Trust Your Systems

Posted on by

I just got back from playing a round of golf, and while I had a great time thanks to my playing partner, my actual game was pretty lousy. Like most golfers, on the drive home I caught myself thinking: maybe it’s time for a new putter, a different set of clubs, or a new brand of golf balls.

But then it hit me — my clubs didn’t suddenly get worse in the past two weeks. My golf balls didn’t change. And my putter didn’t lose its magic. The truth was simple: it wasn’t the equipment, it was me.

My tempo was off. I was swinging too fast. I wasn’t focused. And that got me thinking: the same thing happens in business — especially in law firms.

The “Equipment” Problem in Law Firms

When something goes wrong in a firm — a missed statute of limitations, a conflict of interest issue, or a client complaint — our first instinct is often to blame the system.

  • “The calendaring program let us down.”
  • “The conflict checker didn’t catch it.”
  • “We need a better case management tool.”

That knee-jerk reaction leads many attorneys to shop for the “latest and greatest” software. But just like with golf, buying new equipment doesn’t always solve the problem.

It’s Not the Tools, It’s the Process

Before rushing out to invest in new programs, it’s worth asking: Are we using the systems we already have, properly and consistently?

A few examples to consider:

  • Calendaring systems: Are you and your staff updating them daily without fail?
  • Conflict of interest checks: Are all clients, former clients, and ownership interests properly logged?
  • Client documentation: Are you recording every conversation, every update, in the system right away — or are you telling yourself you’ll “do it later” and never getting back to it?

When these steps slip, it’s not the software that failed. It’s the process.

A Weekly (or Bi-Weekly) Check-In

The fix isn’t shiny new tools. It’s discipline. Take a few minutes each week — or at least every two weeks — to sit down with your team and review:

  • Are we updating systems the way we should?
  • Are we putting in accurate, complete information?
  • Are we letting bad habits slide?

Your systems are only as good as the information you feed into them. If you don’t use them consistently, even the most expensive software won’t save you.

Back to the Golf Course

Golf taught me this: you don’t need a brand-new set of clubs every time you have a bad round. You need to slow down, adjust your swing, and focus on the fundamentals.

In the same way, law firms don’t always need new programs when mistakes happen. They need to look inward, review processes, and make sure the team is disciplined in using the systems already in place.

Remember: success isn’t about the latest equipment — it’s about how you use it.

Real-Life Cyber Claim Examples With Don Ivol

Posted on by

Lawyers often ask for proof that cyber events and data mistakes really hit small firms—and what those losses look like in dollars. Below are two real-world claim scenarios to help you see how quickly costs add up and which safeguards (and coverages) matter most.

#1: Shared Office, Shared IT… Total Data Loss

The setup:


A three-lawyer firm subleased space from a larger firm and piggy-backed on the larger firm’s IT. To “separate” data, the small firm was given its own file server (originally used for email).

What went wrong:


The larger firm’s IT admin backed up email, formatted the shared server, and reinstalled software—but forgot to back up the small firm’s files. Result: complete data loss and an operational shutdown while the firm tried to rebuild.

Documented impact:

  • Data restoration expenses: $23,000
  • Lost billable hours: roughly $98,900 (about “$99k” in the narrative)

Why this matters:


Not every disaster is a hacker. Plain old human error and poor segregation of systems can be just as destructive.

How to prevent this (practical steps):

  • Own your backups (don’t rely solely on a landlord’s/host firm’s IT). Use a 3-2-1 backup strategy and test restores.
  • Put clear, written data-segregation and change-management terms in your office/IT agreement.
  • Keep off-network backups (immutable/cloud snapshots) and run recovery drills twice a year.
  • Maintain a simple RPO/RTO target (how much data you can afford to lose/how fast you must be back).

Where insurance can help (policy-dependent):
 Cyber policies with data restoration and business interruption coverage can respond to accidental data loss; some tech E&O or malpractice policies may also come into play depending on facts. Terms vary—review your policy.

