Computers and businesses and law suits and crime – your worst nightmare - I mean worst~!!
If a company has a policy that all data is to be destroyed on some schedule – and it is followed they can not be faulted in court Just so long as they had no knowledge of a litigation. If they have knowledge of a litigation they may find it wise to preserve data.
I advise my business clients to:
1.) Disallow computers from being used to communicate sensitive information. This is hard because most employees cant understand why a great many things should never be made digital and permanent. They just don't get it.
2.) Back up needed data and physically destroy hard disks replacing them every six months. Yup destroy them as in a shredder or fire. There is no known data erasure method that can prevent the police form recovering deleted and over written data. Nothing can do it. Nothing. Ya gotta destroy the disk in the drive.
Most larger companies have made all their desk top PCs dumb terminals again. Some don't allow hard drives at all (this is the best solution).
The reason I make that advice is simple. People misbehave.
Sometimes they don't know it.
Sometime they don't know how damming the material they are making digital - and permanent - can be.
Sometime the people who are misbehaving are not associated with that computer or company at all but, invaded it from outside.
Examples of what can go wrong run the gamut from employee e-mails talking about company business or fellow employees later being subpoenaed and used in a lawsuit -(whenI subpoena computer information I subpoena everything on the company computers having it imaged by a service – I get everything on every computer- period) - all the way to the far far end where some poor bastard logged onto a site (such as a Peer to Peer site that has interesting video or music or games) and ended up getting infected with a stealth-bot program that used the company computers to warehouse and transmit child porn ( yes it happens exactly like that). One particular company in PA had this happen. The horror is that the company is small and not publicly traded. This meant that the prosecutors went after the poor SOB who owned the company - even though he didn't use that computer. He is defending - right now- felony charges of trafficking in and possession of child porn.
Or the small business which uses shitty security and a radio router who gets hacked from the parking lot VIA laptop and used to do the same vile thing.
Once the police find evidence of kiddie porn it makes no difference whether you knew of it or even had the technical savvy to decrypt it and see it. It's like heroin - if it's on you, it's yours.
This happened to two kids that I know of, one in the S. West (tinyurl.com/yzvass) and another in PA. Kids on P-to-P networks got their boxes turned into stealth bots for child pornographers and the prosecutors were didn't care that the kids never knew and couldn't have discovered it 'cause of the high level encryption. They were implacable. Both of those kids found a resolution but not until after they each spent maybe a hundred thousand dollars on legal defense fees, incurred ruined lives and reputations.
So I advise all my clients to make it company policy to remove and physically destroy all hard disks every 6 months.
If a company has a policy that all data is to be destroyed on some schedule – and it is followed they can not be faulted in court Just so long as they had no knowledge of a litigation. If they have knowledge of a litigation they may find it wise to preserve data.
I advise my business clients to:
1.) Disallow computers from being used to communicate sensitive information. This is hard because most employees cant understand why a great many things should never be made digital and permanent. They just don't get it.
2.) Back up needed data and physically destroy hard disks replacing them every six months. Yup destroy them as in a shredder or fire. There is no known data erasure method that can prevent the police form recovering deleted and over written data. Nothing can do it. Nothing. Ya gotta destroy the disk in the drive.
Most larger companies have made all their desk top PCs dumb terminals again. Some don't allow hard drives at all (this is the best solution).
The reason I make that advice is simple. People misbehave.
Sometimes they don't know it.
Sometime they don't know how damming the material they are making digital - and permanent - can be.
Sometime the people who are misbehaving are not associated with that computer or company at all but, invaded it from outside.
Examples of what can go wrong run the gamut from employee e-mails talking about company business or fellow employees later being subpoenaed and used in a lawsuit -(whenI subpoena computer information I subpoena everything on the company computers having it imaged by a service – I get everything on every computer- period) - all the way to the far far end where some poor bastard logged onto a site (such as a Peer to Peer site that has interesting video or music or games) and ended up getting infected with a stealth-bot program that used the company computers to warehouse and transmit child porn ( yes it happens exactly like that). One particular company in PA had this happen. The horror is that the company is small and not publicly traded. This meant that the prosecutors went after the poor SOB who owned the company - even though he didn't use that computer. He is defending - right now- felony charges of trafficking in and possession of child porn.
Or the small business which uses shitty security and a radio router who gets hacked from the parking lot VIA laptop and used to do the same vile thing.
Once the police find evidence of kiddie porn it makes no difference whether you knew of it or even had the technical savvy to decrypt it and see it. It's like heroin - if it's on you, it's yours.
