(ID999) INCIDENT RESPONSE - Tel: UK 0044 1732 897 601

Computer Digital Forensic Investigations & eDiscovery

Digital evidence acquisition

Digital evidence, whether acquired from a computer system, PDA or mobile phone, can often be the deciding factor in criminal cases, civil and matrimonial disputes and employment proceedings.

For a forensic investigation to be lawful and effective, it must take into account Civil Procedure Rules, current legislation and peer recognised technical procedures. Working to these standards will ensure that the data gathered and presented is admissible as evidence in all forms of proceeding

The gathering, analysis and presentation of this evidence by an appropriately qualified expert are required by law and are an essential aspect of the provision of the BII service. In addition to collecting and analysing evidence for companies investigating suspected wrongdoing in-house or individuals bringing a claim or defending themselves against their employer or in matrimonial cases, we also provide expert witness testimony in court.

Today, as the number of criminal acts continues to grow, the proportion committed with the aid of computers rises. Whatever the circumstances of the crime - fraud, paedophilia, industrial espionage, piracy or corruption - computer technology is often involved somewhere.

Statement of intent

This web page is not intended as legal advice. BII Compliance encourages all companies to seek legal advice regarding issues that may cause concern from this web page. If you seek further clarification from a technical point of view please contact BII immediately. BII has many partners available to assist you with legal or insurance queries.

This web page is intended to provide general guidance and assistance in developing forensic preparation or delivery appropriate for individual businesses. No one solution fits all businesses.

Measures will vary depending on factors including the size and complexity of the business, the industry, and sensitivity of data. The information in this web page should not be regarded as a substitute for a company’s self-assessment of security procedures or for legal advice.

Forensic Services

BII is a leading provider of Forensic Computer and Mobile Phone examination and electronic disclosure services.

In today's complex digital world the Internet, computers, mobile phones and other digital devices play an important role in an increasing number of the illegal activities that take place. Whether the system is a standalone computer, portable device or part of an integrated network, BII's experienced consultants can assist you from the initial evidence gathering through to the final outcome - be it external prosecution, Industrial Tribunal or internal disciplinary action.

All our investigative procedures are ISO 9000 certified and our computer forensics consultants are registered Expert Witnesses.

At BII we have the additional benefit of years of network security experience that enable us to closely examine mail servers and other network components. In this way we can perform additional analysis that can carry an investigation beyond the confines of standard, software-based analysis. Our goal is to enable our clients to discover what happened, when and by whom.

ACPO Guidelines & Expert Witnesses

BII's reactive ID999 forensic team have either worked for or use the National Hi-Tech Crime Unit 'Good Practice Guide for Computer based Electronic Evidence'.

Details in this guide are designed to ensure good practice when collecting computer based electronic evidence; guidelines are not intended for use when dealing with evidence produced by witnesses from third party computer systems although BII's forensic responders do apply the same principles when doing so.

All our procedures for the collection and handling of data are in line with current ACPO guidelines and with the appropriate civil procedure rules that we keep under constant review. BII consultants are members of the UK Register of Expert Witnesses and the Society of Expert Witnesses.

Forensic readiness planning

BII's cyber incident response (CIR) plan establishes and documents the procedures and actions that implement the incident response policy. It defines the security incident and outlines the steps that should be taken by staff members in order to respond to the incident and mitigate damage to the organisation.

A variety of IT-related incident response plan templates and examples are available via BII Compliance with example staff response tasks and business continuity procedure documents. BII work with businesses in the UK.

View ID999 for more information regarding incident response services as required by the pending EU Cyber Security Directive.