Many eDiscovery SaaS providers leverage AWS for their infrastructure, and that is generally acceptable, but for those that stand up their own data center for their SaaS product need to have four safeguards. It is important to note that in an industry where data access is necessary often times, it may be in your or your clients best interest to work with a provider with their own highly secure data center. Below is the article that outlines what to ask your provider.
In late April, ABA Law Technology Today published an article I wrote titled “A Look at Security with SaaS Providers.” The article focuses on how private cloud offerings including SaaS are growing in our industry largely due to the expense in maintaining hardware and security protocols for client data that law firms have traditionally managed. It talks about what is needed in a secure data center and how the expanding data volumes and security requirements complicate those efforts. In addition, it covers the following topics:
- Service partners and cloud security
- Physical safeguards
- Technical safeguards
- Administrative safeguards
- Application security