient databases and hospital scheduling systems via unmanaged and unsupervised BYOD practices," Girard said.

Girard also spoke about how a mobile honour system failed when IT operations at a company enabled Microsoft ActiveSync through the firewall, however there was no credentials process in place.

In additions to setting limits on data exposure, Girard recommends that IT administrators also limit access to a certain extent.

"Have email pass through certification control and a basic MDM security policy in place," he said.