Security & Compliance

Robust security at every turn.

Other litigation support companies claim they are SOC 2 Type 2 compliant. But do they have attestation from a reputable independent auditor?

U.S. Legal Support does. Your highly sensitive case and client data is protected by full-spectrum, robust security that meets best practices.

Data protection and cybersecurity mitigation for law firms

We take data privacy and security very seriously.

Your confidential and sensitive case and client data is protected by robust plans to prevent breaches and to respond promptly to any threats that may arise. We have a 24/7 Network & Security Operations Center and maintain redundant datacenters to promote the full and uninterrupted availability of your data. We work hard so you can rest easy.

HIPAA Compliant

An independent auditor has verified that U.S. Legal Support is HIPAA compliant for the protection, privacy, security and integrity of all protected health information and personally identifiable information of your clients.

End-to-End Encryption

All transmitted files are subject to end-to-end encryption, protecting your data from being read or modified by anyone other than the sender or recipient(s).

SOC 2 Type 2

An independent auditor has verified the procedures, safeguards and technology that we employ to ensure the protection of your sensitive data. All services using AI technologies, including deposition summaries and medical record summaries, are covered by a SOC 2 Type 2 certification. 

NIST Cybersecurity Framework

U.S. Legal Support follows the NIST Cybersecurity Framework regarding policies, procedures and controls.

Artificial Intelligence

Specific to the use of Artificial Intelligence (AI) and Machine Learning (ML), client data will be protected and excluded from any machine learning model training. U.S. Legal Support only works with providers that have been thoroughly vetted and proven as trusted services. We maintain SOC 2 Type 2 and HIPAA Compliance certifications and require all vendors interacting with data to obtain similar security certification. Further, there is no model data storage using client information, ensuring data privacy. Additionally, all AI platforms used for processing are headquartered in the United States and subject to the laws and jurisdiction of the United States government.

10 essential cybersecurity questions to ask potential vendor partners

To safeguard your confidential information, you need to be aware of potential vulnerabilities so you can take the necessary measures to mitigate risks. 

Download our cybersecurity checklist

We offer security and data protection that no other end-to-end litigation support services company can provide. 

While other providers claim they are SOC 2 Type 2 and HIPAA compliant, without attestation from a reputable independent auditor, they cannot guarantee that systems and operational processes actually ensure HIPAA compliance and follow SOC 2 Type 2 guidelines.

These other providers also typically rely on the SOC 2 Type 2 of the datacenters they run on, not their own internal controls. This is not the case with U.S. Legal Support. Our SOC 2 Type 2 compliance confirms our own internal processes and controls and has been verified by reputable, independent auditors.

In addition to SOC 2 Type 2 and HIPAA compliance, U.S. Legal Support provides:

  • Attestation from reputable independent auditors of all systems, processes and controls
  • Intrusion detection and prevention systems
  • Third-party penetration testing
  • Incident response plan that is vetted by independent cybersecurity incident response experts
  • Frequent backups and replication across multiple, geographically dispersed datacenters
  • Disaster recovery plan

U.S. Legal Support Security and Compliance Overview

Discover the true “U.S. Legal Support Difference” when it comes to the way we consider and safeguard our clients’ data.

Download the security overview

Protecting your sensitive case and client data is our priority.

Download the security brochure