Client and Counsel Sanctioned More Than $2.5 million for ‘Amateur Hour’ Discovery Ineptitude

Photo of Edward J. JacobsPhoto of David ChoiBy Edward J. Jacobs and David Choi on Posted in Case Summaries
Network Security,Security,Security System,Technology,Internet,Safety,BIG Data,Encryption,Digitally Generated Image,Protection,Privacy, Blockchain, Computer,Connection,Lock,Coding,Network Security,Technology,Security,Security System,

Practical Insight

This case is a cautionary tale for the attorney who may know to say all of the right things when it comes to modern discovery practice but, in fact, lacks the expertise and competence to oversee a defensible discovery effort. This counsel instead subjected the court to a self-described “inner circle of judicial hell” in dealing with discovery ineptitude. As complex discovery has become a specialized field, courts have also grown more sophisticated in their understanding of the hallmarks of competent e-discovery counsel versus those who are merely winging it. Discovery practitioners should have a thorough understanding of their clients’ information systems in order to properly defend or prosecute their cases; otherwise they risk severe consequences.

Case Summary

In a trademark case involving e-cigarettes branded under similar marks, the defendants and their counsel were sanctioned more than $2.5 million for discovery violations that stemmed from the counsel’s lack of competency in e-discovery:

  • Although the defense counsel advised the defendants to preserve all potentially relevant emails from email accounts, the counsel failed to issue a formal litigation hold, inquire thoroughly about all possible data sources or instruct their client to disable automated deletion features, which “any competent counsel should have done.”
  • The counsel mistakenly assumed that all relevant emails could be collected from the defendants’ servers, when in reality, the defendants used web-based emails and messages stored online.
  • The counsel failed to appreciate the difference between email and chat applications, which resulted in the spoliation of relevant chat data.
  • The counsel allowed their clients to self-collect emails and communications relevant to the litigation without monitoring or supervising the searches. Attorneys must recognize “it is not sufficient to notify all employees of a legal hold and expect that the party will then retain and produce all relevant information.”

After it became apparent the defendants neglected to produce certain relevant communications, the defendants reengaged an electronically stored information (ESI) vendor, which found more than 15,000 relevant documents that were never collected or produced. Additionally, the ESI vendor was unable to recover other potentially relevant emails and chats that had been automatically deleted. The court chastised the defense counsel for their lack of the basic knowledge, training and skills to properly handle ESI, stating: “Counsel must be competent in their knowledge and ability to identify, preserve, collect, review, and produce ESI. Competence pervades every aspect of the ESI discovery process . . .  . It is no longer amateur hour. It is way too late in the day for lawyers to expect to catch a break on e-discovery compliance because it is technically complex and resource-demanding.

The court also dismissed the counsel’s attempt to shift blame to the ESI vendor. It is a lawyer’s responsibility to have “a reasonable understanding of the[ir] client’s information systems,” and such “understanding of the client’s information systems allows counsel to create a systematic process and plan for responding to discovery requests. The absence of a process and a plan is strong evidence that counsel did not conduct a reasonable inquiry.” The court granted the plaintiff’s motion for sanctions under Federal Rules 26(g) and 37, which included monetary sanctions and requiring the defense counsel to attend “at least eight hours of continuing legal education (CLE) on ESI.”

The court noted in its subsequent ruling – voicing its frustration with the painstaking saga – that it went through the “inner circle of judicial hell” to assess the appropriate amount of attorneys’ fees to award in sanctions. After an exhaustive review and analysis of the additional costs incurred due to the defense side’s errors, the court ultimately found that approximately $2.5 million in sanctions was warranted –half to be paid by the defendants and the other half by the defendants’ two counsel. It justified the large sum based, in part, on the fact that while the defendants “knew what went wrong . . . the jaws of life were needed to extract these facts from them,” forcing the plaintiff to spend many hours to piece together and “understand the shambolic discovery mess created by defendants.”