#2: Cloud Downgrade → Confidential Case Exposed

The setup:


A firm used a cloud storage provider with two tiers: free and premium. The premium tier kept data private; the free tier made content searchable/downloadable by others.

What went wrong:


The firm missed the renewal. The account reverted to the free tier, quietly exposing the firm’s files online for months. During that window, third parties downloaded details of a sensitive whistleblower matter.

Documented impact (one case):

  • Notification costs: $27,000
  • Defense expenses: $35,000
  • Damages: $2,150,000
  • Fines & penalties: $120,000
  • (Additional client lawsuits were pending and not included in these totals.)

Why this matters:


Most breaches aren’t Hollywood hacks—they’re misconfigurations, missed renewals, or lax vendor settings.

How to prevent this (practical steps):

  • Use auto-renew with multiple payment methods and billing alerts for critical SaaS tools.
  • Enforce least-privilege access, MFA, and default private sharing settings; require approvals for any public link.
  • Turn on configuration monitoring and data-loss prevention (DLP) alerts for exposure of sensitive matter names/IDs.
  • Keep a data map: what you store, where it lives, who can access it, and how long you keep it.

Where insurance can help (policy-dependent):


Cyber policies commonly address privacy liability, regulatory investigations (where insurable), breach response (forensics, notifications, PR), and defense. Coverage for fines/penalties depends on jurisdiction and policy language. Some professional liability (LPL) policies may also respond to alleged ethical violations—review both with your broker.

What These Stories Prove

  • It’s not just “hackers.” Human error and billing lapses can trigger seven-figure exposure.
  • Shared or “free” is risky. If you don’t control the system, you don’t control the risk.
  • Time is money. Even “small” incidents bleed billable hours and momentum.

Insurance is a backstop, not a substitute for sound IT practices.

10-Point Cyber Hygiene Checklist for Small & Mid-Size Firms

  1. 3-2-1 backups with quarterly restore tests
  2. Vendor billing safeguards (auto-pay + backup card + calendar reminders)
  3. MFA everywhere (email, practice management, cloud storage, VPN)
  4. Least-privilege access and quarterly access reviews
  5. Encrypted, private-by-default cloud repositories; ban public links
  6. Patch/update cadence for OS, apps, and network devices
  7. Incident Response Plan with breach-coach contact and a tabletop twice a year
  8. Data map & retention policy (limit what you store; purge on schedule)
  9. Security awareness training (phishing, sharing, and file-handling)
  10. Annual policy review (cyber + LPL) to close obvious gaps

These aren’t edge cases—they’re everyday risks for modern law practices. A few process tweaks plus the right blend of cyber and malpractice coverage can be the difference between an expensive lesson and a swiftly managed incident.

Vacation as a Risk Management Tool

Posted on by

No, this isn’t a quick break from my desk—I’m actually taking a few days away from the office on a proper vacation. As I sit here on the porch, soaking in the peaceful view of the water and feeling more relaxed than I have in a long time, a thought struck me:

This might be one of the best risk management tools I can recommend—take a break.

That’s right. Step away from the desk. Let your brain unplug. Play a round of golf, cast a line into the water, take a boat ride, dive into a good book, or simply sit outside and do nothing. You don’t need a plane ticket to a faraway beach or a mountain retreat—just find a way to get out of the office and into a state of calm.

Why? Because time away helps you rejuvenate.

And when you’re back in the office, something magical happens:
You think more clearly.
You work more creatively.
You produce a better work product for your clients.

And that’s where risk management comes in.

Better Work = Lower Risk

A refreshed mind leads to fewer mistakes. That means fewer legal malpractice claims, better relationships with your clients, and even a more positive atmosphere in your workplace. It also means you’re more likely to be offered favorable malpractice insurance rates and terms—because insurers notice when your practice runs smoothly and claims stay low.

So, yes—a short vacation isn’t just good for your soul, it’s good for your business.

It may be the simplest risk management strategy, but it just might be the most powerful.

