Extract from David Greetham’s article “Securing Each Link in the e-Discovery Chain”
Cloud service providers to the federal government must meet the rigorous requirements of the Federal Risk and Authorization Management Program. FedRAMP, as it’s known, is designed to help federal agencies follow the government’s “cloud first” policy, and includes detailed and strict encryption and other cybersecurity requirements.
This has become the gold standard in cloud security for the federal government with some of the highest standards of encryption, so it’s tempting to think that you’re covered by meeting FedRAMP requirements when performing e-discovery involving the government, or handling sensitive government documents.
You’re not.
