An improperly created website can breed lawsuits. It's not the place to test the limits of the law. Once you put information \n\nout on the Net, it's there for anybody to see. It's the ultimate in unrestricted access. You might create a site for \n\npotential customers, but your competitors and enemies get to see it too. A cautious and conservative approach is the way to \n\ngo. How cautious you need to be will vary depending on several things. The preventive medicine is a legal audit of your \n\nwebsite. The precise legal standards for websites aren't easy to define as the law is in its infancy. The global availability of \n\nthe Net and all the differing legal systems throughout the world has exacerbated the problem of establishing the applicable \n\nlegal standard. To some extent, you need to be concerned about the laws of every jurisdiction, but complete compliance with \n\nevery variation of every law throughout the world is obviously an impossible goal. How you cope with this depends on what you \n\ndo and where you do it. If You Don't Do Overseas BusinessIf you're an American company in a generally unregulated industry, and assuming that you don't have any overseas \n\noperations, your legal compliance strategy can probably safely center on the United States. In this scenario, your tech \n\nlawyer can guide you on what's considered "mainstream" compliance. While it's true that "mainstream" \n\ncompliance doesn't guarantee complete legal compliance, it's the only reasonable approach. If you demand a guarantee of \n\ncomplete legal compliance only your lawyer will make money. There are just too many laws in too many states. Enjoy the \n\nbenefits of your generally unregulated status. Accept some risk, enjoy your profits, and deal with problems when and if they occur. \n\nIf we change just one variable, the advice changes. If you're in a generally regulated industry, you must be more \n\ncautious. The starting point in your legal audit is to decide what states may have jurisdiction over your actions. The \n\nanalysis will vary depending upon your industry whether its securities, insurance, banking or whatever. \n\nYour website audit will then need to focus on those state and federal laws. Since you're in a regulated industry, you're \n\nalready used to the need for often fastidious compliance with the laws and regulations of multiple states. In this context, \n\nyour website is no different from anything else you do. You can't just slap up a website while blithely commenting that \n\nnobody regulates the Internet. You're wrong! In some ways, everybody regulates the Internet. \n\nIf You Do Business Overseas\n\nIf you do business overseas, you'll have to be sensitive to the legal requirements of those countries that could have jurisdiction over your company. Although a computer in the United States may physically host your website, this may not stop \n\nyou from being hauled into a foreign court. Worse, it's conceivable that they could hold your website up against their legal \n\nstandards. Whether you think that's right is not the issue, but it can happen and you need to be sensitive to foreign legal \n\ncompliance with your American-based website. Your website audit needs to consider many things. Some of it is just common sense, but some is uniquely Internet law. Some \n\nis a mixture of the two. Here's a sample of what I consider in a website audit. Information AccuracyThis point is so obvious that I wouldn't say it except that I've heard reasonably astute people say things like, "It \n\ndoesn't count if it's online." That statement couldn't be more wrong. Defamation and unfair and deceptive trade practices (things like false advertising) are examples of some things that you \n\ncan have on your website that can get you hauled into a courtroom. It's essential that you carefully review information \n\nbefore it's posted to the Web. Copyright and TrademarkCopyright and trademark law fully apply to the Web. If you post someone's logo on your site, make sure that you have their \n\nwritten consent. If material is copyrighted, get the author's permission. I don't know why sophisticated business people think that somehow the Internet is different when it comes to intellectual \n\nproperty because fundamentally nothing changes when you move content from a magazine to a website. The content is just as \n\nprotected by intellectual property law online as on paper. Post Terms and ConditionsWith few exceptions, every commercial website should have Terms and Conditions of Website Use posted. Terms and Conditions of Website Use are a natural evolution of "Shrinkwrap Agreements" which you see every time you buy \n\nnew off-the-shelf software. "By installing this software, you agree to be bound by the terms of this agreement" is typical \n\nShrinkwrap Agreement language. "By using this website, you agree to be bound by the terms of this agreement" is Web Agreement language. A well-drawn Web Wrap Agreement can help you to significantly reduce your legal risks. The most basic thing that you \n\nshould put in every Terms and Conditions is a limitation of liability clause. So even if you get sued and lose, at least the \n\nmaximum damage award against you is nominal. I'll typically limit damages to something like $50 to $100. To further insulate you from the claims of users, have them agree that use of the site is at their own risk and that you disclaim all warranties. Also, include a clause making them liable to you if they upload \n\nthings to the site like copyrighted or trademarked material that they don't have a right to use. This gives you some \n\nprotection if a third party sues you for something posted to your site by a user. My favorite way to discourage my clients from getting sued over nonsense is by including a clause requiring that any \n\nlawsuit be filed in my client's home state, not the user's. Using the courts looks a whole lot less attractive as the mileage \n\nincreases. Be ProactiveHaving your website audited is a good example of effective, proactive law. Once you get sued, you can't require the other \n\nside to come to your home state if you didn't have the agreement already on the site. Don't be like the people that put in the burglar alarm after the burglary. A little preventive law is much cheaper and \n\nless stressful than crisis law. Have your site audited now, not after it causes you a problem.Mark Grossman is a tech lawyer, business advisor, and negotiator. He is the founder of the Grossman Law Group with offices in Manhattan and South Florida.