DR Distribs., LLC v. 21 Century Smoking, Inc., 513 F. Supp. 3d 839 (N.D. Ill. 2021).

DR Distribs., LLC v. 21 Century Smoking, Inc., No. 12 CV 50324 (N.D. Ill. Oct. 6, 2022).

DOJ Corporate Criminal Enforcement Updates Shine a Spotlight on Texts and Instant Messaging Applications as Potential Evidence

Photo of Edward J. JacobsPhoto of David ChoiPhoto of Csilla Boga-LofaroBy Edward J. Jacobs, David Choi and Csilla Boga-Lofaro on Posted in Alert
Teens in circle holding smart mobile phones - Multicultural young people using cellphones outside - Teenagers addicted to new technology concept

In September 2022, the U.S. Department of Justice (DOJ) issued a memo announcing revisions to the DOJ’s corporate criminal enforcement policies and practices. The memo made clear that the DOJ expects “all corporations with robust compliance programs [to] have effective policies governing the use of personal devices and third-party messaging platforms for corporate communications . . . provide clear training to employees about such policies and . . . enforce such policies when violations are identified.” This policy effectively applies to every business that could conceivably face DOJ inquiry and evidences the DOJ’s growing frustration with its inability to obtain relevant texts and instant messages from target subjects, especially when these communications are occurring outside employer-provided communication platforms.

Read full alert.

The Supreme Court Dodges—for Now—the Circuit Split on the ‘Dual Purpose’ Test for Privilege

Photo of Edward J. JacobsPhoto of David ChoiPhoto of Csilla Boga-LofaroPhoto of Jennifer NegronBy Edward J. Jacobs, David Choi, Csilla Boga-Lofaro and Jennifer Negron on Posted in Supreme Court

In re Grand Jury, 23 F.4th 1088 (9th Cir. 2022), appeal dismissed as improvidently granted, In re Grand Jury, 598 U.S. ____ (2023) (No. 21-1397).

Summary of the Case: The Supreme Court, which had initially agreed to consider a circuit split on a privilege issue that commonly arises in discovery, reversed course and dismissed the writ of certiorari as “improvidently granted”—meaning the Supreme Court will not resolve the circuit split this term. The appeal arose from a recent Ninth Circuit decision ordering a law firm to produce documents that reflected “dual purpose” legal and business advice. The firm had provided legal advice about certain tax avoidance measures to a client and also prepared the client’s tax filings. Later served with a grand jury subpoena in connection with a criminal investigation of this client, the firm withheld some communications containing both legal and business tax advice. 

Continue Reading

Key COVID-19 Considerations for U.S. Discovery and Information Governance

Photo of Gilbert S. KeteltasPhoto of James A. ShererBy Gilbert S. Keteltas and James A. Sherer on Posted in Information Governance

Many businesses have remote work and bring-your-own-device policies that cover access to company systems and information from personal devices. These policies may also state expectations or requirements for the management and security of company information. But these policies likely do not account for the rapid transition to virtual offices and remote work hastened by the COVID-19 pandemic. Among other challenges:

  • Segments of the workforce may be teleworking for the first time.
  • Those engaged in remote work may not be aware of or understand applicable policies and practices, and advance training may be (or might have been) impractical.
  • The rapid move to remote work may rely on a greater variety of devices, including home devices, that might not otherwise be favored. And in many cases, employee-owned, or even company-issued, devices may be shared with multiple users in the home (for example, students taking classes online).
  • Furloughs and workforce reductions in times of quarantine may complicate onboarding and off-boarding where legal holds are in place or are triggered during the pandemic.

Continue Reading

COVID-19 and U.S. Statutes of Limitation

Photo of Gilbert S. KeteltasPhoto of Justin DonohoBy Gilbert S. Keteltas and Justin Donoho on Posted in Statutes of Limitation

At the federal and state levels, there have been calls to suspend statutes of limitations during the COVID-19 outbreak. A number of states have already acted, but state approaches vary and are open to future changes as the challenges of the pandemic play out at the national, state and local levels. This uncertainty affects businesses considering when they must file actions and those assessing whether a risk of anticipated litigation has been extinguished. It also affects companies facing potential civil or criminal enforcement actions including, for example, those for whom the clock is running on antitrust merger reviews.

