ADRI. Statement on the Application of Digital Rights Management Technology to Public Records. ADRI-2008-001-v1.0



Similar documents
ADRI. Digital Record Export Standard. ADRI v1.0. ADRI Submission Information Package (ASIP)

ADRI. Advice on managing the recordkeeping risks associated with cloud computing. ADRI v1.0

Cloud Computing and Records Management

Queensland State Archives. Digital Rights Management Technologies and Public Records - A Guideline for Queensland Public Authorities

Guideline 1. Cloud Computing Decision Making. Public Record Office Victoria Cloud Computing Policy. Version Number: 1.0. Issue Date: 26/06/2013

Trusted Computing and Digital Rights Management Principles & Policies

Information Management: A common approach

TEXTURA AUSTRALASIA PTY LTD ACN ( Textura ) CONSTRUCTION PAYMENT MANAGEMENT SYSTEM TERMS AND CONDITIONS OF USE

Pawsey Supercomputing Centre Data Storage and Management Policy. Version 2.01

Essential Standards for Registration

SUBMISSION TO PRODUCTIVITY COMMISSION REVIEW OF MUTUAL RECOGNITION SCHEMES JANUARY 2015

Information and records management. Purpose. Scope. Policy

Electronic business conditions of use

Records and Information Management. General Manager Corporate Services

Construction induction training - changes to regulations

Guideline. Records Management Strategy. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.0. Issue Date: 19/07/2010

Information Management Advice 50 Developing a Records Management policy

STATE RECORDS COMMISSION. SRC Standard 6 OUTSOURCING. A Recordkeeping Standard for State Organizations

Policy Statement on. Associations. Eligibility to apply for a Scheme under Professional Standards Legislation May 2014

Records Issues for Outsourcing

Audit and review requirements for Australian Entities

9. GOVERNANCE. Policy 9.8 RECORDS MANAGEMENT POLICY. Version 4

Records and Document Management

Records Authority. Department of Health Private Health Insurance

WHISTLEBLOWERS LEGISLATION

2 March Mutual Recognition Schemes Study Productivity Commission Locked Bag 2 Collins Street East MELBOURNE VIC 8003

WEBSITE TERMS OF USE

Records Management Policy

Public Record Office Victoria Standards and Policy. Recordkeeping Policy. Mobile Technologies. Version Number: v1.0. Issue Date: 13/10/2014

Public Record Office Standard. Retention & Disposal Authority for Records of the Victims of Crime Assistance Tribunal

Best Practice Guide Workplace privacy

Records Authority. National Childcare Accreditation Council

Using Keyword AAA: A thesaurus of common administrative terms

WASTE MANAGEMENT DATA & INFORMATION MANAGEMENT POLICY STATEMENT

MEDICAL-OBJECTS SOFTWARE LICENCE AGREEMENT

Consultation Report. Consultation Report: Personal Injuries (Liabilities and Damages) Act - Assessments of Permanent Impairment JUNE 2015

Indemnity and Insurance Arrangements for Clinical Trials in the Public and Private Sectors in Australia

Queensland Taxi Security Camera Program Changes

Information Circular

Client Skills: Skills required by Government as the Construction Industry Client

General Disposal Authority. For encrypted records created in online security processes

Records Authority. Private Health Insurance Administration Council

Records Management Security of University Records Procedures

Comcare Asbestos Related Compensation Claims & Workers Compensation Claim Management

The Challenges of Archiving Engineering Documents

Scotland s Commissioner for Children and Young People Records Management Policy

Application to access Chesters Trade

Guideline. Managing Records of Outsourced Activity. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.

University of Liverpool

FINAL May Guideline on Security Systems for Safeguarding Customer Information

Report of the Information & Privacy Commissioner/Ontario. Review of the Canadian Institute for Health Information:

State Records Guideline No 15. Recordkeeping Strategies for Websites and Web pages

The Regulation of Health Information Privacy in Australia

STATEMENT OF ETHICAL PRACTICE

How To Manage Records In Virginia

Advertising terms and conditions

IDENTIFICATION, MANAGEMENT AND COMMERCIALISATION OF UNIVERSITY-OWNED R&D INTELLECTUAL PROPERTY

RECORDS MANAGEMENT POLICY

Definitions. Broker means Veda Advantage Information Systems and Solutions Limited;

SAMPLE RETURN POLICY

Privacy and Cloud Computing for Australian Government Agencies

Public Record Office Standard. Retention & Disposal Authority for Records of the Transport Accident Prevention and Assistance Functions

Administrator National Health Funding Pool Annual Report

Implementing an Electronic Document and Records Management System. Checklist for Australian Government Agencies

Licence Agreement (the Agreement )

E-Gap Terms and Conditions of Use

Records Management - Council Policy Version 2-28 April Council Policy. Records Management. Table of Contents. Table of Contents... 1 Policy...

