CIO

Juris e-prudence

There was a time when judges were prepared to consider arguments that incompetence or computer problems might be to blame if companies were unable to produce e-mails on demand.
Page:

The 'paper trail' no longer consists of paper.

More than 90 percent of all business documents are now created digitally, and computer forensic techniques allow recovery of evidence invisible to most computer users. So if you think your organization is prepared to face a lawsuit, you may want to think again.

If you have not yet got the message about e-mail retention delivered by a Florida state judge to Morgan Stanley back in May, then be afraid. Be very afraid.

Because if you have not internalized that message, your document retention strategies could land not only your company, but you, yourself personally, in very deep water indeed. Or at least cause you major career embarrassment. Just ask Robert Saunders and Arthur Riel, both technology executives who were deposed in the lawsuit against Morgan Stanley, which will end up costing the company a cool $US1.58 billion unless it succeeds on appeal.

Because that judgement, which found Morgan Stanley had deceived billionaire Ronald Perelman over a business deal, highlights some lessons all companies should learn, experts say. Like that keeping e-mails is a must, but keeping too much metadata about those e-mails is an absolute, definite no-no. Like the fact that IT executives may find themselves in court testifying about their efforts to retrieve vital e-mails, and that that testimony could prove deeply embarrassing to them. Like the fact that courts these days are extremely unlikely to accept - and perhaps even inclined to actively punish - pleas of incompetence with regard to e-mail retention. Like the fact that there are major tensions between technology and the law yet to be resolved. And like the need for CIOs and corporate litigators to achieve a genuine meeting of the minds if they are going to keep themselves and their companies out of deepest doo doo.

"Basically what has happened in this country [the US] is that discovery of documents which takes place as part of civil litigation and a part of criminal investigations has come to routinely include electronic documents," says Eric Rosenberg, a former litigator with Merrill Lynch & Company and now president of e-mail policy consultancy LitigationProofing.

"It's so routine that it is expected to be part of every process. The problem is it's a complex, expensive process to make sure you have found all the required material and reviewed it and produced it. And that has led to a lot of issues in litigation about whether proper production of the documents to the adversary has been done during the course of the litigation."

Rosenberg says courts these days tend to demand that organizations facing litigation provide their adversary with a comprehensive array not only of electronic documents, but also the metadata associated with those documents. Meanwhile courts find themselves increasingly embroiled in argument about which side will pay for that provision; who should be responsible for doing that work and how it should be supervised; and how the courts can determine whether any failure to produce electronic documents was deliberate, and if so, what remedies should apply.

"Companies need to take a very serious view of electronic document retention. They must dedicate high-level, coordinated litigation and IT resources to retention and recovery issues," Rosenberg says.

"[In the Morgan Stanley case] the judge specifically pointed out and criticized alleged misleading testimony by an executive director of IT for Morgan Stanley. I think that sort of very pointed attention to the need for technology executives to testify and to the risks of incorrect testimony would grab the attention of [CIOs]," Rosenberg says.

"Morgan Stanley is going to be a harbinger," Bill Lyons, CEO of records retention software company AXS-One, told Reuters in May. "I think general counsels around the world are going to look at this as a legal Chernobyl."

Page:

Join CIO, the CIO Executive Council & IDC on 6 October at Australia’s premier Melbourne event for senior IT executives – the CIO Summit 2010. Find out more or register now.

More about: Attorney-General, AXS-One, Bill, Billion, Boss, HIS Limited, Inference, Logical, Manhattan, Morgan, Morgan Stanley, Motion, ProVision, Reuters, SEC, Sunbeam, VIA, Wall Street

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
 
Featured Whitepapers
Pulling the Plug on Legacy Log Management

When it comes to log management, CSOs have been left in the lurch. According to this IDG Research Services survey, organisations are poised to “rip and replace” legacy technology for better compliance and security. Read more.

Wondering how to improve your business with UC on an IP Network?

Join Computerworld's Live Webinar where we will address the move many companies are making towards IP based voice services (SIP trunking, VoIP) and look at how they are using a single connection for data and voice rather than separate lines. Learn about the latest in IP networks and how it can help your organisation.

Wednesday 25th November 2009, Time 10.30 am EST (Sydney, Australia) Screening at your desk

Register now

  • +

    WikiLeaks founder Assange questioned by Swedish police 01 September, 2010 05:36:00

    Police and prosecutor are keeping mum on how the investigation is progressing
    WikiLeaks founder Julian Assange has now been questioned by Swedish police regarding a molestation charge directed at him, his lawyer said Tuesday.
  • +

    uTorrent patches application against DLL vulnerability 30 August, 2010 04:31:00

    uTorrent is one of many applications that is affected by the vulnerability
    The developers of the uTorrent file-sharing application have released an updated version that fixes a problem that could allow an attacker to load malicious code onto a user's computer.
  • +

    Wikileaks' Assange to be questioned, says Swedish prosecutor 26 August, 2010 04:54:00

    The Wikileaks founder has been accused of molestation, though one charge has already been dropped
    Swedish Chief Prosecutor Eva Finné has ordered that WikiLeaks founder Julian Assange be questioned about molestation allegations.
  • +

    Adobe fixes 20 vulnerabilities in Shockwave Player 26 August, 2010 03:55:00

    Most of the vulnerabilities could allow an attacker to run rogue code on a computer
    Adobe Systems patched 20 security vulnerabilities in its Shockwave Player on Tuesday. Most of the flaws could allow an attacker to run their own code on an affected computer.
  • +

    Sticks and stones: Picking on users AND security pros 26 August, 2010 02:08:00

    Name-calling is harmful to the cause of security
    I took my share of name-calling as a kid. I did my share of name-calling, too. We're taught that nothing good comes of such behavior. I've been thinking a lot about that since writing an article two weeks ago called "Security blunders 'dumber than dog snot'" during the 2010 USENIX Security Symposium.

Recent comments
Media Releases
Zones
SAS Resource Centre

This Resource Centre hosts a wealth of thought leadership articles, whitepapers, and success videos, to help you make the most out of your corporate information in order to swiftly make sound business decisions to survive and thrive in the current economic climate.

Oracle Resource Centre

News, Features and the latest whitepapers on SOA, Application Grid, Enterprise Management and Database

CIO Industry Insight Podcast #9: Tim Ayling, Chief Executive Officer, Platform46
Listen to the latest edition of CIO Live which is now available for download.
Listen to the podcast
Sign up to the CIO Live email
Whitepaper
Securing People and Information: How to Protect Against Today’s Web-based Threats

This white paper explores the benefits of an Application Delivery Network, highlighting the ability to protect your users and applications and still deliver outstanding application performance with confidence, consistency and cost-effectiveness across your distributed network.

Read Whitepaper

Brought to you by
Videos
Get a job Careerone