Although the global response to COVID-19 is unprecedented, suspensions of limitations periods in times of great business interruptions are not. Legislation was issued to toll limitations periods, for example, during the Civil War and the subsequent world wars. In more recent times, limitations periods have been extended to account for the aftermaths of hurricanes and Sept. 11, 2001. Continue Reading

Adapting E-Discovery Workflows to a Remote Work Environment

Photo of Edward J. JacobsPhoto of May Tal GongolevskyPhoto of Victoria RutherfurdPhoto of Joshua SatterBy Edward J. Jacobs, May Tal Gongolevsky, Victoria Rutherfurd and Joshua Satter on Posted in E-Discovery

As courts and litigants adapt to the new normal by instituting social distancing measures through remote hearings and depositions, how we preserve, collect and produce documents should not be an afterthought. While the practice of e-discovery may already be well suited to remote work given the advanced evolution of technologies available to address challenges, below are five key areas to address in the current COVID-19 environment.

1. Litigation Holds: How Are Your Custodians Communicating and Saving Documents?

Now may be a good time to check in to determine whether any additional guidance should be given to custodians and system owners, given the fact that the majority of Americans are now working from home due to COVID-19 social distancing measures. Do your current Bring Your Own Device and Employee Document policies address the different ways your employees may be communicating and saving work? They may be using platforms, such as text messaging or instant messaging services, that are not employer-provided as a matter of practicality and convenience, or saving data locally to their personal devices. Have legal hold recipients been reminded of where they should or should not be saving data? A written reminder may help protect the employer and save the cost and time required to conduct a messy collection from personal devices or platforms. Out of an abundance of caution, legal holds may need to be supplemented to include personal devices.

2. Custodial Interviews: Then v. Now

Custodial interviews can be easily conducted over the phone or by videoconference. Factor into your questions the custodian’s work-from-home environment and how that may have changed their relevant practices. Best practices still weigh against custodial self-collections; use technology to collect and narrow data for review.

3. Remote Collections: Some Challenges Remain

Technology affords us the ability to remotely access an enormous array of electronic data on servers, in cloud environments and even on personal devices without leaving the comfort of our homes. However, there are still some sources that may require physical, on-site collection (think back to the olden days of paper files). If you have media or papers that cannot be physically accessed at this time, identify them as soon as possible and consider negotiating phased discovery with your adversaries and/or the court. Make sure that those sources are adequately preserved in the meanwhile. Postpone that discovery until such a time it is safe and permissible to collect the potentially relevant data. Diligence, transparency and cooperation performed now may avert a crisis down the road.

4. Off-Site Review: Find Alternative Means of Feedback and Supervision

Vendors who are hired to collect/review discoverable materials will likely have to do this job remotely given travel bans and social distancing measures, which may last well into the future. Most vendors and review platforms are well equipped for remote work, but valuable real-time feedback from project managers given to groups of reviewers all located in a designated review center may be lost as the team learns the case, particularized privilege issues and relevant universe. Utilize calls and videoconferencing to compensate for any potential loss of communication as reviewers work individually at home. Make sure that reviewers sign remote work policies that factor in security. Some vendors offer unique security add-ons—be sure to ask your vendors about their remote review offering.

5. Data Confidentiality and Security: Protect Your Client’s Information

With attorneys, vendors and reviewers now working remotely, don’t neglect ensuring that all the ways in which you are communicating, sending, reviewing and producing discovery are secure and adequately protect your potentially privileged and confidential information from accidental or malicious loss or disclosure. It has been widely reported that data security risks have increased in the age of COVID-19. Consult competent counsel to vet vendor contracts for appropriate security and liability provisions and protect your data.

