Security & Compliance


Robust security at every turn.

Other litigation support companies claim they are SOC 2 Type II certified. But do they have attestation from a reputable independent auditor?

U.S. Legal Support does. Your highly sensitive case and client data is protected by full-spectrum, robust security that meets best practices.

We take data privacy and security very seriously.

Your confidential and sensitive case and client data is protected by robust plans to prevent breaches and to respond promptly to any threats that may arise. We have a 24/7 Network & Security Operations Center and maintain redundant datacenters to promote the full and uninterrupted availability of your data. We work hard so you can rest easy.

HIPAA Compliant

An independent auditor has verified that
U.S. Legal Support is HIPAA compliant for the protection, privacy, security and integrity of all protected health information and personally identifiable information of your clients.

End-to-End Encryption

All transmitted files are subject to end-to-end encryption, protecting your data from being read or modified by anyone other than the sender or recipient(s).

SOC 2 Type II Certified

An independent auditor has verified the procedures, safeguards and technology that we employ to ensure the protection of your sensitive data.

NIST Cybersecurity Framework

U.S. Legal Support follows the NIST Cybersecurity Framework regarding policies, procedures and controls.

9 essential cybersecurity questions to ask in the age of COVID-19 and beyond.

To safeguard your confidential information, you need to be aware of potential vulnerabilities so you can take the necessary measures to mitigate risks. 

The U.S. Legal Support Difference

We offer security and data protection that no other end-to-end litigation support services company can provide. 

While other providers claim they are HIPAA compliant and SOC 2 Type II certified, without attestation from a reputable independent auditor, they cannot guarantee that systems and operational processes actually ensure HIPAA compliance and follow SOC 2 Type II guidelines.

These other providers also typically rely on the SOC 2 Type II certification of the datacenters they run on, not their own internal controls. This is not the case with U.S. Legal Support. Our SOC 2 Type II certification confirms our own internal processes and controls and has been verified by reputable, independent auditors.

In addition to HIPAA compliance and SOC 2 Type II certification, U.S. Legal Support provides:

  • Attestation from reputable independent auditors of all systems, processes and controls
  • Intrusion detection and prevention systems
  • Third-party penetration testing
  • Incident response plan that is audited and tested in our SOC 2 Type II report
  • Frequent backups and replication across multiple, geographically dispersed datacenters
  • Disaster recovery plan

Protecting your sensitive case and client data is our priority.