What encryption do law firms need?

CosmoLex Team

Lawyers have a responsibility to take reasonable steps to protect the confidentiality of their client’s data under four primary ABA rules[1]: Rule 1.1, dealing with competence including that associated with technology Rule 1.4, addressing secure communication Rule 1.6, outlining the duty of confidentiality Rules 5.1-5.3, focusing on lawyer and nonlawyer relationships Individual state bar associations have addressed this as well, … Read More

What is two-factor authentication (2FA)?

CosmoLex Team

Meant to be used as a supplement to passwords, two-factor authentication provides increased security to prevent unauthorized access to account logins. Also known as 2FA, this method adds another layer onto the login process to verify the user’s identity. What it does Two-factor authentication is essentially proving that the person who is trying to gain access to an account is … Read More

How can my law firm use integrations?

CosmoLex Team

Integrations connect different software and tools, allowing them to communicate with one another in order to transfer data and streamline workflow. When used properly, they create powerful efficiencies that reduce the amount of manual work law firms need to do. Integrations are the connections between two different software, allowing data to flow from one to the other. This results in … Read More

What are the advantages to storing my law firm’s files in the cloud?

CosmoLex Team

Law firms that want to maintain exclusive control over their electronic data may choose to store their data on an in-house server kept onsite at the firm’s location. But for firms that are not as concerned about exclusively controlling their electronic data, there are many advantages to using cloud file storage such as[1][2]: Cost Savings A reduction in IT costs … Read More

How do I become PCI Compliant?

CosmoLex Team

To become Payment Card Industry Data Security Standard (PCI-DSS) compliant your firm must determine which DSS apply, and then perform the required tests to determine if your firm meets those standards.[1][2] This process is complicated because there are eight different PCI-DSS A self-assessment questionaires (SAQs) available for you to use to verify your firm’s compliance.[2] Which SAQ applies to your … Read More

How can I export data from my online accounting program?

CosmoLex Team

Most online accounting programs, with the exception of Quickbooks, allow users to export their data into MS Excel or . [1][3] You can export data directly from your generated reports or from the actual screen where you enter the data. You can export all Quickbooks transactions into specialized files such as .tlg or .iif, .qba, or .qbo that can only be … Read More

Do I need my client's permission to store their files in the cloud?

CosmoLex Team

There is only one state, Massachusetts, that recommends that attorneys obtain client consent prior to uploading confidential information into the cloud.[1] A majority of states impose a duty on attorneys to be competent in technology matters and to maintain client confidentiality.[2] These two duties impact an attorney’s ability to store client data in the cloud, but it is the duty … Read More

Should my law firm have its own server?

CosmoLex Team

Although cloud-based storage is secure, convenient, and cost-effective, some law firms prefer not to store confidential client information on a server in the physical control of a third party. For this reason, some law firms consider using an rather than storing their client information on the cloud. If you have the resources to set up, secure, back up, and maintain … Read More

What security must my cloud storage have?

CosmoLex Team

Bar associations recommend that attorneys evaluate the security of cloud storage in the same way they evaluate the security of their paper files by taking reasonable steps needed to safeguard confidential information stored on the cloud. The following are some of the factors attorneys should consider when determining whether a cloud storage service is secure enough to store confidential client … Read More

Do law firms have to worry about ransomware?

CosmoLex Team

is a type of that launches when an unsuspecting victim clicks on a link or attachment found in a “” email.[1][2] Once launched, the ransomware encrypts or locks all of your data files, and may lock each computer workstation and your entire computer network as well. Depending on the severity of the attack it can take weeks or months to … Read More