The ABA Techshow is a great place to meet interesting small firm lawyers, and also the folks who help us figure out how to make use of technology as opposed being frustrated by it.
Stephen Gillers is a legal ethics expert, and the other day on his blog he asked “if pervasive use of social media may actually be harmful to some practices?”
News flash: social media is a tool, and not every human being will use it effectively—including Professor Gillers (as we shall see in a bit).
Folks who work in a factory are not expected (nor usually even allowed) to be remarkable. Show up on time, and do what your told. That’s their job.
Good thing that lawyers and legal professionals aren’t factory workers. Then again, maybe they are.
When I started my solo law practice I continued doing the same kind of sophisticated commercial litigation practice I was doing at the big firm. But I couldn’t afford to hire a receptionist, and the usual phone answering services were not up to the level my clients had gotten used to.
So I just answered the phone myself, or let it go to voicemail.
But when I found Ruby Receptionists I was pleasantly surprised. Turned out, not only could I afford a receptionist, but my clients wound up with better phone service than they got at my old firm. More importantly, I didn’t have to figure out who to hire, or how to manage them.
That’s my dream of the perfect virtual assistant.
Ruby is way more than a phone-answering service. They’re a “we make you look amazing to anyone who calls your company” service.
Ruby is run by some fantastic people, who’ve managed to build something truly magical. People who call your company will experience the magic, and assume you’re the one who created it.
But behind the magic that’ll be attributed to you is a lot of work and attention to detail by the folks who run Ruby.
They hire only the best people, with effusively friendly dispositions. Then they train them relentlessly so that they’re exceptionally attentive and helpful.
I no longer practice law. I now teach fellow lawyers how to use technology to be more efficient with less overhead. As I’ve written on my PaperlessChase blog, having a paperless law practice is helpful if you want to hire virtual assistants.
You don’t need a paperless law practice to hire a virtual receptionist, just a main phone line that you can redirect somewhere. But, if you want potential clients and other important callers get the best possible impression of you, hire Ruby Receptionists.
Hardly a day goes by that a lawyer, or a security expert talking to lawyers, doesn’t suggest that “Dropbox is too flawed for lawyers to use.” People who demonize Dropbox (or any cloud service) often offer a flood of verbiage, but rarely offer a balanced, thoughtful assessment. And they almost never offer realistic solutions.
I was recently directed to this ‘securityblawg’ post, because it was proudly cited by a lawyer concerned about Dropbox. The post, drones on for 2,862 words before noting “[u]ltimately, every lawyer will need to make his or her own decision about the appropriateness of using Dropbox for client work.” And then it recommends, of course (since it’s written by a security firm), that lawyers should “encrypt sensitive information before placing it on Dropbox.”
Right. That’s sort of a given. Did we need almost 3,000 words to support that advice?
You rarely hear security experts begin a blog post by pointing out an ironclad security principle: no security system is perfect, and the attempt to craft “perfect security” invariably leads to minimal usability (see e.g. Get Smart’s depiction of the problems with the Cone of Silence for a goofy parody that actually illustrates the point perfectly).
You rarely hear security experts begin by conceding another “security fact of life”: namely, that if a hacker or some evil doer is intent on getting into your data, then the odds are, with enough time, they will.
The way that lazy, marginally-skilled hackers get into your data is typically not through Dropbox, or any other cloud-provider’s failings, but through social-engineering or guessing your bad passwords. Or just camping out at a place where lots of people with bad security habits tend to frequent.
Let’s ask questions that get to the heart of the most common security problems. Here’s a few, and I submit these should be required to be discussed before answering any question that comes up about Dropbox. For example…
How many lawyers out there log into secure accounts while using the free Wi-Fi at a local coffee shop? How many click on links in emails that say “Is this really a picture of you?!!” How many use an easy-to-guess password? How many don’t bother to log out of their office computer while they go to lunch? How many leave it open overnight? How many use the same easy-to-guess password for all their online accounts? How many lawyers use one of the 25 most common passwords, such as “password” or “123456”?
Answer: probably lots. So, let’s not waste words on mumbo jumbo. Let’s get real.
Security is about making assessments, and weighing risks, benefits, and contexts. There is no “one size fits all solution” for security. In the end, the security gurus will wind up saying “it depends.” Some will say this after thousands of words that they copy and paste from prior articles; because they always say the same thing. And they usually end with “and make sure you encrypt your sensitive data.” But what about putting serious security problems in a larger context?
The cloud is only one context; we don’t talk about the ones that have always been problematic, and which are actually the most insidious problems, because we’re too busy obsessing about “the cloud.” What about old-fashioned security mishaps?
For example, I know an attorney who talked on a cellphone with his client about case strategy, while standing next to an opposing counsel in an airport gate. I know because I was that opposing counsel. And, for what it’s worth, I walked away so I wouldn’t hear his conversation. Sometimes ‘not listening’ is the right thing to do.
Conversely, when most people hear about common security problems, and what it takes to address them, they don’t walk away. And they don’t listen.
You can rail about Dropbox and the cloud all you want. The real security problems lie not in the clouds, but in ourselves.