Law firms are clear targets for hackers, in part because they maintain confidential data and financial information about their clients — oh, and they’re also viewed as not the most tech-savvy business owners ever. So, there’s that.
How can a law firm best protect itself in this environment? Well, there is, perhaps, more statutory and ethical guidance, than you might expect.
That’s why we brought Dan Erskine, lawyer and business owner, into the Non-Eventcast virtual studio, to talk it all over.
Dan starts by talking about the current regulatory framework in the United States (4:42). He also covers how law firms must have an understanding of the technology they use, including the data security components of those tools (7:01).
Then, Dan addresses how law firms should go about vetting technology providers, with respect to their data security programs (19:04), which includes reviewing appropriate contracts, like service level agreements (21:36).
Next, Dan covers how law firms can further protect themselves by employing internal data security measures (26:15), before discussing whether cyberinsurance is worth it (28:34).
If you’re worried about the security of the confidential information you store at your law firm, there are some simple steps you can take to better secure your data.
Feel free to also visit the Practice Management section of the Non-Event for more podcasts and commentary, along with your guide to the latest resources. (The Non-Event is supported by vendor sponsorships.)
Jared Correia, a consultant and legal technology expert, is the host of the Non-Eventcast, the featured podcast of the Above the Law Non-Event for Tech-Perplexed Lawyers.