The CLOUD Act and the Warrant Canaries That (Sometimes) Live There

Photo of James A. ShererPhoto of Nichole SterlingBy James A. Sherer, Nichole Sterling and Brittany Yantis on Posted in Data, Privacy

The Clarifying Lawful Overseas Use of Data Act (Pub. L. No. 115-141 (2018), or the CLOUD Act, was enacted in the U.S. on March 23, 2018, in response to difficulties U.S. law enforcement agencies (LEAs) had when attempting to gain access to data held by cloud service providers through Stored Communication Act (SCA) warrants, as the SCA did not contemplate cloud computing when it was enacted into law; likewise, LEAs were also forced to utilize U.S. Senate-approved mutual legal-assistance treaties (T.I.A.S. No. 10-201 or MLATs) or letters rogatory to access data stored overseas.

The CLOUD Act was occasioned by the U.S. v. Microsoft litigation, in which Microsoft had argued that it was not required to provide access to its users’ private data stored on Dublin servers. Microsoft lost the case in 2014, but won an appeal in 2016. The U.S. Supreme Court heard argument on the case in February 2018. Demonstrating the CLOUD Act’s importance for LEA, in late March 2018 (immediately following the CLOUD Act’s passage), the U.S. Department of Justice (DOJ) asked the U.S. Supreme Court to drop the pending Microsoft litigation as moot, as the DOJ could (and did) alternatively use the CLOUD Act to issue a new warrant for the data held by Microsoft in Dublin. Continue Reading

E-discovery, the Cloud and Blockchain – How New Practices May Require a ‘Back to School’ Approach

Photo of James A. ShererPhoto of Nichole SterlingBy James A. Sherer and Nichole Sterling on Posted in Blockchain, E-Discovery

The practice of e-discovery has always incorporated considerations of new and emerging technologies as well as related attorney competence. With the advent of cloud services and significant use by clients, e-discovery practitioners incorporated knowledge of those new platforms and offerings into their preservation strategies and requests for production, appropriately considering a variety of client and party uses of the cloud, especially for heavily used services such as email, customer relationship manager (CRM) platforms, and document storage and sharing. This focus on the cloud came to a head in the 2014 Brown v. Tellermate Holdings litigation, which examined the defendant’s use of a cloud provider and raised the following considerations for practitioners:

Continue Reading

eDiscovery and Technology

Photo of Nkosi ShieldsPhoto of Karen DeSouzaBy Nkosi Shields and Karen DeSouza on Posted in E-Discovery

Should All States Require Continuing Technology Education (CTE)?

For more than five years we have discussed the need for attorney competence in technology, especially as related to discovery in posts like this one and this one. As Electronically Stored Information (ESI) continues to grow, it is critical for all attorneys to understand ESI and evolving technology. This need for competence is only enhanced as the volume of ESI increases and new technologies and methods of creating, storing and sharing data emerge. Continue Reading

What the Working Party might be Thinking about Discovery – WP 261 Derogations to the GDPR

Photo of James A. ShererPhoto of Nichole SterlingBy James A. Sherer and Nichole Sterling on Posted in Privacy

On Feb. 6, 2018, the Article 29 Working Party (Working Party 29) published Working Paper 261 (WP 261), which provided guidance on the provisions of Article 49 of the European Union’s (EU) General Data Protection Regulation (GDPR). This guidance was especially interesting to data privacy attorneys and litigators (primarily e-discovery practitioners) in the United States who had been considering the operation of GDPR Article 49 as it relates to cross-border data transfers undertaken in the context of litigation or regulatory investigations and had been looking at the derogations in Article 49 as a means to continue data transfers in those instances. Many of those attorneys had already been cautious when determining how to best protect the privacy of citizens of EU Member States when responding to litigation or regulatory requests that originated in the United States, which does not specifically recognize the same types of privacy protections and does often require the production of information that raises EU privacy concerns, and they were especially concerned with how the GDPR would further modify that calculus.

Continue Reading

LexBlog