This happened to two kids that I know of, one in the S. West (tinyurl.com/yzvass) and another in PA. Kids on P-to-P networks got their boxes turned into stealth bots for child pornographers and the prosecutors were didn't care that the kids never knew and couldn't have discovered it 'cause of the high level encryption. They were implacable. Both of those kids found a resolution but not until after they each spent maybe a hundred thousand dollars on legal defense fees, incurred ruined lives and reputations.
So I advise all my clients to make it company policy to remove and physically destroy all hard disks every 6 months.
posted by:
|
-
Re: Legal Advice Freebie
Thu, March 6, 2008 - 10:44 PM
Very reasonable suggestions. Further, I'd advise anyone to develop a formal response to this problem by creating an Acceptable Use Policy. An AUP is a standard document presented to the employee during the hiring round, and sets a precident for management to communicate its expectations unambiguously over the use of electronic assets.
I happen to have a sample AUP on my website:
www.micklerandassociates.com/doc...html
And, there's also a sample Data Retention and Archive Policy, which speaks to Cliff's data destruction ideas.
s1m0n -
-
Re: Legal Advice Freebie
Fri, March 7, 2008 - 12:08 AM
Cliff, are you suggesting that the backups are kept secret along with that written policy of the destruction of the data on schedule? -
-
Re: Legal Advice Freebie
Fri, March 7, 2008 - 6:32 AMOnly back up the data that is business specific and which must be retained for a business purpose.
everything else gets destroyed.
Keep only what you need; destroy the rest and don't ever put anything in writing or in digital format if it could ever possibly be construed as sensitive - even in your wildest imaginings - speak it in private."
No one can subpoena your memory.
-
-
Re: Legal Advice Freebie
Sun, March 9, 2008 - 8:39 AM
Well, with all respect to Cliff's advice, this is inacurate due to the new eDiscovery rules implemented by the US in Dec 2006. Ignorance and destruction of information as a way to avoid self-incrimination is not quite this simple... this article could be of use:
ezinearticles.com/
s1m0n -
-
Re: Legal Advice Freebie
Sun, March 9, 2008 - 2:02 PMI'm well aware of the new rules and how quickly the judiciary are coming up to speed on it.
I'm unclear why you think that data destruction is a bad thing. I can only guess that you are not an attorney and don't know what you are talking about. I am an attorney and I have taken the same courses that the federal judiciary are taking. Not that it matters.
Destroying information is entirely lawful. Imagine a world where you were required to maintain every single bit if data for ever on the off chance that some court or some government agency might someday want to see it?
The one exception to your freedom to destroy any information you want is when you know that there is a litigation pending and that information is or may be relevant.
If Phillip Morris had a company policy that mandated the destruction of old lab results and inter company communications and they burnt the records before the law suits were filed they'd have had no problems with all those damming documents that said how dangerous tobacco was and how they were going to conceal it. They could have relied on the fail and fleeting memories of mere humans. Instead they had these hard and undeniable documents sitting there in the court room as evidence that they all knew they were killing people for money.
At any rate: Go read your article again. You didn't read it closely enough and you don't know what most of the terms mean. Those rules only apply to the "discovery" process. The "discovery" process only apply after a litigation is filed or when you have a pre-existing affirmative burden to respond to government agency information demands.
Like I said I am an attorney and I can tell you that it is per se malpractice for an attorney to be so ignorant or negligent (or both ) that they failed to inform their client that old data should be destroyed on a regular schedule - in the sunshine - cause you can't do it when the rain clouds gather.
The keys are to have company policy and schedules for data destruction. If you simply have a paper shredding session (ala Hillary Clinton) because you have reason to suspect a litigation you will end up looking like you have dirty hands. If you do it after you are informed of a litigation you may well have a discovery violation.
Armed with a company policy and the schedule you are golden~!! This protects you from accusations of selective destruction. Which standing alone, is not unlawful. It just make you appear to have guilty knowledge and any opposing litigants can use that as evidence to draw the inference that you knew you were hiding something.
-
-
Re: Legal Advice Freebie
Sun, March 9, 2008 - 2:35 PM
Ahem - well... I can see that you're passionate about the topic, Cliff. I'm just offering some advice of my own. It's great chatting with you.
s1m0n -
-
Re: Legal Advice Freebie
Sun, March 9, 2008 - 4:54 PMpassionate ?? R U kidding~!! I have a boner~!!
-
-
-
-
-
-
