Data Security Policy
Keeping Your Data Safe
Lawyers of Tomorrow operates on a managed server of GoDaddy.com LLC that complies with strict international standards. Our website files and database are stored in the EU and the US and are continuously backed up. GoDaddy data centres are protected by physical access controls, intrusion and fire detection systems and 24/7 professional security staff. Authorised staff must pass two-factor authentication a minimum of twice before accessing data centre floors. Visitors are continually escorted on the premises.
Access to the web-based infrastructure at Lawyers of Tomorrow is securely controlled via encrypted login (SHA-2 SHA2 ECDSA algorithm and 2048-bit encryption – the strongest on the market) and protected by 2-factor authentication for all administrators.
Our website has earned the McAfee SECURE trustmark which confirms it is free of malware, malicious links and phishing activity – and that it has a valid SSL Certificate. Where our website asks customers for sensitive information – name, email address, usernames, passwords, credit card numbers, etc. – our customers’ data are protected by advanced encryption (SHA2 ECDSA algorithm and 2048-bit encryption – the strongest on the market) to prevent hackers from reading any data that passes to or from our site.
Our email lists of subscribers and customers are managed by ConvertKit LLC which keeps real time copies of our data in different locations in the EU and the US and conducts daily backups.
We have continuous resource and infrastructure access monitoring in operation 24/7, 365 days a year. Any alerts generated by our monitoring system are sent to our senior team members immediately and actioned. Lawyers of Tomorrow’s firewall actively protects our site from attackers by:
- providing "Brute Force Protection" (including two-factor authentication, strong password enforcement, and invalid login throttling),
- blocking requests matching known attack patterns, and
- updating our site with the protection of the Real-Time IP Blacklist.
Training and audits
Regular audits are conducted at Lawyers of Tomorrow to ensure we use the latest technologies and best practices to protect data. All employees at Lawyers of Tomorrow are trained in data security and are bound by strict confidentiality provisions.
Security testing is an essential part of our quality assurance process. All of our people are trained in these development processes prior to joining Lawyers of Tomorrow as employees or contractors.