The Impact of Technology on Case Law under the 2006 FRCP Amendments

ESI is often collected logically (i.e., backup or file copy) by client IT resources rather than forensically (i.e., complete bit-by-bit copy), under various rationales, e.g., that the client should not have to produce deleted ESI recoverable only through forensic imaging, or that metadata that could be altered by logical copying is irrelevant.

Forensic imaging is expected when computer inspections are ordered, and the amended rules explicitly recognize the inspection of ESI as a procedural weapon. Recent rulings involving forensic imaging and inspection echo prior case law ' inspections will not be ordered as a matter of course, but only where the information in question goes to the heart of the matter and is likely to be recoverable, or where there has been a showing that the party possessing the ESI has not been forthcoming with respect to relevant information from that source. See, Palgut v. City of Colorado Springs, 2007 U.S. Dist. LEXIS 91719 (D. Colo. Dec. 3, 2007) (forensic examination denied clarifying that without a compelling reason, the 2006 FRCP amendments provide no more 'access to electronic information storage systems than to warehouses storing paper documents'); Bulter v. Kmart Corp., 2007 U.S. Dist. LEXIS 61141 (N.D. Miss. Aug. 20, 2007) (direct access to internal databases without evidence of improprieties denied). See also, Orrell v. Motorcarparts of Am., 2007 U.S. Dist. LEXIS 89524 (W.D.N.C. Dec. 5, 2007) (forensic examination allowed where corporate computer was 'wiped' and home computer 'crashed'); Benton v. Dlorah Inc., 2007 U.S. Dist. LEXIS 80503 (D. Kan. Oct. 30, 2007) (forensic inspection granted of personal computer from which deleted e-mails were sent, if employee failed to produce such e-mails).