Digital evidence

618 views

Published on

Corporate resopnsibility. Digital evidence

Published in: Business
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
618
On SlideShare
0
From Embeds
0
Number of Embeds
8
Actions
Shares
0
Downloads
17
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Digital evidence

  1. 1. www.tusconsultoreslegales.com [email_address] Internet/Digital evidence (COMPUTER FORENSICS) CORPORATE CRIMINAL LIABILITY
  2. 2. www.tusconsultoreslegales.com [email_address] INTERNET/INVESTIGATION OF DIGITAL EVIDENCE/COMPUTER FORENSICS 4. PREVENTIVE ANALYSIS OF CORPORATE CRIMINAL LIABILITY 3. HOW TO PREVENT AND/OR MINIMISE CORPORATE CRIMINAL LIABILITY 2. LEGAL FRAMEWORK OF CORPORATE CRIMINAL LIABILITY AND DIGITAL EVIDENCE 6. REASONS FOR A FORENSICS INVESTIGATION 1. SITUATIONS WHICH SHOULD BE AVOIDED: REFLECTIONS 5. STAGES OF THE COMPUTER FORENSICS PROCESS
  3. 3. www.tusconsultoreslegales.com [email_address] <ul><li>Being involved in a criminal process as a result of not having adopted the control measures provided in article 20.3 of the Workers' Statue </li></ul><ul><li>Being obliged to pay economic fines deriving from a criminal process, as well as having invested part of the budget in preparing a legal defence, which is on occasions expensive (as a result of not having an insurance policy which includes legal defence) and which requires swift action </li></ul><ul><li>Taking the risk that an employee, benefits economically from committing a crime with a company being held liable for said benefit as its resources were used </li></ul>1. SITUATIONS WHICH SHOULD BE AVOIDED REFLECTIONS:
  4. 4. www.tusconsultoreslegales.com [email_address] <ul><li>In addition, taking the risk of receiving an economic penalty from the Data Protection Agency as a result of not having met the mandatory regulation on security measures </li></ul><ul><li>Not having foreseen the situation and therefore not having an optimal traceability system which makes it possible to detect possible crimes, or once they have taken place, managing to mitigate the criminal liability as established in article 31.4 of the Spanish Criminal Code, letters a,b,c and d through the evidence collected </li></ul>1. SITUATIONS WHICH SHOULD BE AVOIDED REFLECTIONS:
  5. 5. www.tusconsultoreslegales.com [email_address] 2. LEGAL FRAMEWORK OF CORPORATE CRIMINAL LIABILITY AND DIGITAL EVIDENCE (1/2) <ul><li>As established in Article 31.2 bis of the Criminal Code. </li></ul><ul><li>  </li></ul><ul><li>“ Legal persons will also be criminally liable for the crimes committed in the exercise of business activities and on the account and benefit of said activities by those who, subject to the authority of the natural persons mentioned in the above paragraph, have been able to perform the actions as they were not subject to the due control according to the specific circumstances of the case”. </li></ul><ul><li>  </li></ul><ul><li>Specifically, article 31.4 of the Criminal Code establishes that: </li></ul><ul><li>  </li></ul><ul><li>“ Only the following activities may be considered as attenuating circumstances of the criminal liability of legal persons carried out subsequent to the crime being committed and through its legal representatives&quot;: </li></ul><ul><li>“ Having proceeded to report the offence to the authorities before becoming aware of the legal procedure against it&quot;. </li></ul><ul><li>In order to comply with this section of article 31 bis, it is necessary to know beforehand that an offence has been committed. </li></ul>
  6. 6. www.tusconsultoreslegales.com [email_address] 2. LEGAL FRAMEWORK OF CORPORATE CRIMINAL LIABILITY AND DIGITAL EVIDENCE (2/2) <ul><li>&quot;Having collaborated in the investigation of the fact by providing proof at any moment of the process which is new and decisive for clarifying the criminal liabilities arising from the facts&quot;. </li></ul><ul><li>Collection of proof from the point of view of an analysis/investigation of the evidence subsequent to the crime being committed. </li></ul><ul><li>“ Having proceeded at any moment of the procedure and prior to the oral trial to rectify or reduce the damage caused by the crime”. </li></ul><ul><li>From a security point of view, it is possible to intervene so as to reduce the consequences of the damage caused by an employee from the accused company. </li></ul>
  7. 7. www.tusconsultoreslegales.com [email_address] 2. LEGAL FRAMEWORK OF CORPORATE CRIMINAL LIABILITY AND DIGITAL EVIDENCE (2/2) <ul><li>&quot;Having established, prior to the start of the oral trial, effective measures to prevent and discover crimes which may be committed in the future with the resources or under the cover of the legal person&quot;. </li></ul><ul><li>Collection of evidence, prior to the oral trial, is a measure to discover crimes which may have taken place. </li></ul><ul><li>  </li></ul><ul><li>  </li></ul><ul><li>However, these articles reflect a situation in which the employer is involved in a criminal process. It is not necessary to have identified the natural person which has committed the crime, it is sufficient that the crime has originated inside the company </li></ul>
  8. 8. www.tusconsultoreslegales.com [email_address] 3. HOW TO PREVENT AND/OR MINIMISE CORPORATE CRIMINAL LIABILITY PREVENTIVE MEASURES: 1- Establishing control measures: Implementing an internal corporate policy 5- Detecting and preserving evidence which allow a proactive legal defence: Minimising the consequences of the crime 2- Establishing technical and organisational measures: Complying with personal data protection obligations (Organic Law on Personal Data Projection and Implementing Legislation) 3- Implementing security certificates: Preventing identity theft COMPUTER FORENSICS 4- Establishing cover measures: Having an insurance policy which also covers legal services
