You’re Making Your Clients Nervous with Weblinks

You’re Making Your Clients Nervous with Weblinks

June 15, 2017 / in Encryption/Security / by Zafar Khan, RPost CEO

Why are you emailing your clients weblinks to documents? They’re not supposed to click on unknown links. It’s making them nervous. Even if you’re using popular apps like dropbox to share files, you can’t be sure your client will trust the link. Nor should they. They might think it’s a phishing scheme.

Also find information about Vishing & Smishing.

If you’re using a link retrieval system to “prove” that documents were received by your clients for compliance reasons, you may want to rethink this….

In the final part of our three part series on common misconceptions about email delivery, we’ll discuss a type of system that some professionals use and mistakenly believe proves fact of e-delivery, a link-retrieval system.

When your lawyer sends disclosure documents using a link-retrieval system, the recipient receives a link to download the document. They may or may not click the link. Even if they click to download, there is often very little information to protect the sender in certain future disputes about what risks or transaction details were disclosed at the time of entering into the transaction (think TRID real estate disclosures, financing memorandum, risk section disclosures, insurance coverage terms, etc.).

Would a timestamped record showing when the document was downloaded from the link-retrieval system serve as proof of delivery of the disclosure document?

Know more:

Secure Email Encryption Service

Free Encrypted Email

Secure File Share Online

It may. But what if there is a dispute later? When it counts, the link-retrieval download record may not stand up to scrutiny as it likely would not prove what content was in fact downloaded (and received), and it likely would not prove the download was completed successfully.

How can one reliably prove fact of sufficient e-delivery of a disclosure?

    • First, consider what information should be disclosed. What is considered important for audit or compliance proof is the ability to irrefutably demonstrate the precise content that was disclosed.
    • Second, to prove that the disclosure was clear, one should be able to re-construct the original disclosure in form and format, to demonstrate how the information was originally displayed.
    • Third, to demonstrate that the disclosure was accessible to the recipient, it may be important to be able to show how the information was delivered to the intended recipient. For example, if the disclosure was attached to an email in a standard PDF or inserted as body text in the email, and delivered to the recipient’s inbox, this would mean the information was accessible.
    • Fourth, the record that is relied on as proof of the above – the original content, the content inside its original context, and accessibility of the content to the intended recipient — should be in a form that is verifiable, durable, self-contained, court-admissible, and timestamped. The Uniform Electronic Transactions Act (UETA) provides a useful definition of what constitutes the time of a ‘legally received electronic message’ within UETA (sections 15(b) and (e)):

15 (b) Unless otherwise agreed between a sender and the recipient, an electronic record is received when: (1) it enters an information processing system that the recipient has designated or uses for the purpose of receiving electronic records or information of the type sent and from which the recipient is able to retrieve the electronic record; and (2) it is in a form capable of being processed by that system.

15 (e) An electronic record is received under subsection (b) even if no individual is aware of its receipt.

Similar to when mail is sent, the recipient is deemed to have “received” the email (regardless of whether they opened it), when it enters the recipient’s “information processing system” or server that the recipient uses to receive email.

When you need visibility of delivery, assurance or proof, or simply peace of mind, you should use an email tracking service that returns irrefutable proof while preserving the simplicity of standard email — and does not require recipients to click links, register for an account, or download software. Watch a video showing how RMail Registered Email™ e-delivery proof works.