NSW Data & Information Custodianship Policy. June 2013 v1.0

COUNCIL POLICY R180 RECORDS MANAGEMENT

LAUW Cyber erisks. SME Questionnaire.

Research Data Management Plan (RDMP template)

ICASAS505A Review and update disaster recovery and contingency plans

Workers Compensation and Rehabilitation and Other Legislation Amendment Bill 2015

IT SERVICE CONTINUITY AS RELATED TO THE MANAGEMENT OF ELECTRONIC RECORDS POLICY

Management of Official Records in a Business System

(INDIVIDUALS ONLY) IndContPkge Version: 1.7 Updated: 18 Jul. 03

Policy and Procedure Title: Maintaining Secure Learner Records Policy No: CCTP1001 Version: 1.0

TERMS AND CONDITIONS OF USE OF KUWAIT FINANCE HOUSE BAHRAIN S WEBSITE & INTERNET BANKING SERVICES

Information and Compliance Management Information Management Policy

What are medical records? What is the purpose of the medical record?

4 NUMBER 004 Policy Data base Document Reference Number P

Outline of a Research Data Management Policy for Australian Universities / Institutions

A Mapping of the Victorian Electronic Records Strategy Schema to openehr

Corporate Records Management Policy

Records Disposal Schedule Anti-Discrimination Services Northern Territory Anti-Discrimination Commission

QUEENSLAND COUNTRY HEALTH FUND. privacy policy. Queensland Country Health Fund Ltd ABN better health cover shouldn t hurt

EFFECTIVE COMPLAINTS MANAGEMENT GUIDE TO DEVELOPING EFFECTIVE COMPLAINTS MANAGEMENT POLICIES AND PROCEDURES

Cloud Computing in a Government Context

Protective security governance guidelines

State Records Guideline No 18. Managing Social Media Records

Definition of Worker Workers Compensation Legislation in NSW. Submission from the Recruitment and Consulting Services Association

Chiropractic Boards response 15 December 2008

Information Governance Framework. June 2015

APES GN 30 Outsourced Services

Supplementary Information Disability Discrimination and Other Human Rights Legislation Amendment Bill

Should you have any questions please do not hesitate to contact the NIG Broker Support on * or by to

Warranty Services Agreement

RACING VICTORIA LIMITED BOOKMAKERS INTERNET BETTING RULES Bookmakers' Internet Betting Rules Effective 26 Oct 10.docx

Information Management Advice 39 Developing an Information Asset Register

Transcription:

ADRI Statement on the Application of Digital Rights Management Technology to Public Records ADRI-2008-001-v1.0 Version 1.0 6 August 2008

Statement on the Application of Digital Rights Management Technology to Public Records 2 Copyright 2008 Further copies of this document can be obtained from the ADRI Web site http://www.adri.gov.au/ or http://www.adri.govt.nz/ The gives no warranty that the information in this version is correct or complete, error free or contains no omissions. The shall not be liable for any loss howsoever caused whether due to negligence or otherwise arising from the use of this Advice. Document Control Version Date Author Comment 1.0 6 August 2008 Version approved by CAARA Endorsement This document has been approved by the Council of Australasian Archives and Records Authorities as a Position Statement on 6 August 2008. Acknowledgements We would like to acknowledge the help given by those people and organisations who commented on drafts of this document. (ADRI) The (ADRI) is composed of representatives from all state and national archival authorities in Australia and New Zealand. The members of ADRI are: National Archives of Australia Archives New Zealand Public Record Office Victoria State Records NSW ACT Territory Records Archives Office of Tasmania Northern Territory Archives Service Queensland State Archives State Records South Australia State Records Office Western Australia The aim of the Initiative is to develop and harmonise a uniform set of standards, guidelines, and practices for digital recordkeeping. A related aim is to improve the organisational capability, capacity, and expertise within the collaborating institutions in relation to digital recordkeeping.

