Cybersecurity concerns remain high and attorneys insured by OBLIC can take proactive steps to protect themselves, their firms, and their clients. Now is a great time to explore the trainings, articles, and sample policies offered through our website. Visit the Cyber Risk Management page and click the “Cyber Toolbox” button to access these invaluable resources.
This month a new training program, “Safeguarding Information”, has been released for OBLIC policyholders through our partnership with our cyber insurance carrier and cybersecurity training provider. This program focuses on protecting sensitive firm data and files, which helps your firm reduce its digital vulnerabilities.
Why Data Minimization Matters
Old files, unused accounts, and outdated systems don’t just clutter your digital environment—they increase your exposure to cyber risk. Conducting a regular audit of your data and minimizing what you store can significantly reduce your firm’s risk profile. Check out these resources from NIST.gov for more on data security.
Sensitive information includes:
- Personally identifiable information (PII): names, Social Security numbers, dates of birth, and addresses
- Financial information: credit card numbers, payroll data, banking records
- Confidential information: strategic business documents, mental health or substance use treatment records, trade secrets
Whether stored in hard copy or digital format, this type of data should be managed and destroyed according to a formal file retention policy. While attorneys often err on the side of over-retention, destruction of outdated information is just as critical as retention. Limiting the amount of sensitive data you store is a vital way to reduce the potential impact of a cybersecurity breach.
How Data Minimization Reduces Risk
- Reduce Your Attack Surface
Dormant accounts, outdated software, and forgotten databases are prime targets for attackers. Regular cleanup helps eliminate hidden vulnerabilities and limits entry points. - Limit the Damage of a Breach
The less data you store, the less you lose. By removing what you no longer need, you reduce what could be stolen or exposed in an incident. - Simplify Compliance and Oversight
Holding onto unnecessary data increases your regulatory burden. Clean data makes audits easier, policies clearer, and risk assessments more accurate. - Improve System Performance
Excess data can slow down operations and strain resources. Trimming it down enhances speed, stability, and overall system efficiency. - Act Today
Outdated data isn’t harmless—it’s a liability.
To access the Cyber Toolbox and complete the new training program, contact us for the password available exclusively to OBLIC policyholders. And as always, don’t hesitate to reach out. OBLIC is here to support your cybersecurity and risk management efforts.
| Gretchen K. Mote, Esq. Director of Loss Prevention Ohio Bar Liability Insurance Co. Direct: 614.572.0620 [email protected] |
Merisa K. Bowers, Esq. Loss Prevention & Outreach Counsel Ohio Bar Liability Insurance Co. Direct: 614.859.2978 [email protected] |
This information is made available solely for loss prevention purposes, which may include claim prevention techniques designed to minimize the likelihood of incurring a claim for legal malpractice. This information does not establish, report, or create the standard of care for attorneys. The material is not a complete analysis of the topic and should not be construed as providing legal advice. Please conduct your own appropriate legal research in this area. If you have questions about this email’s content and are an OBLIC policyholder, please contact us using the information above.
