All Of Your Client Data Is In The Cloud … Is This Safe?

At long last, the legal sector is getting with the program. Adoption of legal technology is on the rise. Lawyers are starting to use legal practice management software to enhance the productivity of their practices. With cloud-based applications, lawyers can easily store and access all of their legal documents and client information in one portable device in any location at any time of the day.

As a lawyer, one of your top priorities is to maintain the confidentiality of your client. You might find it daunting to store your legal documents on a portable device rather than refer to physical documents within the “safe confines” of your office. This greater reliance on technology may stir up questions about safety and security.

Here at CARET Legal, we take the security of your data very seriously. As stated in our Terms of Service, “we employ industry-standard best practices for storing and transmitting your content to protect its integrity and safeguard it against unauthorized use or access.” But you may be wondering, what exactly does this mean? Let us explain….

Q. Is “the cloud” safe to use for my client’s files?
A. All data is transmitted from CARET Legal’s servers to your devices via bank-grade SSL encryption which ensures your data is safe at all times, even when using CARET Legal on non-secure public Wi-Fi networks. To protect the privacy of your data, we employ two-factor authentication for sharing access to new users, strict password strength requirements and detailed logging of activities within an account.

Q. Is it safe to enter legal account information into legal practice management software?
A. CARET Legal is deployed on the Amazon Web Services (AWS) platform. Documents and data are protected by Identity and Access Management roles internally. Only those with the title of “Administrator” can gain access to every aspect of the firm through CARET Legal. If an employee is marked as “Staff” by an Administrator, he or she does not have access to Time, Expenses, Invoices, and General Ledger within the Accounting feature of CARET Legal. These permission levels make your account information more secure internally within your firm. And if your firm accepts credit cards, CARET Legal integrates with LawPay, the leading credit card processing company for attorneys which complies with the strict standards of the ABA and state bar associations nationwide.

Q. Should I be worried about hackers? 
A. Within CARET Legal, we use automated probing services provided by external security companies to scan every 24 hours for potential vulnerabilities in our applications, systems and networks. In addition to our automated services, human security experts employ strategies that allow them to identify and address latent hazards within our applications and infrastructure.

Our security system can also identify internal abnormal activities, which could indicate that a brute force attack is underway (trial and error guessing of numbers and letters to gain access to your account). If this occurs, our system will utilize a variety of measures to prevent unauthorized access to your data.

Q. Is CARET Legal compliant with prevailing security standards? 
A. Our infrastructure resides at AWS facilities which have achieved compliance with an extensive list of global quality and security standards, including ISO 9001, ISO 27001, SOC 1/ISAE 3402, SOC 2, and SOC 3, PCI DSS and HIPAA.

Rest assured. Your security concerns are our concerns. Now you can get back to business.

Stay Connected
Stay up to date with CARET Legal