Question 1 of 7
If your firm suffered a data breach today, could you produce a log showing who accessed client files in the past 90 days?
Question 2 of 7
When did your IT provider last give you a written report showing what they actually did — not just a bill?
Question 3 of 7
If a staff member clicked a phishing link right now, how confident are you that your firm would catch it before damage was done?
Question 4 of 7
If your systems went down completely tomorrow morning, how long would it take to restore normal operations?
Question 5 of 7
When a staff member leaves the firm, how quickly are their access credentials revoked across all firm systems?
Question 6 of 7
Has your IT provider ever proactively told you about a vulnerability or risk — before something went wrong?
Question 7 of 7
If a client asked you to describe the steps your firm takes to protect their confidential information, how would you answer?