With paper memos and interoffice letters being replaced by instant messaging and e-mails, companies face the challenge of securing their electronic communications in this digital age. Unfortunately, hackers are creating problems for even the most technologically advanced companies. The recent Sony hack left thousands of individuals feeling violated, as professional correspondence and personal records thought to be strictly private were maliciously released to the public. This shocking event left a security void that was quickly filled by companies such as Confide, billed as a “Snapchat for the professionals.” By sending digital communications through Confide, the message is received and then instantly deleted upon reading, without allowing the viewer to print, save, or take a screenshot of the transmission. With the demand for off-the-record communication growing ever stronger these days, the company’s developers have released an enterprise version of the app, called Confide for Business. While the software is still in beta-testing, it has proven to be quite attractive to businesses small and large, garnering hundreds of interested inquiries since it entered the scene.
Apps like Confide may seem like a panacea in the face of digital security breaches and general privacy concerns; however, there are other major issues to consider and this solution might not be appropriate across the board. For organizations that must comply with HIPAA guidelines or banking regulations, for example, Confide and the like are not practical solutions due to industry regulations that require maintaining records for set periods of time. Additionally, businesses have an ongoing duty to preserve certain documents and information that are relevant to any current or potential litigation or government investigation. The standards related to a "Litigation Hold" may require a company, as soon as there is a reasonable belief that a legal inquiry is forthcoming, to stop any automatic records-purging and follow the established protocol for preserving all relevant records, both electronic and hard copy, as both are legitimate targets for discovery.
It is reasonable to assume that the cyber-attack against Sony led to a widespread spike in anxiety surrounding the issue of data security. Software solutions like Snapchat or Confide have a certain innate appeal in that their creation of encrypted and ephemeral data greatly reduces susceptibility to such cyber-attacks. Companies must be careful to balance their concerns of vulnerability and security with the competing value of upholding ethical and legal obligations to preserve business records that are subject to preservation requirements.
Apps like Confide may seem like a panacea in the face of digital security breaches and general privacy concerns; however, there are other major issues to consider and this solution might not be appropriate across the board. For organizations that must comply with HIPAA guidelines or banking regulations, for example, Confide and the like are not practical solutions due to industry regulations that require maintaining records for set periods of time. Additionally, businesses have an ongoing duty to preserve certain documents and information that are relevant to any current or potential litigation or government investigation. The standards related to a "Litigation Hold" may require a company, as soon as there is a reasonable belief that a legal inquiry is forthcoming, to stop any automatic records-purging and follow the established protocol for preserving all relevant records, both electronic and hard copy, as both are legitimate targets for discovery.
It is reasonable to assume that the cyber-attack against Sony led to a widespread spike in anxiety surrounding the issue of data security. Software solutions like Snapchat or Confide have a certain innate appeal in that their creation of encrypted and ephemeral data greatly reduces susceptibility to such cyber-attacks. Companies must be careful to balance their concerns of vulnerability and security with the competing value of upholding ethical and legal obligations to preserve business records that are subject to preservation requirements.