I have been meaning to do this for some time now, so here goes. Apologies for the graphics – couldn’t find a graphic for “10″ quickly enough.
When you sit in a room full of lawyers, all trying to understand Legal Outsourcing for the first time, it is fascinating to see where the conversation goes. I am going to come back to the range of issues they discuss in the coming days, but for now, I wanted to capture the broad IT-related issues that are typically raised.
Here is the top ten, in no real order:
- Where are the LPO’s server located? Also, can you tell the LPO where you want the servers to be located?
- What accreditation do you have? ISO 27001 is ideal, but don’t assume that accreditation is enough.
- What is the back up plan?
- What is your disaster recovery plan?
- What location access is there – getting in and out of buildings, secure zones etc
- How do you prevent data and information leaving the area e.g. USB drives, cameras, phones, searches etc
- Do you use encryption for data?
- What email monitoring do you do?
- What confidentiality agreements do you have with your staff?
- How do you deal with breaches in security?
Most of these are pretty easy to deal with and LPOs are used to being asked them. However, individual law firms or General Counsel should be reassured that they are not the only ones with real concerns in these areas.
I can walk you through these issues and what you need to hear from any potential LPO supplier.
By Edward Brooks