Law firms are responsible for some of the most sensitive information in our society. This is why the American Bar Association created ethics rules related to the protection of this information. The ABA ethics rules require attorneys to take competent and reasonable measures to safeguard information relating to clients (ABA Model Rules 1.1 and 1.6 and Comments).

Such information includes: client financial information, lawsuits, proprietry client and business info, bank statements, tax returns, personal client financial data, credit data...the list goes on and on. (See the Compliance Requirements and Sensitive Data info above). And while it is true that some of the larger law firms have done a good job protecting the data they are responsible for, the great majority of law firms have sadly neglected their responsibilities in this area - despite much (and increasing) regulatory pressure. As a result, these firms have exposed their clients, employees, and themselves to much unnecessary cybersecurity and regulatory risk.

Additionally, law firms that do not protect their assets within a professional security environment are unintentionally decreasing the value of their companies. Cybersecurity is now a critical component of business valuations. See our cover story article in the NACVA publication.

And the necessary move to more remote work is increasing these risks because remote work increases the attack surface into your networks. We urge you to take a close look at our free Remote Work Cybersecurity Program. It will help you address this new business risk.

Also, please take a look at our Turnkey Cybersecurity & Privacy Programs that match your business size and other requirements. We offer the only comprehensive, turnkey programs for small to medium-sized businesses. Our programs include direct hands-on support from us to ensure that you are actually able to build a program that protects the data you are responsible for. We find that most smaller law firms cannot build a professional program that actually protects data and meets compliance requirements without this support. We provide superior support.