Records and Information Management

Similar documents
General Records Management Training

Information Governance Manage in Place Use Cases Workshop

State of Michigan Records Management Services. Frequently Asked Questions About E mail Retention

RECORDS AND INFORMATION MANAGEMENT AND RETENTION

Discovery Technology Group

BPA Policy Information Governance & Lifecycle Management

RECORDS MANAGEMENT IN THE UNITED NATIONS

Basic Records Management Practices for Saskatchewan Government*

September Tsawwassen First Nation Policy for Records and Information Management

Document Management in the FIPPA Era

Capstone for Records Management

What We ll Cover. Defensible Disposal of Records and Information Litigation Holds Information Governance the future of records management programs

CORPORATE RECORD RETENTION IN AN ELECTRONIC AGE (Outline)

Breaking Down the Silos: A 21st Century Approach to Information Governance. May 2015

YORK REGION DISTRICT SCHOOL BOARD. Policy and Procedure #160.0 Records and Information Management

Administrative Procedures Memorandum A2005

39C-1 Records Management Program 39C-3

PRESENTATION TOPICS 2/27/2014. Why Update Policies? 21st Century Best Practices for Information Governance & Policies. Why update policies??

State of Florida ELECTRONIC RECORDKEEPING STRATEGIC PLAN. January 2010 December 2012 DECEMBER 31, 2009

ACCESS, PRODUCTION AND RETENTION OF CITY RECORDS

State of Montana Guidelines

4.10 Information Management Policy

Polices and Procedures

Records Management. Training 101

How the Information Governance Reference Model (IGRM) Complements ARMA International s Generally Accepted Recordkeeping Principles (GARP )

FDU - Records Retention policy Final.docx

Developing a Records Retention Program

COLORADO COMMUNITY COLLEGE SYSTEM SYSTEM PRESIDENT S PROCEDURE ELECTRONIC COMMUNICATIONS MANAGEMENT AND RETENTION PROCEDURES

Records Management and SharePoint 2013

Electronic Records Management Guidelines

RUTGERS POLICY. Approval Authority: Executive Vice President for Academic Affairs and Senior Vice President for Administration

GRS 6.1 Managed Under a Capstone Approach

GUIDELINE RECORDS AND INFORMATION INVENTORY

What is Records Management?

Document Management & Workflow

PROCEDURES FOR ELECTRONIC MANAGEMENT OF RULEMAKING AND OTHER DOCKETED RECORDS IN THE FEDERAL DOCKET MANAGEMENT SYSTEM

Technical Competency Framework for Information Management (IM)

SOUTHWEST VIRGINIA COMMUNITY COLLEGE RECORDS MANAGEMENT POLICY

Table of Contents. Chapter No. 1. Introduction Objective Use Compliance Definitions Roles and Responsibilities 2

EFFECTIVE DATE: JULY 1, 2010

Glossary of Records Management Terms

Generally Accepted Recordkeeping Principles

Records Management Policy. EPA Classification No.: CIO CIO Approval Date: 02/10/2015. CIO Transmittal No.: Review Date: 02/10/2018

Louisiana DOTD Records and Information Management Program

Scotland s Commissioner for Children and Young People Records Management Policy

Approved by: Vice President, Human Resources & Corporate Resources and Vice President, Treasury & Compliance Date: October 14, 2009

Records Management Self-Evaluation Guide

Special Report: ROI of Records Management for Legal Discovery

CORK INSTITUTE OF TECHNOLOGY

Section 28.1 Purpose. Section 28.2 Background. DOT Order Records Management. CIOP Chapter RECORDS MANAGEMENT

COUNCIL POLICY R180 RECORDS MANAGEMENT

RECORD AND INFORMATION MANAGEMENT FRAMEWORK FOR ONTARIO SCHOOL BOARDS/AUTHORITIES

Record Retention and Digital Asset Management Tim Shinkle Perpetual Logic, LLC

Defensible Disposition Strategies for Disposing of Structured Data - etrash

Guidelines. Managing Records. Office of the Secretary of State. Approved and Recommended by the State Records Commission February 22, 2001

RECORDS COMMISSION[671]

Governance Processes and Organizational Structures for Information Management

University of Louisiana System

Council Policy. Records & Information Management

4.01. Archives of Ontario and Information Storage and Retrieval Services. Chapter 4 Section. Background

Economic Realities in the Management of Public Records. George Bakolia Senior Deputy State Chief Information Officer November 4, 2011

Records Management Understanding how the pieces fit together?

Practical tips for managing e mail

Records Management Focus White Paper Understanding Digital Records Management

OFFICIAL. NCC Records Management and Disposal Policy

United Cerebral Palsy of Greater Chicago Records and Information Management Policy and Procedures Manual, December 12, 2008

CHAPTER 9 RECORDS MANAGEMENT (Revised April 18, 2006)

Strategy for Management in Canadian Jurisdictions

Classifying Correspondence. General, Administrative, Project/Case, and Transitory

How To Manage Records And Information Management In Alberta

Tactics v. Strategy: From Records & Information Management to Information Governance

Management & Retention

SOUTHWEST VIRGINIA COMMUNITY COLLEGE RECORDS MANAGEMENT PROGRAM. Revised January 15, 2014

Digital Records Preservation Procedure No.: 6701 PR2

September 15, 2014 MEMORANDUM FOR THE HEADS OF EXECUTIVE DEPARTMENTS AND AGENCIES AND INDEPENDENT AGENCIES

Non-Profit Records Management Tool Kit

Audit Report. The Social Security Administration s Management of Electronic Message Records

How To Manage Cloud Data Safely

Wheaton College Records and Information Management Policies and Procedures

ILM et Archivage Les solutions IBM

INFORMATION MANAGEMENT

Presented by Vickie Swam, Director of University Compliance. Records Management is one of the functions supported by the University Compliance Office.

