Data Breach Notification Document Review

When a data breach takes place, notifying those affected must be done quickly, thoroughly, precisely and reliably.

The context in which we perform our data breach notification document review is that we are engaged soon after a determination has been made that there was a breach.  Typically, particularly for the reviews we do for the largest consultancies, a tool has already been selected for our use.  Those tools are often litigation document review tools, such as Relativity, which are not custom-built for this use.  When we have input in the choice of platform, we often suggest a tool designed specifically for this purpose, namely Canopy,

Once we receive an assignment, we immediately assemble our team of experienced lawyers/reviewers on the project and they work furiously, long hours, and often weekends, if required, to meet the typically very tight deadlines associated with this type of work. What makes our solution different isn’t only that our reviewers get to work immediately and work hard.  Many review teams outside of the US are available immediately and many of their employees work hard, too. What makes us different is our security, both physical and data, the quality of our work, ensured through our experience, and our pricing.


We are certified as compliant with ISO data standard 27001 and ISO quality management standard 9001 (2015). We have redundant personal security, including bio metric access into and out of any document review room.  The data we review stays in the United States, and we are granted access to it remotely. No cell phones are allowed in our document review rooms and the computers in the rooms are connected to a local area network.  Other than the instance of Relativity or other platform, the reviewers do not have general access to the internet from the document review room.  The computers are not hooked up to a printer and the USB ports are disabled.  It is a dark environment.

People who have had their data compromised deserve, at the very least, to have all reasonable steps taken so that their data is not exposed again.

Quality and the Significance of US on-site attorneys.

All our data breach reviewers are lawyers. All conversations with our clients take place with the US lawyers who manage the review. We have two US lawyers on site at our facility.  David Batt, was an associate at Baker McKenzie, worked at Google and been over foreign language review at Quislex.  He is licensed in New York.  Derek Stegelmeier has worked as a staff attorney overseeing document reviews both internally and externally for Jenner & Block and Milbank Tweed.  Derek has an MBA in addition to his JD.  He is also licensed in New York.  Both David and Derek are experienced in overseeing data breach reviews. Those are the people who run the reviews.

There are about 4 US lawyers working in LPOs in India who have worked at Am Law 100 law firms.  We employ two of them.  They supervise a team of about 60 Indian lawyers, all of whom are full-time employees.  They can be deployed on a moment’s notice.  No need for a craigslist ad for us.


Our price point is lower than any other LPO.  Our pricing is at one charge for all lawyers, the front-line reviewers, the US lawyers who manage the review and our tech lawyer specialists. We can deliver price either on an hourly or per document basis.  We can either include the processing and hosting piece as part of, or not as part of, our solution. Any way you slice it, our pricing is lower than others.

Pin It on Pinterest

Share This