Growing Concern for Cloud Based Software – Is Yours Certified?

August 7, 2015

CloudWhile they may appreciate the benefits of cloud services, many small firm attorneys are seriously concerned about the security of confidential information—and they should be.

A 2014 study conducted by the Poneman Institute found an average of 31% of businesses’ confidential or sensitive documents are leaked every year. How would you like to have to explain to your client that they system you chose leaked their matter’s files? In a time when clients are demanding more for less, talking to your client about why a generic cloud-based matter management system was not secure enough for their legal documents could cost you their business.

In the legal market, software-as-a-service (SaaS) solutions provide a space where attorneys not only manage files but work from a single entry point to access legal research, draft documents, bill time, and handle sensitive client information.

What if this client information, these legal files or even your billings were compromised? Could it happen? With practice management tools flooding the market, how can you tell the difference between the trulysecure options and the software that could end with you spending thousands of dollars in fines and fees to recover from a breach?

S030192Take these two easy steps, when shopping for a practice management system, to ensure that your firm’s data is safe and secure:

  1. Check for a security rating: Security standards for cloud-based software have been developing over time with several rating systems now available. One such service, the SSAE16, focuses on auditing standards for service organizations. Before deciding on which practice management provider your firm wants to use, make certain they are SSAE certified.

Thomson Reuters’ Firm Central recently obtained SSAE SOC2, Type 2 Certification which provides assurance of adequate control systems in place to safeguard customer data and information. Predefined Trust Services Principles and criteria around security, availability, process integrity, privacy, and confidentiality make the SSAE SOC2 certification one of the most trusted security ratings in the industry. To learn more, go to: http://www.aicpa.org/InterestAreas/FRC/AssuranceAdvisoryServices/Pages/AICPASOC2Report.aspx

  1. Look for built-in security features: Review the checklist 4 Things Law Firms Need From a Legal Cloud Services Provider before committing to a vendor. It provides an in-depth look into the specific security features you should seek when selecting the best practice management system for your firm.

Thomson Reuters’ Firm Central offers all of the features mentioned in the checklist so you can feel confident that your data…and your client’s business…is secure.