Coach Said It Best

There’s a quote from one of my favorite TV shows, Friday Night Lights, that always sticks with me:
“Clear eyes, full heart, can’t lose.”

So don’t lose.

Take some time off this year. Step away from the grind. Let yourself breathe, reset, and come back sharper than ever.

Have You Reviewed Your Legal Malpractice Policy Limits Lately?

Posted on by

When was the last time you reviewed the policy limits on your legal malpractice insurance?

For many attorneys and law firms in Pennsylvania and Ohio, the answer is: “It’s been a while.” 

And for some, it’s even worse — they’ve never increased their limits since first purchasing their policy.

We get it. When you first bought coverage, it felt like checking a box. 

You picked a limit — maybe the standard $100,000 per claim / $300,000 aggregate — and haven’t thought much about it since. Unless a client insisted on a higher limit, there may have been no urgency to adjust anything.

But that mindset can put your entire practice at risk.

Why It’s Time to Rethink Your Firm’s Insurance Limits

As I like to say:

“Trying to raise your limits after a claim is like trying to buy homeowner’s insurance when your house is already on fire.”

Let that sink in.

Here are a few things that have likely changed since you last looked at your policy:

  • The cost of living has risen significantly — including in Pittsburgh, Harrisburg, Cleveland, and Columbus.
  • Real estate prices, car prices, and even eggs have all gone up.
  • Your cost of doing business — from staff wages to office rent — has increased.
  • And your legal fees have likely risen, too.

So, if every financial metric around you has grown, why haven’t your malpractice limits?

Low Limits For Your Legal Malpractice Insurance Can Cost You Big Time

The most commonly offered “starter” policy is $100,000 / $300,000. And while that might sound like a lot, it doesn’t go far when:

  • Defense attorneys start billing (what would you be charging?)
  • Expert witnesses are brought in
  • A claim needs to be settled before trial

Even a small-to-midsize claim can eat through six figures fast — leaving you on the hook for the rest.

At that point, you’re not just protecting your firm — you’re protecting your personal assets, too.

How to Determine the Right Coverage For Your Law Firm

If you’re unsure what limits make sense, here are a few questions to ask:

  • How many active clients does your firm currently serve?
  • What is the average value of the cases you handle?
  • How many attorneys are in your firm?
  • What is the current cost of living index in your area?

These factors should all influence your decision. 

A solo attorney in Erie, PA handling traffic tickets may have different needs than a five-attorney firm in Cincinnati managing complex civil litigation — but both should at least evaluate whether their limits are keeping pace.

Don’t Say “No” Without Knowing the Cost

One of the most common objections we hear is:

“I’d love to increase my coverage — but it probably costs too much.”

But many firms say that before even getting a quote.

In reality, increasing your limits might not cost as much as you think. 

And the peace of mind it offers — especially if you’re planning for retirement or growing your practice — is well worth the investment.

Legal Malpractice Insurance in Pennsylvania and Ohio: Get a Review

If you’re a law firm based in PA or OH, now is a great time to schedule a malpractice policy review with us. Whether you’re in Philadelphia or Dayton, Erie or Akron — your firm deserves coverage that reflects today’s legal environment.

You wouldn’t go five years without adjusting your rates or reviewing client contracts — don’t let your insurance stay stuck in the past.

Final Thought

Before you say no to increasing your limits, ask:

  • When was the last time I adjusted my coverage?
  • What would a real claim cost me today?
  • Am I protecting my future — or playing defense?

Want to dive deeper?

Grab a free copy of my book, Game Over? Not Today!, which covers risk exposure, cyber liability, and real-world scenarios that law firms face every day: https://bit.ly/INF-Game-Over-Not-Today

If They Can Breach an Insurance Giant, What’s Stopping Them from Hitting Your Law Firm?

Posted on by

I recently read something eye-opening in an insurance journal — a reminder that cybercrime isn’t just evolving, it’s organizing.

