1. Frequently Asked Questions

Should I hire someone to help manage my information risk?   

 

The short answer is "it depends."  If you are handling information that is sensitive, health, financial, tax related, or across stated/country borders, including California and or Europe then you should definitely be considering risk and associated mitigations. We can work with you to evaluate what you are doing.  Whether you are not doing enough, or doing too much in a disjoint fashion, we can help sort out the mess and create a more defensible position to protect you, your customers, and your investors.  

 

When is the best time to have my risks reviewed? 

The best time to have your risks reviewed is as soon as possible.  The worst time to have your risks reviewed is when you are facing litigation or sanctions because some avoidable issue was not dealt with appropriately.  Whether you are a small business/startup or a fortune 100 company, you want to focus on delivery.  The best way to focus on what you do best is to allow qualified professionals to help manage some of these risks. 

 

What specific services do you offer? 

 

We offer an array of services ranging from pure legal advice to pure business or technical advice.  Truthfully, nothing exists in a vacuum, ideally advice is provided that considers as many different perspectives as are necessary.  If you are handling data as part of your business in a way that involves technology, the best solutions are typically those that synthesize legal and business requirements, while accounting for technical capabilities that are available to you.  A list of some services we offer can be found here.  

 

What is special about your services?  Take a look at our client journeys

 

We have a unique set of skills and experience across industries that includes managing programs/projects, working directly with agile development teams of all sizes, managing security, evaluating vendors, overseeing regulatory compliance for audit and tax as well as leading HIPAA efforts across companies.  We are able to find issues and create mitigations in the board room and on the developer floor.  We also have a variety of contacts and resources that can help implement any appropriate steps to improve your risk posture whether it's arranging for pen testing, SOC evaluations, or any other framework/regulatory goal.  We can help get it done. 

 

 

What are my next steps?

 

Send us an email and we can intitiate the requirements for initial consultation.

 

Need to talk to us?

Email us with any legal questions.

questions@theinfolawyer.com