DocuCrunch.com » One deleted e-mail lands company in court

One deleted e-mail lands company in court

July 7, 2009 by Sam Narisi
Posted in: Solutions, Special Report

email-in-inbox

Electronic discovery rules have thrown a wrench into businesses’ document management practices — those that aren’t up-to-date could face big legal trouble.

Passed in December of 2006, the e-discovery rules hold IT responsible for preserving electronic info that could be used as evidence in a court case. Failing to comply can be costly.

One recent court case started as an employment dispute. A worker claimed she was unlawfully fired for taking protected leave under the Family & Medical Leave Act. The company claimed she was let go in a restructuring that would’ve happened even if she didn’t take leave. But the judge didn’t buy it.

One key piece of evidence against the employer: a deleted e-mail explaining why the woman was fired. Here’s what happened, according to the court opinion:

After the woman was fired, her manager sent an e-mail explaining the termination to the rest of the department. When she said she was suing, the manager was told to save all relevant documents — including e-mail — in preparation for litigation. But she deleted the e-mail anyway.

The manager said it was erased by mistake, but the judge didn’t believe her. He ordered the company to be sanctioned. That means when the case goes to trial, the jury will be told the company deleted the e-mail on purpose, presumably to hide incriminating evidence.

Have a policy, enforce holds

The first step to avoiding e-discovery fines and sanctions is having a document retention policy and sticking to it. In most cases, companies can stay safe when info is deleted based on an organizations normal procedures for dumping data. For example, if e-mails are deleted from the server after a month, a company won’t get in trouble for missing a message that’s more than a month old.

However, policies must also include a provision for litigation holds — that is, hanging on to relevant documents when a lawsuit begins. Once a company knows it may be heading to court, the rules demand it protect any data that could play a role in the case.

In the case above, the company didn’t adequately respond to a litigation hold. Instead of setting up a process to archive every e-mail that mentioned the employee, or every message sent by someone involved in planning the reorganization, the company simply trusted managers not to delete relevant e-mails.

So the manager deleted the e-mail from her computer, and IT didn’t back it up — leading to the sanction against the company.

Cite: Connor v. Sun Trust Bank

  • Share/Bookmark

DocuCrunch.com delivers the latest IT and Imaging news once a week to the inboxes of over 200,000 IT and Imaging professionals.

Click here to sign up and start your FREE subscription to DocuCrunch!

Tags: , ,


2 Responses to “One deleted e-mail lands company in court”

  1. JParr Says:
    July 9th, 2009 at 9:59 am

    The revised FRCP rules around eDiscovery are what tripped this company up. There is no “hard and fast” rule around what the courts require, because the rule itself is subject to interpretation by the courts. Although there is no firm precedent, “Industry best practice” right now is to preserve all e-mail for 1 year.

    KEEPING e-mail longer than your retention policy can also get the company in trouble. Having 10 years of e-mail means that all 10 years have to be disclosed during the discovery phase of legal proceedings, and there can be lots of stuff in 10 years of e-mail that allows the other side to build a case against your company.

    As an example, let’s say that budget time rolls around, and the facility engineer recommends replacing an older fire supression system. Budgets are tight, and the manager responds in e-mail, “not this year, next year”. Next year rolls around, and the same thing happens. Having BOTH e-mails from the manager telling the facility engineer “not this year…” could be grounds for negligence in the event that the fire supression system fails, causing damage or injury.

    Another example is “jokes” in e-mail. If your company institutes a policy against jokes in e-mail, but you have 10 years of e-mail, someone could find “joke e-mails” from 10 years ago as support in a sexual harassment or discrimination suit. The company would have to go back and document its policies at the time the e-mail was sent, and even if there was no policy against joke e-mails at the time, it helps establish tha the company culture tolerates (x or y) sort of behavior.

    As the article mentions, once the company is notified of legal action, ALL LEGAL EVIDENCE SHOULD BE PRESERVED IMMEDIATELY. If your IT folks are not trained in “chain of custody” procedures, have the lawyers bring in an outside IT firm that specializes in forensics and legal discovery procedures. Having an outside company perform the discovery looks better, because there is no opportunity for coersion or bias based on friendships or reporting structure within the company.

