Browse Definitions :


A subpoena is a court-issued command for an individual or corporate representative to appear before the court or to provide specific evidence. Failure to comply with a subpoena without good reason can result in contempt-of-court charges. Legislation such as the Sarbanes-Oxley Act and the Securities Exchange Commission (SEC) regulations stipulate how information must be handled and how long it must be retained.

Subpoenas are frequently issued for stored or archived data such as e-mail or instant messaging correspondence. For example, if a corporate executive is accused of insider trading, a subpoena may demand all e-mail messages sent and received during a specific time frame. If the executive can not produce these records, the court may issue a subpoena to any Internet Service Provider ( ISP ) handling his Internet access account(s). Subpoenas may also be directed at people with whom the accused individual regularly corresponds.

E-mail messages should be considered business records and stored accordingly. Meticulous e-mail archiving (also called e-mail retention), like the retention of tax records, has become an essential part of the record-keeping routine for all businesses.

The word subpoena derives from the Latin phrase sub poena, meaning under penalty.

This was last updated in January 2008

Continue Reading About subpoena

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

  • enterprise document management (EDM)

    Enterprise document management (EDM) is a strategy for overseeing an organization's paper and electronic documents so they can be...

  • session key

    A session key is an encryption and decryption key that is randomly generated to ensure the security of a communications session ...

  • data breach

    A data breach is a cyber attack in which sensitive, confidential or otherwise protected data has been accessed and/or disclosed ...

  • multifactor authentication (MFA)

    Multifactor authentication (MFA) is a security technology that requires more than one method of authentication from independent ...

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud testing

    Cloud testing is the process of using the cloud computing resources of a third-party service provider to test software ...

  • storage virtualization

    Storage virtualization is the pooling of physical storage from multiple storage devices into what appears to be a single storage ...