There are now cybercriminal groups that no longer just pick off random companies with weak cybersecurity. Instead, they target entire industries, strategically identifying and exploiting vulnerabilities across the sector. 

One such group is known as Scattered Spider, and their newest target? The insurance industry.

In recent months alone, major players like Philadelphia Insurance Company, Erie Insurance, and Aflac have been hit with significant cyberattacks. These breaches not only disrupted their operations, but in Erie’s case, have already led to multiple class action lawsuits.

Let’s think about that…

These are companies that:

  • Handle sensitive data every day
  • Have risk management baked into their company DNA
  • Invest hundreds of thousands of dollars (if not millions) into cybersecurity infrastructure

… and they still got breached.

So here’s the question every law firm should be asking:

If these highly protected insurance companies aren’t safe, what makes you think your firm is?

The Ugly Truth – Law Firms Are Prime Targets

You might be thinking, “We’re a law firm — not an insurance company. Why would hackers bother with us?”

Here’s why:

  • You store the same type of sensitive data: personal information, financial records, privileged communications.
  • You likely don’t have the same kind of IT budget or internal safeguards that large insurers do.
  • And from a hacker’s perspective, that makes you low-hanging fruit.

Whether you’re a solo practitioner in Pittsburgh or part of a mid-sized firm in Cleveland, you’re exposed — and attackers know it.

The Smart Next Step For Your Firm: Cyber Liability Insurance

Even if you have antivirus software, firewalls, and employee training in place (and you should), there’s another essential layer of protection… 

A tailored cyber liability insurance policy.

This isn’t just about protecting your firm — it’s about protecting your clients and your reputation. A single breach can take down your operations, cost tens of thousands in recovery, and damage your trust with clients.

Cyber policies are more affordable than most firms realize, especially compared to the cost of recovering from an attack.

Want to Learn More?

I go deeper into these risks and solutions in my book, Game Over? Not Today! 

It’s written specifically for professionals like you — attorneys, advisors, and business owners who want to understand the threat landscape and take action before it’s too late.

Pick up my free book today here -> https://bit.ly/INF-Game-Over-Not-Today 

Stop procrastinating. Protect your firm, your data, and your clients.

If you’re in Pennsylvania or Ohio and want to explore your cyber coverage options, I’d be happy to help.

I’m Don Ivol — your insurance guy.

Unique Follow Through

Posted on by

Every golfer has a unique follow-through. Whether it’s long and graceful or short and awkward, it’s the finishing move that gets the ball where it needs to go. Without a proper follow-through, even the best swing won’t deliver the result you’re aiming for. The same is true when it comes to insurance protection for your law office.

Most attorneys start the swing—they carry legal malpractice insurance. But too many stop short. They don’t follow through by protecting themselves against cyber liability. And that’s where the shot falls short.

The Risk of Not Following Through

I hear it all the time:

“I’ve been meaning to look into cyber insurance…”
“We’re a small office—nobody’s going to hack us.”
“We don’t have any information that hackers want.”

Wrong. Those are all excuses—and dangerous ones. Hackers aren’t just targeting the big fish. In fact, they have a name for small firms that lack sophisticated cyber defenses:
“Low-hanging fruit.”

Law firms, even solo practices, store exactly the kind of data hackers crave—names, addresses, Social Security numbers, banking info, legal documents, and confidential case files. That’s gold to a cybercriminal. And without the security infrastructure of a Fortune 500 company, you’re an easy target.

What About My Malpractice Policy?

Another common myth I hear is this:

“My legal malpractice policy already covers cyber claims.”

Not quite.

Your legal malpractice policy might include a small amount of ancillary cyber coverage—but not nearly enough to protect you if a serious breach occurs. Cyber incidents can trigger lawsuits, regulatory fines, business interruption, ransom demands, and reputational damage. You need a dedicated cyber liability policy to handle those risks.

Protect Your Clients. Protect Your Practice.

Your legal malpractice policy is your swing.
Cyber insurance is your follow-through.

