In-transit and at-rest encryption
Clio applies in-transit and at-rest encryption using industry best practices (such as HTTPS and TLS) to ensure your firm’s data is stored and transmitted securely.
Automatic backups and data escrow
Clio performs regular automatic backups and makes use of geo-redundancy for its infrastructure. You can also make use of our data escrow feature to automate independent backups of your data.
Built with data residency (and physical security) in mind
Clio offers hosting options in the European Union, Australia, the United States, and/or Canada to address any data residency requirements. Clio’s hosting facilities are audited annually for security certifications (such as SOC 2 and ISO27001) to ensure they employ advanced physical security measures such as biometrics, CCTV cameras, and 24×7 on-site security.
Staying on top of the latest in cybersecurity
We continuously monitor for potential vulnerabilities and review and update our code and systems configuration to ensure your data is always protected.
Clio SOC2 compliance
Clio has completed attestation of SOC2 in accordance with International Standards on Assurance Engagements (ISAES). This further affirms Clio’s commitment to following industry recognised best practices. Our SOC2 report is available upon request.
Restrict visibility of sensitive case information to certain users at your firm.
Verify every login attempt via a mobile device—do it with a single tap using the Clio Mobile App or another multi-factor authentication solution.
Enforce strong passwords and/or regular password resets with Clio’s password policy settings.
Clio will automatically lock your account for a period of time after too many failed login attempts.
Clio logs the IP address of every session for your account and actions taken by your users to help you monitor for suspicious activity.
Clio is working in partnership with the Law Society of England and Wales and is an approved supplier of the Law Society of Scotland.