IT Management Slideshow: eDiscovery Disasters: What Every CIO Needs to Know

By Jennifer Lawinski  |  Posted 10-21-2011

eDiscovery Disasters: What Every CIO Needs to Know

Nearly half of respondents (45%) said their company didn't have a formal information retention program.

eDiscovery Disasters: What Every CIO Needs to Know

eDiscovery Disasters: What Every CIO Needs to Know - Page 2

Why not?(percent respondents with no formal information retention program)Lack of need (41%)Too expensive (38%)No clear responsible party (27%)No time (26%)Lack of expertise (21%)

eDiscovery Disasters: What Every CIO Needs to Know - Page 2

eDiscovery Disasters: What Every CIO Needs to Know - Page 3

On average, respondents said they answered 63 legal, compliance or regulatory requests for digital information in the past year.

eDiscovery Disasters: What Every CIO Needs to Know - Page 3

eDiscovery Disasters: What Every CIO Needs to Know - Page 4

On average, IT staff spent 66 hours finding the requested information.

eDiscovery Disasters: What Every CIO Needs to Know - Page 4

eDiscovery Disasters: What Every CIO Needs to Know - Page 5

Most requested data by type (percent respondents):Documents and files (67%)Database or application data (61%)Email (51%)Sharepoint files (51%) Social media (44%)Text messaging (44%)

eDiscovery Disasters: What Every CIO Needs to Know - Page 5

eDiscovery Disasters: What Every CIO Needs to Know - Page 6

The top three consequences cited for failing to meet requests for information (percent respondents): Reputation damage (42%)Fines (41%)Compromised legal position (38%)

eDiscovery Disasters: What Every CIO Needs to Know - Page 6

eDiscovery Disasters: What Every CIO Needs to Know - Page 7

Only 17% of respondents said they were "extremely confident" in their readiness to respond to information requests.

eDiscovery Disasters: What Every CIO Needs to Know - Page 7

eDiscovery Disasters: What Every CIO Needs to Know - Page 8

Preparing for an information requestStep 1: Create a records and information management (RIM) program.

eDiscovery Disasters: What Every CIO Needs to Know - Page 8

eDiscovery Disasters: What Every CIO Needs to Know - Page 9

Preparing for an information request Step 2: Periodically delete information according to your RIM. 20% of companies keep data forever. They shouldn't.

eDiscovery Disasters: What Every CIO Needs to Know - Page 9

eDiscovery Disasters: What Every CIO Needs to Know - Page 10

Preparing for an information request Step 3: Use backup for recovery, use archiving for discovery

eDiscovery Disasters: What Every CIO Needs to Know - Page 10

eDiscovery Disasters: What Every CIO Needs to Know - Page 11

Preparing for an information request Step 4: Deploy advanced legal hold processes and risks.

eDiscovery Disasters: What Every CIO Needs to Know - Page 11

eDiscovery Disasters: What Every CIO Needs to Know - Page 12

Preparing for an information request Step 5: Conduct litigation readiness exercises to determine exposure areas and formulate a prioritized remediation plan.

eDiscovery Disasters: What Every CIO Needs to Know - Page 12

eDiscovery Disasters: What Every CIO Needs to Know - Page 13

Preparing for an information request Step 6: Know what electronically stored information you have and where it lives, including text messages, social media and data in the cloud.

eDiscovery Disasters: What Every CIO Needs to Know - Page 13