Why Law Firms and CPA's Must Vet Software Vendors
In 2023, Google blocked over 2 million apps from the Play Store for policy violations, exposing a major cybersecurity risk. Many apps were flagged for malware, data theft, and weak security practices—risks that law firms cannot afford to ignore.
Why This Matters for Law Firms
Law firms handle confidential client data, making them prime targets for cyber threats. A compromised app can lead to:
•Data breaches – Leaking privileged client information.
•Compliance violations – Violating ABA, FTC Safeguards, HIPAA, or GDPR standards.
•Financial & reputational damage – Trust is everything in legal and financial services.
How to Vet Legal and Financial Apps & Software Vendors
1. Research the Developer
•Choose apps from reputable vendors with legal industry experience.
•Verify their security certifications (SOC 2, ISO 27001).
2. Check Privacy & Security Policies
•Ensure data is encrypted and stored securely.
• Avoid apps with vague or intrusive data collection.
3. Limit App Permissions
•Be cautious of apps requesting unnecessary access (e.g., contacts, microphone).
4. Use Security Tools
•Enable mobile threat protection (e.g., Microsoft Defender, Lookout).
•Implement Mobile Device Management (MDM) to restrict unapproved apps.
Final Thoughts
Your firm’s security is only as strong as the software you trust. Before installing any app, ask: Would I trust this vendor with my client’s most sensitive data? If not, skip it.