Archive for the ‘document discovery’ Category

What Does A CIO Need To Do When The Company Gets Sued?

Wednesday, April 14th, 2010
Image Credit
E-Discovery Is Something That CIOs Need To Prepare For In Advance

E-Discovery Is Something That CIOs Need To Prepare For In Advance

Lawyers Cost A Lot Of Money

When you become the CIO, you’re probably hoping that you’ll be spending your time setting the strategic direction for your company’s technology future, striking deals with vendors, and generally moving the company forward. However, perhaps you’ve forgotten about the lawyers. Specifically the lawyers who work for the people who will undoubtedly someday sue your company. They are going to be well within their legal rights to ask for a lot of company information, are you going to be ready to find it and provide it to them?

Andrew Conry-Murray was looking into this and he discovered that the Office of Federal Housing was sued they had to search their systems for emails related to the case. They forgot about a disaster-recovery backup that they stored off-site and this mistake ended up costing them an additional $6M in additional expenses to search even more data. Clearly this is something that a CIO has to worry about!

It’s All About The Team

The fancy name for what has to be done in the 21st Century when a company has to produce documents as part of a lawsuit is called “e-discovery” . This is where at the request of the suing party, a company has to dig through all of their electronic documents (emails, reports, etc.) and provide them to the suing party as a part of preparing to go to trial.

Considering how many separate email systems, databases, and siloed data storage systems a typical company has, when you become CIO finding and delivering this information could be a huge undertaking. A clever CIO realizes that this is the type of problem that can’t be solved just by the IT department: it’s going to take a team.

The ability to see into the future is not something that we are born with. However, CIOs need to anticipate that their company will need to have an e-discovery team in place BEFORE you get sued. It makes sense to put together a team before it is needed. The team should have representation from both the Legal and the IT departments on it.

It will do you no good to just have identified who is on the team – they actually have to do some work. Specifically, they should be responsible for setting the company’s policies on data retention, making sure that people are following the policies, and actually doing the e-discovery work when it is required.

The Electronic Discovery Reference Model

If this all seems just a bit overwhelming to you (“I’m not a lawyer”), don’t despair. Smart minds have created something called the Electronic Discovery Reference Model which lays out just what an IT department needs to do in order to conduct a successful e-discovery program.

There is a lot of work that needs to be done as a part of an e-discovery program and not all of it is IT work. In the EDRM, the job of an IT department comes primarily in the first 4 steps. These steps are:

  1. Information Management
  2. Identification
  3. Preservation
  4. Collection

Too Much Data Is Too Much

A CIO’s role in an e-discovery project starts long before the first call from the lawyers comes in. Lawyers are not bad people (necessarily), but at the same time they aren’t IT savvy. This means that they often don’t know how to ask the right questions during an e-discovery project.

Lawyers might ask for any email that contains the word “contract”. Clearly this could quickly create a mountain of results. The IT department can help make sure that only relevant results are returned by working with the legal team to better frame what is being searched for. A search for emails based on “contracts with xyz corporation sent during the summer” will produce much more manageable results.

What All Of This Means For You

In a perfect world, there would be no lawyers or lawsuits. However, since we don’t live in a perfect world, when you become CIO you are going to have to be ready for the lawsuits when they come your way.

The key thing for a CIO to realize is that an e-discovery project is not something that can be handled just by the IT department. Instead, before the first lawsuit shows up, you are going to need to pull together a team that consists of folks from both the Legal and the IT departments.

Even though you can’t stop lawsuits from happening, as CIO you can make sure that your company is ready for them when they come. A bit of planning can end up saving your company a lot of money and you a lot of hassle…

Question for you: what do you think a CIO is going to have to do in order to get the IT and Legal departments to work together smoothly?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

What We’ll Be Talking About Next Time

Does anyone besides me remember the movie “Risky Business” from the ‘80s? You know, it’s the one that launched Tom Cruise’s career – he plays a kid who takes some big chances, has an adventure, and then ends up with the girl in the end. Well, CIOs have a opportunity to star in their own version of Risky Business – but their role has to do with selecting and implementing risk management applications that just might save the company…

Tags: , , , , , , , , ,
Posted in document discovery | 1 Comment »

A New CIO Job: Panning For Legal Gold

Monday, August 25th, 2008

A CIO who prepares for legal lawsuits before they happen is valuable indeed
One of the worst things that can happen to a modern company is to for it to get sued. Here in the 21st Century more often than not, lawsuits require that the firm being sued produce electronic documents early on in the whole messy legal process. Good examples of how tricky this can get are the White house’s attempt to retrieve firing emails, Intel’s fight with AMD, and Morgan Stanley’s issues with the SEC. As the Morgan Stanley case shows, if a firm can’t produce the email and electronic records that are asked for it can end up costing the company a lot ($10M in the case of Morgan Stanley). What does all of this legal stuff have to do with a CIO?

Michael Lunch is the CEO of Autonomy Corp. and he does a good job of describing how the search for electronic documents is currently done:

“The old-fashioned way of doing this was having a lot of lawyers doing a lot of simple things, you would literally have lawyers reading though things saying ‘there was chicken for lunch.’ You don’t need lawyers to know that it’s a lunch menu.”

Ouch – what kind of hourly rate does a firm have to pay to have lawyers read old email? This is exactly the type of situation that begs for the IT department to step in and lend a hand. Recognizing that this is an issue, the good folks at HP, Xerox, and IBM are getting ready to jump in and offer products and services.

This new reality of living in an electronic document lawsuit-happy world opens a unique door of opportunity for forward thinking CIOs. When a firm gets sued, everything has to shut down as it relates to documents while the requested material is searched for. If an enterprising CIO had already set up a system to track and categorize the firm’s electronic records, email included, then a lawsuit’s requests could be easily handled. Being able to produce the requested material the next day instead of weeks or months later and being able to do it for much less than a roomful of lawyers would cost would enhance the CIO’s standing among the company’s senior management.

Careful – there’s a right way and a wrong way to go about doing this. The wrong way is the classic IT way: I don’t need anyone else, I (and my department) can do this all by ourselves. Discovery of records as a part of a legal proceeding is really the domain of the company’s legal department. This is clearly a case where the IT team needs to work WITH the legal department. Since any sort of automated search process will be taking cash out of the pockets of outside law firms who traditionally supply the human resources to do information searches, the CIO is going to need to have the full support of his in-house legal team. The moment the lawsuit is filed, the outside firms will be whispering into the CEO’s ear that he/she really needs their pricey assistance. Without the support of the in-house legal team any IT created solution will be discarded in favor of going with a “sure thing”.

Having a solution in place before it is needed is the key to ensuring that the IT team looks good. If a CIO is running around after the event trying to find a solution, then expensive mistakes are going to be made. Finally we have found one area where a CIO can once and for all show the company the true value of the IT department.

Have you ever worked at a company that got hit with a lawsuit that required electronic documents to be produced? How did it go – was it quickly and easily handled or was it an ongoing nightmare? Did this event have any lasting impact on how the firm handled and tracked its electronic documents? Leave a comment and let me know what you think…

Tags: , , , , , ,

Tags: , , , , , ,
Posted in business, business alignment, ceo, CIO, document discovery, it strategy, lawsuit | 4 Comments »