    In order to accomodate the revised FRCP rules, and to facilitate eDiscovery, many companies are implementing e-mail archiving solutions that automatically story a copy of e-mail on a separate server. Many so-called “archiving” solutions just capture internet e-mail — just the messages between your company and your customers or vendors (or your Aunt Betsy if you use corporate e-mail for personal use), but do NOT capture internal e-mails, such as the ones between you and your manager or subordinates. If you implement an automated e-mail archive solution, make sure it captures everything.

  2. bstarck Says:
    September 16th, 2009 at 10:07 am

    JParr says “Industry best practice right now is to preserve all e-mail for 1 year”.That is NOT a records management best practice.

    Actually e-mail should be managed to it’s content. E-mail is ONLY a vehicle for transmitting information. As a broad example, if your retention policy for HR documents is 10 years, then e-mail regarding HR issues needs to be kept for 10 years. If your retention policy for facilities documents is 3 years, then e-mail regarding facilites needs to be kept for 3 years.

    Again, it’s about managing the content of the information, not the media it’s delivered on.


advertisement


Whitepapers

  • How to Select a Web Host
    November 27, 2011 by marketing

    Creating a new website?  Not sure how to choose from among all the options?  Need shared hosting, small business hosting, or VPS hosting?  Lots of email accounts? 5-star reliability rating? Fortunately, there’s information available to help. The Best Web Hosts is great resource that will help you select the best web hosting company. It features reviews, rankings, and definitions that can help make your job of selecting a new web host more effective.

  • SMART Steps Towards Workload Automation
    January 19, 2010 by Luke Marchie

    Consolidating job scheduling into a single, comprehensive workload automation solution is a critical first step to effective Workload Automation (WLA).

    Download the free whitepaper here! More…

  • Identifying and Thwarting Malicious Intrusions
    January 12, 2010 by Luke Marchie

    Identifying and Thwarting Malicious Intrusions

    The phenomenal growth in social media has opened the door for all new malicious intrusions from gangs of cyber criminals. Utilizing the trusted relationships in social networking and benefiting from immature security and content controls, hackers are seeing increased performance in their attacks.

    Download the free whitepaper here More…

  • The Security Issues with Web 2.0
    January 12, 2010 by Luke Marchie

    The collaborative benefits of Web 2.0 technologies have fueled rapid growth in online consumer markets and now are being adopted by businesses worldwide. With these technologies come new types of attack vectors.

    Download the free whitepaper here

    More…

  • Network-Critical Physical Infrastructure: Optimizing Business Value
    December 29, 2009 by Luke Marchie

    To stay competitive in today’s rapidly changing business world, companies must update the way they view the value of their investment in Network-Critical Physical Infrastructure (NCPI). No longer are simple availability and upfront costs sufficient to make adequate business decisions. Agility, or business flexibility, and low total cost of ownership have become equally important to companies that will succeed in a global, ever-changing marketplace.

    Download the free whitepaper here! More…

  • The New World of eCrime: Targeted Brand Attacks and How to Combat Them
    December 26, 2009 by Luke Marchie

    Nothing is more valuable to a business than its reputation. That is why brand attacks, which leverage a company’s valuable brand for nefarious purposes, must be battled on every possible front. Brand attacks are the new form of eCrime, and they’re being launched with new and rapidly evolving exploits, including phishing and—most recently—malware.

    Download the free whitepaper here! More…

  • DDoS: The Mother of All Cyber Threats
    December 16, 2009 by Luke Marchie

    DDoS: The Mother of All Cyber Threats

    Don’t wait until your business is targeted. A Forrester Consulting study commissioned by VeriSign revealed that nearly 75 percent of the 400 study respondents have experienced one or more DDoS attacks in the past year. Yet, most e-commerce businesses are not prepared for a large-scale DDoS attack. Could your business afford three or more hours of downtime? Avoid that revenue loss by registering for this free white paper

    Click here to download the free white paper More…

    • View more offers


    Quick Vote

    • Does your office have a color printer or copier?

      • Yes (75%, 3 Votes)
      • We're looking into buying one (25%, 1 Votes)
      • No (0%, 0 Votes)

      Total Voters: 4

      Loading ... Loading ...

    • advertisement