Abacode urges all attorneys to have security programs tailored to the size of the firm and the data and systems to be protected.
Ethics rules require attorneys to take competent and reasonable measures to safeguard information relating to clients. In addition, attorneys also have contractual and regulatory obligations to protect information relating to clients and other personally identifiable information, like health and financial information. However, in 2019, just 25% of law offices reported having an incident response plan in place.
Furthermore, compliance requires attorneys to understand limitations in their knowledge and obtain information to protect client information, to get qualified assistance, or both. These obligations are minimum standards—failure to comply with them may constitute unethical or unlawful conduct. Abacode helps legal organizations to fill this gap by identifying current cybersecurity vulnerabilities and designs the necessary framework to mitigate these risks.