  9. 9. www.tusconsultoreslegales.com [email_address] An internal corporate policy with clear guidelines, specifying the permitted use of both the company's internal and external means of communication, with the corresponding behaviours, expressly indicated, through control measures established by the employer as provided in article 20.3 of the Workers' Statute. 4. PREVENTIVE ANALYSIS OF CORPORATE CRIMINAL LIABILITY (1/3) 1- Establishing control measures: Implementing an internal corporate policy 2- Establishing technical and organisational measures: Complying with personal data protection obligations (Organic Law on Personal Data Projection and Implementing Legislation) Having complied with the obligations established by the Organic Law on Personal Data Protection and implementing regulations to establish the technical and organisational measures necessary, as well as efficient control measures in accordance with article 20.3 of the Workers' Statute which are compatible with the worker's privacy. Above all, ensuring control of both internal and external means of communication.
  10. 10. www.tusconsultoreslegales.com [email_address] 4. PREVENTIVE ANALYSIS OF CORPORATE CRIMINAL LIABILITY (2/3) 3- Implementing security certificates: Preventing identity theft Need to have an insurance policy which also contributes to establishing cover for legal defence.   4- Establishing cover measures: Having an insurance policy which also covers legal services <ul><li>Distinguishing between the different types of certificates, especially for mail and those which ensure double protection in security to prevent identity theft by unauthorised third parties (internal and external) </li></ul><ul><li>To implement the digital signature: </li></ul><ul><li>Bearing in mind legal obligations </li></ul><ul><li>- The obligations to conserve invoices </li></ul>
  11. 11. www.tusconsultoreslegales.com [email_address] 4. PREVENTIVE ANALYSIS OF CORPORATE CRIMINAL LIABILITY (3/3) The detection, preservation and investigation of electronic proof or evidence which may be used to defend the company against possible criminal liability is known as COMPUTER FORENSICS. This discipline is basically divided into four major stages or processes, which can be carried out independently, or consecutively, according to the company's needs. The stages of Computer Forensics go from prevention up to implementing proof in the trial. 5- Detecting and preserving evidence which allow a legal defence oriented towards minimising possible criminal consequences COMPUTER FORENSICS
  12. 12. www.tusconsultoreslegales.com [email_address] 5. STAGES OF THE COMPUTER FORENSICS PROCESS PREVENTION FORENSIC READINESS Objective: Facilitating a possible digital investigation How: Establishing and implementing traceability procedures Example: Intrusion Detection Systems LOCATING INFORMATION E-DISCOVERY Objective: Search for specific data from a large quantity of information How: Use of search and filter mechanisms in file systems and databases Example: Search for deleted accounting data DATA ACQUISITION CHAIN OF CUSTODY Objective: Correctly initiating the chain of custody of future proof How: Bit by bit copy of digital information before a notary Example: Copies of information from a mobile telephone EVIDENCE ANALYSIS EXPERT REPORT Objective: Analysing digital information and searching for possible evidence. How: Blind and automated search for suspicious activities Example: Analysis of the PC of an ex-employee for possible information theft
  13. 13. www.tusconsultoreslegales.com [email_address] 6. REASONS FOR A DIGITAL INVESTIGATION <ul><li>The impact of the incident on an economic level </li></ul><ul><ul><li>The loss of data is a significant economic loss. Scenarios such as audits resulting from the Organic Law on Personal Data Protection or litigation among entities may require swift intervention by experts. </li></ul></ul><ul><li>Opportunity to identify electronic proof </li></ul><ul><ul><li>On many occasions investigation processes are started inadequately for achieving correct maintenance of the chain of custody, in such a way that the evidence which is recovered is not considered as electronic proof in a legal framework. </li></ul></ul><ul><li>Opportunity to identify direct liabilities </li></ul><ul><ul><li>It is essential to establish preventive measures so as to identify evidence related with improper use of assets or false accusations. </li></ul></ul>
  14. 14. www.tusconsultoreslegales.com [email_address] 6. REASONS FOR A FORENSIC INVESTIGATION <ul><li>Opportunity to identify liabilities of third parties </li></ul><ul><ul><li>External provider responsible for managing information systems </li></ul></ul><ul><ul><li>External provider responsible for managing the security of information systems </li></ul></ul><ul><li>Economic cost of the investigation against the benefit received (ROI) </li></ul><ul><li>Conclusion: </li></ul><ul><li>It is now not only important to consider validly covering the reasons for a dismissal and ensuring the company's productivity, but it is also necessary to prevent the reason so as to avoid corporate criminal liability </li></ul>
  15. 15. www.tusconsultoreslegales.com [email_address] Thank you for your interest [email_address] To purchase documents: www.yourlegalconsultants.com To hire the services of an expert, please contact:

×