If this is for BYOD then some policy needs to be set up. If this is for company owned devices, the company should be able to lock down the device as they choose. If the company is worried about data "leakage" then flash drives, cloud services, smart phone USB tethering and any other way to access their company information network need to be included in the "lockdown" mix.