Statement on the Application of Digital Rights Management Technology to Public Records 3 ADRI is a working group of the Council of Australasian Archives and Records Authorities (CAARA). CAARA is the peak body of government archives and records institutions in Australia and New Zealand.

Statement on the Application of Digital Rights Management Technology to Public Records 4 Contents 1 Purpose of the Position Statement... 5 2 Background... 5 3 DRM challenges for recordkeeping... 5 4 Considerations for public authorities... 6 5 Position Statement... 6 6 Scope... 7

Statement on the Application of Digital Rights Management Technology to Public Records 5 1 Purpose of the Position Statement This Position Statement is developed to ensure records access and disposal provisions of the various archives and records legislation in different jurisdictions are not undermined by the application of Digital Rights Management (DRM) technology to public records. 2 Background DRM provides a technological approach to copyright protection for digital content, using software that allows creators/providers to control what happens to documents and messages after they are sent. DRM can regulate the types of actions that can occur with information (for example, view, print, copy or modify) and the time frame in which that information remains accessible. DRM is also known as Information Rights Management, Document Rights Management, Rights Services Management or Enterprise Rights Management. CAARA members recognise that the use of DRM technology may impair the ability of governments in Australia and New Zealand to capture full and adequate records ensuring the preservation of and access to government business, decisions and communications. CAARA supports copyright owners protecting their intellectual property. However, legitimate copyright interests have to be balanced against the legislative requirements for governments to manage and preserve the evidence of their decisions and activities. Records access and disposal provisions must also be observed, including records where copyright may be held by third parties. 3 DRM challenges for recordkeeping DRM challenges one of the principles underlying recordkeeping. Australian and International Standard AS ISO 15489 for Record Management defines a record as "information created, received and maintained as evidence and information by an organisation or person, in pursuance of legal obligations or in the transaction of business". The potential risks to good recordkeeping that are posed by DRM technologies include: auto-deletion inhibits the ability of an agency to capture and maintain full records of its business print disabling for agencies maintaining records in paper format, this prevents agencies keeping records in accordance with their processes forward disabling of email messages prevents capture into many systems thereby preventing agencies capturing records of business; and encryption through loss of keys and passwords, encryption can prevent access and therefore effective loss of records to government and the public security each time a protected object is accessed, there is communication between DRM systems and external rights services, which may affect information security and access provisions.

Statement on the Application of Digital Rights Management Technology to Public Records 6 4 Considerations for public authorities Public authorities intending to use DRM technology need to determine whether application of the technology will compromise their compliance with legislation for the retention, access and use of information. Where DRM technology is deemed to be acceptable, the considerations are: DRM encumbered information is disclosed to and/or understood by the public authority where a public authority chooses to use DRM technology for information it owns, it retains full and exclusive control over that information assurances are sought from vendors to ensure future accessibility for any legitimate users DRM constraints are only imposed if there is clear business reason for doing so modifications to Government information may not be undertaken without explicit Government approval any use of DRM does not hinder the long-term access to information for reasons such as hardware or software dependencies, loss of security access keys or outdated DRM rules. 5 Position Statement 1. For as long as it has any business or statutory requirements to do so, government must be able to: use the information it owns/holds provide access to its information to others, when they are entitled to access it, including future provision for audit, archival, legal and other purposes. 2. Government use of digital rights management technologies must not compromise the privacy accorded to individuals who use government systems, or about whom the government holds information. 3. The use of digital rights management technologies must not endanger the integrity of government-held information, or the confidentiality and protection of personal information, by permitting information to enter or leave government systems, or be amended while within them, without prior government awareness and explicit permission. 4. The security of government systems and information must not be undermined by use of digital rights management technologies. These principles are drawn from policy advice Trusted Computing and Digital Rights Management Principles and Policies, September 2006, issued by the New Zealand State Services Commission. In 2007, the New Zealand Government released Trusted Computing and Digital Rights Management Standards and Guidelines to assist agencies and vendors in the application of the principles and policies. The Standards and Guidelines are a useful set of tools to explore and implement new software that may or may not have DRM implications.

Statement on the Application of Digital Rights Management Technology to Public Records 7 6 Scope The principles are suitable for adoption by all 'agencies' as defined by CAARA members' archival legislation or other standards and instruments.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information