If you want your protection to actually reach its target—your clients, your firm, your future—you have to complete the motion.

There are no mulligans in the world of cyber claims. Once you’re hit, the damage is done—and without the right coverage, it could be devastating.

So, take the next step. Don’t stub the shot. Follow through and secure cyber liability coverage for your law office.

It just makes sense -> https://integrityfirstins.biz/Home/CyberIndication

Do You Have the Right Number of Clubs in Your Bag?

Posted on by

There’s a reason why golfers are allowed to carry 14 clubs in their bag—because no single club can handle every shot on the course. Different situations call for different tools, and smart golfers prepare for anything that might come their way.

The same logic applies to legal malpractice insurance. Just like a full golf bag, your malpractice policy should be equipped with a range of coverages—each designed to help you handle the many different “shots” you’ll face in your law practice.

Here are the 14 “clubs” I believe every law firm should have in their insurance bag:

1. Prior Acts Coverage

Make sure your policy covers work you’ve done before the current policy period.

2. Career Prior Acts Coverage

Even better, find a policy that offers coverage for the entire span of your legal career.

3. Sufficient Policy Limits

Don’t come up short. Ensure your limits are high enough to handle a serious claim.

4. A Deductible That Matches Your Firm Size

Balance affordability with risk—your deductible should reflect your firm’s resources.

5. Coverage for Disciplinary Matters

Ethics complaints happen. You’ll want protection if your license is ever at risk.

6. Extended Reporting (Tail) Coverage

If you retire or switch carriers, make sure you can still report claims from past work.

7. Free Retirement Tail

Look for policies that offer a complimentary tail when you permanently retire.

8. A Broad Definition of “Insured”

Make sure your policy clearly includes all attorneys, staff, and affiliated roles.

9. Coverage for Of Counsel and Independent Contractors

These contributors need protection too—confirm they’re covered under your policy.

10. A Less Restrictive Consent-to-Settle Clause

Avoid a true “hammer clause” that forces your hand in claim settlements.

11. Easy Reporting Methods

Claims should be reportable via mail, email, phone, or even fax—without hassle.

12. Local Defense Counsel

If you’re in Pennsylvania, make sure Pennsylvania lawyers will defend you.

13. A Malpractice Helpline or Hotline

Quick access to guidance can help you avoid missteps before they become claims.

14. An Efficient Renewal Process

Renewals shouldn’t be a burden. Find a carrier that makes it easy and smooth.

Just like golf, preparation matters. But unlike golf, you don’t have to stop at 14 clubs. Your malpractice coverage should be tailored to your specific needs, not limited by an arbitrary number.

So, before you tee off or sign your next policy renewal—check your bag. Make sure you have everything you need to play a strong legal defense game.

Reporting A Claim Is Important

Posted on by
https://youtu.be/888biQm756k

In law, as in life, things can change quickly—and not always for the better. When it comes to legal malpractice insurance, a sudden shift usually means one thing: a claim has been filed against you.

If that ever happens, there are several important steps you’ll need to take. But one step matters more than all the others:

Report the claim or potential claim immediately.

This cannot be overstated. As soon as you become aware of an issue, you should contact your carrier—whether by phone, email, mail, or fax. However you choose to report it, just make sure you do.

At INF, we encourage clients to include us on all claim-related correspondence. This allows us to follow up directly and ensure proper documentation is in place from the beginning.

You might think reporting a claim is a no-brainer—but too many insureds hesitate or delay. Why?

  • Denial: Hoping the issue will disappear
  • Discomfort: Avoiding the stress of reliving the situation
  • Delay: Believing there’s more time than there actually is

Unfortunately, these delays can lead to devastating consequences. When a claim is finally reported late, coverage can be denied—simply because of the timing. This is not a situation you want to be in.

So here’s the bottom line: 

If you suspect a malpractice claim is coming, report it immediately.

Think of it as giving yourself a free shot from a buried lie. It’s the first—and most critical—step in protecting yourself, your firm, and your future.

