Home
Cloud Storage for Legal Documents
Tags:, , , , , , , , , , , , , , ,

Cloud Storage for Legal Documents

April 20, 2014 Security, Small Business Tips, Tech Tips

Cloud Storage for Legal Documents

cloud storage lock

Attorneys and law firms are now using cloud storage to store legal documents.  State bar associations have endorsed the use of cloud storage, as long as reasonable care is used to safeguard privacy and security.

Individuals can also store legal documents using cloud storage.  Several safeguards must be followed.  Storage accounts must use a strong password, consisting of upper and lower case letters, numbers and special characters.  Avoid using words found in the dictionary, and avoid using the same password for multiple accounts.

Two-Factor Authentication

In addition to strong password security, look for services that require or allow two-factor authentication (2FA). Two-factor authentication requires a password (something you know), plus your computer, cell phone or YubiKey® (something you have).  A password alone is not sufficient to gain access to the account.

Two-factor authentication will require you to use a known computer, recognized by a machine ID code, or to enter a 6-digit code, generated by an app installed on your cell phone.  The 2FA app will generate a Time-based One-Time Passcode (TOTP) a temporary code number, that will expire in 30 seconds.  Only the person that has the cell phone will be able to receive the code number needed to access the cloud storage account.

Encryption versus Plain Text

Confidential files, including legal documents, kept in cloud storage, must not be stored in plain text format.  With plain text documents, anyone that gains access to the account could read the contents of the document.  For security, files must be encrypted before they are transferred on the internet (pre-internet encryption), and they must be stored in an encrypted format.

Some vendors only encrypt the files during transfer, but then store the files in plain text format.  That is not acceptable security.

Encryption Key

The vendor must not know the encryption key.  Without the encryption key, anyone that gains access to the cloud storage account would only be able to see files that are encrypted, scrambled and unreadable.

Filen Secure Cloud Storage

Only the user must have the encryption key, not the vendor.  It must be private.  This is known as Trust No One (TNO) security.  The encrypted cloud storage vendor that we recommend is Filen.  They provide secure, encrypted cloud storage with TNO security.

For important legal documents, you can keep the original paper documents in a fire-proof safe.  Store them inside of a sealed plastic bag to prevent moisture damage,  You can scan a legal document into a PDF file to store a copy on your computer.  Add a strong password to the PDF file.

Local Backup and Cloud Storage

You can store a local backup copy of the legal documents on a micro SDHC or micro SDXC memory card, or Samsung® USB FIT Plus® flash drive. The memory card or FIT+ flash drive is tiny and rugged and can be stored in a fireproof safe, or at a local offsite location, such as your office, the home of a relative, or your attorney’s office, or a bank safe deposit box.

Secure cloud storage can be one additional offsite location as a backup.  Cloud storage also provides a way to access an electronic copy of your documents, 24 hours a day, from any location that has internet access.

In case you become incapacitated, be sure to inform someone else, such as a family member, attorney, or the agent under your power of attorney, or the trustee of your trust, of the passwords needed to gain access to your secure PDF files and cloud storage account.

Filen offers a free plan with 10 GB of encrypted cloud storage. That is plenty of space for storing personal and legal documents like a last will and testament, funeral and cemetery documents, living will, living trust, power of attorney, real estate deeds, life insurance documents, motor vehicle title, birth certificate, driver’s license, passport, social security card, military papers, home inventory, etc.

Medical Records, HIPAA Privacy

For privacy, you may wish to keep medical records in a separate account, and only allow access with a notarized HIPAA Authorization Form.

Update [2024-05-07] We no longer use or recommend SpiderOak. We now use Filen, with servers in Germany, and Proton® Drive encrypted cloud storage, with servers in Switzerland, both with 2FA login protection for extra security.

Visit our website for Colorado Springs Mobile Notary services or Colorado Notary Training classes.

© Copyright 2014-2024 ABC Legal Docs, LLC All rights reserved. Do not copy. Citations welcome. Terms of Use apply.

About The Author

Jerry Lucas

Author Summary: Jerry Lucas is a retired Colorado Notary Public and notary blogger.

Author Portfolio: Jerry has written over 300 articles sharing his subject matter expertise in the Colorado Notary Blog.

Please add a valuable comment or question, not spam, to our Colorado Notary Blog. Please share on social media. Our Terms of Use and Blog Comment Policy apply.