- A law firm takes on a lateral hire that must be screened from several matters. Administrators set up an exclusionary security rule that prevents this individual from accessing the client’s materials, which are otherwise open and accessible to other firm personnel.
- The firm then takes on a price sensitive matter for the same client and must set up a parallel inclusionary security rule that provides “members only” access to a limited set of named lawyers and staff.
- The firm must enforce two distinct business rules to prevent the lateral from ever being added to the “ring-fenced” team working on that matter. But the security rules themselves conflict and must be resolved.
One way to address clashes is to force administrators to create and maintain complicated records of who can and cannot access each client matter and enumerate everything. (And some confidentiality software offering "clash" detection, do just this – identify problems without fixing them.) But depending on manual intervention just shifts the burden back to administrators, creating additional overhead, delay and risk.