WHIR.COM | BLOGS | WEB HOST NEWS | FIND WEB HOSTS | RESELLER HOSTING | MAGAZINE | WHIR TV | NEWSLETTER | rss feeds
whir blogs
WHIR BLOGS OFFERS INSIGHTFUL COMMENTARY FROM WEB HOST INDUSTRY EXPERTS    
CURRENT WEB HOSTING JOBS:  
Sales OperatorManagement TrainerSenior Account Manager, Dedicated Hosting
September 6, 2007 | Posted By : David Snead at 6:40 PM PERMALINK | Blog Comments (0)

Thoughts from Office 2.0

Is Awareness a lawyer’s dream?  This afternoon, I met with David Carter a founder and the CTO of Awareness.  Awareness provides social media tools to businesses.  These tools allow corporations to create blogs, wikis and use other networking tools that have been found to facilitate business communication and community.  From a lawyer’s perspective, Awareness “gets it.”

One of the criticisms leveled at lawyers is that if our clients did what we recommended, employees would still be writing memos on notebook paper and sending them down to the steno pool for transcription.  In some ways that criticism is warranted when a client wants to incorporate technology that doesn’t facilitate compliance with the law.  While a particular item of technology, like a blog, might move your business forward, the real world, like liability for a defamatory post, often intervenes.  Awareness’ products seem embrace technology, and the productivity promised by it, while allowing compliance related efforts to take place in the background.

Awareness’ products incorporate permissioning, versioning and filtering out of the box.  These tools are crucial for businesses who seek to utilize office 2.0 tools, but who also understand the theory of litigation prevention (as opposed to litigation attraction).   Permissioning  is a great way for larger companies to embrace these technologies without sacrificing controls put in place to deal with real world issues.  For example, while free and open communication is a great thing, I think even the most diehard technology evangelist would agree that human resources’ wiki shouldn’t be open.  So business faces a choice:  deny HR a wiki, create a totally separate system for HR, or abandon wikis altogether.  A set of permission based wikis may solve this problem.

Versioning is another great tool.  Companies often need to know when and where a document, blog or wiki was updated.  This might help in understanding why a particular contract provision was worded the way it was or where a trouble ticket got mishandled.  The latter is a nice way to pre-empt litigation.  Imagine if you were using a wiki to problem solve a server crash that caused other problems.  By referring to prior versions of your wiki, you could effectively communicate with your customer about how things went wrong, and why.  This type of communication is often the single best way of keeping that customer from calling their lawyer, and increasing your legal costs as a result.

I also really like this version of filtering.  Filtering has VERY negative connotations.  When people, including myself, think of filtering, we tend to think of very heavy handed, and honestly, very lawyer driven, filtering systems that end up forcing people to communicate using vague and tortured language.  However properly implemented, filtering can be an effective business communication tool.  For example, you might want to create an internal corporate blog.  To make the blog effective you put few or no restrictions on what can be discussed.  You could use filtering to leverage your internal blog.  By setting up rules, certain content from your internal blog could be posted to your public blog.  Not only does this save you time and money, it makes your external blog more authentic, and might result in more market acceptance.

So, overall, my conversation with Mr. Carter was pretty exciting.  It’s interesting to see technology embraced and adapted in ways that acknowledge real world issues and the way corporate environments need to be structured to deal with business today.

 

Print | Send | del.icio.us | Linking Blogs
September 6, 2007 | Posted By : David Snead at 10:16 AM PERMALINK | Blog Comments (0)

Thoughts from office 2.0

The office2.0 conference began yesterday with a cocktail party.  At the party, I met a doctor from CNMRI who is using technology in two interesting ways.  He’s using Twitter so his staff can figure out what tasks each of them are engaged in throughout the day – this allows them to focus more on patients, and less on locating each other.  The second is a project to build a web based statewide health information network in the State of Delaware.  This will let doctors and patients share medical records across the web.

As interesting as these new applications of technology are, they rang two alarms for me:  privacy and HIPAA.  As I’ve noted in both my columns and on this blog, I believe that privacy is likely to emerge as a regulatory and litigation issue in the next year.  The use of Twitter in a medical capacity has significant privacy implications.  While I was unable to access Twitter to review its contract, I would assume that it has provisions similar to the contracts of most internet infrastructure providers which basically say that the provider has no liability for anything and does not guarantee the security of its network.  So where does that leave the doctor when Twitter accidentally discloses that one of the doctor’s patients is in exam room 3 being treated for a STD, and the doctor is sued when the patient’s wife finds out?  Twitter may have some liability depending on what its privacy policy says.  As I often point out, privacy policies are contracts between companies, their customers, and often third parties.  As a result, they should be reviewed with the same level of scrutiny.

HIPAA is also a big issue.  I inquired whether the doctor had sent Twitter a Business Associate Agreements (BAA) and how these agreements would function in the context of a networked medical records system in which each doctor had their own ISP and likely host who was connected to other hosts and bandwidth providers. 

BAAs are main legal issue for web hosts and other internet infrastructure providers under HIPAA.  BAA’s impose additional contractual obligations on third parties based on a health care provider’s obligations under HIPAA.  In essence you are contractually obligated to follow the terms of the BAA.  HIPAA itself does not contain a form BAA.  As a result, businesses are free to create their own BAAs as long as they conform to the bare minimum required by the statute.  As might be expected, some businesses have been using BAAs to back door contractual provisions that they were unsuccessful at getting in their initial negotiation.  The most common provisions I see are privacy warranties and SLA carve outs, neither of which are required by HIPAA.  Hosts and other internet infrastructure providers need to pay close attention to BAAs they receive to make sure that they are only contractually obligating themselves to things they can actually do.

Print | Send | del.icio.us | Linking Blogs
 
 
AUTHOR NAME
David Snead

rss feeds
 David Snead is Web hosting's best-known legal expert. He offers a credible legal perspective on actions in the Web hosting business and general developments in legislation. Click here to read his full biography.
WHIR BLOGGERS
Recent Entries
Archives By Subject

Find Web Hosts | Reseller Hosting | Personal Web Hosting | Small Business Web Hosting | Dedicated Servers | Managed Hosting | Adult Web Hosting
Reseller Hosting | Web Hosting Automation | Wholesale Domain Names | Private Label Web Hosting | Web Host Advertising Agencies | Host Services


About WHIR | Online Advertising | Print Advertising | Print Subscription | Email Newsletters | RSS Feeds 		 
Submit News | Privacy Policy | Buy Reprints
Web Host Industry Review, Inc. is not responsible for the content of comment submitted by our users.

   © Copyright Web Host Industry Review, Inc.