In-House is Eyeing Outside Counsel's Data Management More Closely
The General Data Protection Regulation is empowering counsel to be invasive in their outside counsel's data processing systems and project a stronger voice with the C-suite, according to a new report.
February 05, 2019 at 09:00 AM
4 minute read
A new survey found that in-house counsel are requiring more data management declarations and cybersecurity information from their outside attorneys, fueled in part by the European Union's General Data Protection Regulation (GDPR).
During July and August 2018, 35 legal operations leaders in Fortune 500 and 1000 companies were surveyed by Ari Kaplan Advisors and OpenText Discovery, which recently acquired Catalyst Repository Systems.
Forty-nine percent of legal operations leaders reported that the volume of government or regulatory investigations have increased over the past 12 months. The survey also noted that the the EU's GDPR, which went into effect May 25, 2018, has caused legal departments to obtain data management declarations from their outside attorneys.
“With the GDPR, we are now making sure our law firms sign a data protection agreement [and those] who receive personal data, now undergo a mandatory initial security assessment,” said one unnamed surveyed director of legal operations. “What we do is pretty intrusive and could take up to three months.”
Likewise, the GDPR's massive regulations and potential expensive penalties has given legal a louder voice with the C-suite.
“Legal has a much stronger voice at the table, especially in data privacy and security,” said an unnamed operations director in the life sciences industry. “While there were different regulations in the past, legal was not involved in data privacy and security, but due to the increased requirements from the GDPR and other regulations, legal is much more involved and in the driver's seat or being reactive.”
However, most legal departments still do not audit outside counsel's technological competency and systems, though the number is growing. In 2018, 31 percent of surveyed legal operations leaders said they audited their outside counsel's technology, a five percent increase from 2017.
In-house counsel's reasoning for not asking about their outside counsel's cybersecurity procedures can be based on the firm's reputation and size. Some assume that the larger the firm, the more sophisticated their cybersecurity standards are.
“The people who are getting the majority of our work are such large firms, we feel that if other people are trusting them, we have some level of passive assurance that they are as secure as we are,” said one unidentified respondent from the energy sector.
As legal operations work grows, legal operations teams are collecting more metrics for varying usage. Indeed, 89 percent of those surveyed said they are tracking different milestones to strengthen legal operations and internally market their success.
Still, most found implementing improvements based on metrics were challenging, according to the report. Ari Kaplan principal at Ari Kaplan Advisors, which co-conducted the survey, said the challenges stem from no additional staff being allocated to the department.
“The potential improvements that can be made as a result of the metrics exceed the number of individuals in legal operations that can make them,” said Kaplan. “There's so many potential improvements and potential opportunities reflected in the metrics, but ultimately it's a bandwidth issue.”
In addition to tracking metrics, Kaplan also noted that more legal operations teams are performing e-discovery in-house for better efficiency, data management and cost savings. Indeed, 63 percent of respondents said they use a centralized approach for hosting and managing discovery data, up from 2017's 43 percent.
This comes as little surprise given that most surveyed respondents, 91 percent, said they have data security concerns about distributing electronically stored information (ESI) to multiple discovery vendors and law firms.
When tracking metrics regarding e-discovery, the survey found review staffing was tracked most often. Data managed, total e-discovery spend and spend per gigabyte were tied for the second-most reported metric.
As legal operations look to improve their e-discovery process, 34 percent of respondents said artificial intelligence is leveraged in their legal department, an 11 percent increase from 2017's results. In fact, 66 percent of respondents said they believe spend on AI solutions will increase in 2019. But the enthusiasm for AI is also met with hurdles, according to the study, including a lack of relevant use cases and cultural resistance.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllTrending Stories
Who Got The Work
J. Brugh Lower of Gibbons has entered an appearance for industrial equipment supplier Devco Corporation in a pending trademark infringement lawsuit. The suit, accusing the defendant of selling knock-off Graco products, was filed Dec. 18 in New Jersey District Court by Rivkin Radler on behalf of Graco Inc. and Graco Minnesota. The case, assigned to U.S. District Judge Zahid N. Quraishi, is 3:24-cv-11294, Graco Inc. et al v. Devco Corporation.
Who Got The Work
Rebecca Maller-Stein and Kent A. Yalowitz of Arnold & Porter Kaye Scholer have entered their appearances for Hanaco Venture Capital and its executives, Lior Prosor and David Frankel, in a pending securities lawsuit. The action, filed on Dec. 24 in New York Southern District Court by Zell, Aron & Co. on behalf of Goldeneye Advisors, accuses the defendants of negligently and fraudulently managing the plaintiff's $1 million investment. The case, assigned to U.S. District Judge Vernon S. Broderick, is 1:24-cv-09918, Goldeneye Advisors, LLC v. Hanaco Venture Capital, Ltd. et al.
Who Got The Work
Attorneys from A&O Shearman has stepped in as defense counsel for Toronto-Dominion Bank and other defendants in a pending securities class action. The suit, filed Dec. 11 in New York Southern District Court by Bleichmar Fonti & Auld, accuses the defendants of concealing the bank's 'pervasive' deficiencies in regards to its compliance with the Bank Secrecy Act and the quality of its anti-money laundering controls. The case, assigned to U.S. District Judge Arun Subramanian, is 1:24-cv-09445, Gonzalez v. The Toronto-Dominion Bank et al.
Who Got The Work
Crown Castle International, a Pennsylvania company providing shared communications infrastructure, has turned to Luke D. Wolf of Gordon Rees Scully Mansukhani to fend off a pending breach-of-contract lawsuit. The court action, filed Nov. 25 in Michigan Eastern District Court by Hooper Hathaway PC on behalf of The Town Residences LLC, accuses Crown Castle of failing to transfer approximately $30,000 in utility payments from T-Mobile in breach of a roof-top lease and assignment agreement. The case, assigned to U.S. District Judge Susan K. Declercq, is 2:24-cv-13131, The Town Residences LLC v. T-Mobile US, Inc. et al.
Who Got The Work
Wilfred P. Coronato and Daniel M. Schwartz of McCarter & English have stepped in as defense counsel to Electrolux Home Products Inc. in a pending product liability lawsuit. The court action, filed Nov. 26 in New York Eastern District Court by Poulos Lopiccolo PC and Nagel Rice LLP on behalf of David Stern, alleges that the defendant's refrigerators’ drawers and shelving repeatedly break and fall apart within months after purchase. The case, assigned to U.S. District Judge Joan M. Azrack, is 2:24-cv-08204, Stern v. Electrolux Home Products, Inc.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