Game Over? Not Today — Why Every Business Needs to Read This Free Cyber Insurance Book

Posted on by

We recently published a brand-new book titled Game Over! Not Today and the best part? It’s absolutely free. This guide is designed to help business owners like you understand the ins and outs of cyber liability insurance, and more importantly, how to protect your business from the growing threats in today’s digital landscape.

Why You Should Download It

Cyber threats aren’t just a big-business problem anymore. Small and mid-sized businesses are increasingly being targeted by hackers, and unfortunately, many are caught unprepared. That’s exactly why we wrote this book—to demystify cyber insurance and give you the tools and knowledge to confidently face these challenges.

Every chapter in this book offers valuable insights, but there are two chapters I really want you to pay close attention to: Chapter 6 and Chapter 8. These contain immediate, actionable advice that could make all the difference if your business ever experiences a cyber event.

🔐 Chapter 6: Building a Strong Incident Reporting Process

When a cyberattack happens, chaos can follow—unless you have a plan. Chapter 6 walks you through exactly how to build a strong incident reporting process, so you’re not left scrambling in the heat of the moment.

Inside, you’ll learn:

  • Who you need to contact (with phone numbers and email addresses already laid out)
  • What your immediate next steps should be
  • How to document and report the incident to your insurance carrier
  • What details are critical to have on hand before something goes wrong

This chapter ensures that when you’re hit with a cyber event, you’re not asking, “What do I do now?”—because you’ll already know.

👥 Chapter 8: The Importance of Employee Education

Your employees are your first line of defense, and Chapter 8 dives deep into why education and engagement are critical. A team that understands what a cyberattack looks like—and feels confident raising their hand when something seems off—can prevent a bad situation from getting worse.

You’ll discover:

  • How to create a team-oriented cyber-safe culture
  • What to include in your employee training
  • Why employee involvement in your cyber response procedures is non-negotiable

From phishing emails to ransomware, your team needs to know what to look for and how to act fast—and this chapter gives you the playbook to make that happen.

Your Next Step: Download the Book

If you’ve ever felt unsure about cyber liability insurance or what steps to take if your business is attacked, this book is for you. It’s practical, straightforward, and best of all, it’s free.

📘 [Click here to download Game Over? Not Today now!] 

Get My New Book on Cyber Liability Insurance – Absolutely Free!

Posted on by

I’ve been working hard behind the scenes, and I’m thrilled to finally share some exciting news — I’ve completed my book on cyber liability insurance, and I want you to have it for free!

The book, titled Game Over, Not Today,  is designed to be your roadmap for preparing your office to defend against cyber threats, while also demystifying the coverages found in a typical cyber liability policy.

Through the experiences of two fictional small businesses — Legal Eagles LLC and Helping Hands Chiropractic Corp. — you’ll follow their journeys navigating the cyber landscape using smart risk management practices and the right insurance coverage. I’ve included real-world examples and simple, effective explanations of policy terms and definitions to make even the most complex topics easy to understand. Whether you’re just starting out or looking to strengthen your current protections, this book will help you upgrade your cyber defense strategy.

Why did I write this book?


One of the most common questions I hear from clients and prospects is, “I don’t even know what cyber liability is — why would I need to insure against it or implement cybersecurity systems?” This book answers that question and many others. It was written with the goal of helping you better understand the cyber risks your business faces every day, and why taking action now is so important.

Here’s what you’ll get from the book:

  • A clear understanding of cyber liability insurance
  • Real-life solutions to common cyber exposures
  • Practical steps to enhance your office’s cybersecurity
  • Peace of mind — and it won’t cost you a dime!

In fact, by applying the strategies outlined in the book, you could end up saving money by reducing the likelihood of a cyber claim in your business.

Getting your free copy of “Game Over, Not Today” is easy. 

Click here to download the book now!

Don’t miss out on this opportunity to strengthen your business against today’s growing cyber threats. It’s a quick, valuable read that could make all the difference!