Transcription:

Records and Information Management Elizabeth Adkins Dir., Information Governance Grant Thornton LLP Raquel Tamez Chief Legal Officer SourceAmerica Patrick Oot Partner Shook, Hardy & Bacon, LLP

Records Management & Information Governance 2

Define Records and Information Management Records management, also known as records and information management or RIM, is the professional practice of managing the records of an organization throughout their life cycle, from the time they are created to their eventual disposal. This includes identifying, classifying, storing, securing, retrieving, tracking and destroying or permanently preserving records. ARMA International. "Glossary of Records and Information Management Terms, 3rd Edition". ARMA International. 3

Why Records Management? The purpose of records management is part of an organization's broader function of Governance, Risk, and Compliance (or "GRC") and is primarily concerned with the managing the evidence of an organization's activities as well as the reduction or mitigation of risk associated with It. 4

What is Information Governance? Information governance, or IG, is the activities and technologies that organizations employ to maximize the value of their information while minimizing associated risks and costs. -Information Governance Initiative http://iginitiative.com/2014-annual-report-sneak-peek-our-definition-of-information-governance/ 5

Opportunity: Information Governance Information governance encompasses more than traditional records management. It incorporates information security and protection, compliance, data governance, electronic discovery, risk management, privacy, data storage and archiving, knowledge management, business operations and management, audit, analytics, IT management, master data management, enterprise architecture, business intelligence, big data, data science, and finance. 6

Agency Mandate: 2011 Presidential Memorandum Directs agency heads to take specific steps to reform and improve records management policies and practices: i. Creating a Government wide records management framework that is more efficient and cost effective; ii. Promoting records management policies and practices that enhance the capability of agencies to fulfill their statutory missions; iii. Maintaining accountability through documentation of agency actions; iv. Increasing open Government and appropriate public access with applicable legal requirements related to the preservation of information relevant to litigation; and v. Transitioning from paper-based records management to electronic records management where feasible. 7

RIM Myths RIM is only needed by large corporations, or those in highly-regulated industries If you have data, you re impacted, and who doesn t have data? If you have customers, suppliers, partners, products or services, you have exposure RIM belongs to a small group of dedicated people, such as Legal, Records Management, etc. Problem and solutions have grown beyond the ability of traditional records managers New skill sets are needed. Records managers need to be technologists, business people and lawyers now, not just librarians 8

Develop a RIM Program Policy Procedures Processes Records Retention Schedule Enterprise Overview Define Policy by Regulatory and Business need Discuss IT Department Representative(s) responsibility in supporting and managing Records and Information Compliance with the Records Retention Schedule (RRS) Records and Information Management (RIM) Procedures Manual and Industry Standards and Best Practices Education 9

Some Considerations in a RIM Program 1. RIM Program Overview 2. RIM Fundamentals & Policy 3. Records Retention Schedule 4. RIM Procedures Manual 5. Disposition & Legal Hold 6. Shared Drives & Folder Structure 7. Systems of Records 8. Guidelines and Functional Requirements 9. Next Steps 10

Policy Statement Records and information shall be created, protected, managed and disposed of in accordance with applicable laws, regulations and requirements of this policy and company policies.

Risks of Not Managing Records Fines, sanctions and penalties Legal Obligations Fiduciary Duties Work Processes Impacted Increased Cost of Legal Discovery 12

What are Records? Any recorded information, regardless of medium or characteristic, created, received, maintained, and retained by an organization in pursuance of legal obligations or in the transaction of business. Records can be found in any format: electronic email paper other media Official Records are the version of a record or information that must be retained for the Official Records Retention Period. 13

Records Lifecycle Creation/ Receipt Disposition Classification Retention Use 14

Components of the Program RIM Policy & Glossary Records Retention Schedule (RRS) Legal Hold RIM Procedures Manual Departmental Procedures Auditing Records Coordinators & Associate Training

RIM Policy Overview The Policy establishes Company policy for: Ownership of Company records Records creation Retention and preservation Disposition Compliance with legal and regulatory requirements Data protection Records should be classified and protected Access to them controlled according to their Security Level 16

The Role of Department IT Representatives The IT Representative(s) is the contact to support the Records Coordinators (RCs) within each department and the Corporate Records Management Department Help Record Coordinators (RCs) with the management and disposition of department electronic files and Official Records, and support general compliance with the RIM Program Implement and maintain the Guidelines and Functional Requirements for digital records management systems Ensure that records subject to Legal Holds, Audits and Investigations are protected from disposition Control Access and Security 17

Process Considerations for RIM Manual Records and information are managed in Systems of Records, Shared Drives, Department Servers and e-mail according to the Records Retention Schedule. Periodically, Records Coordinators will request a Records Inventory Report of records that are eligible for disposition. Records Coordinators will submit request to IT to generate Records Inventory Reports to identify official records, convenience information and/or transitory records/information subject to disposition. IT Representatives generate Records Inventory Reports upon approval from Department Management. Disposition approval will be sent to the Department IT Representative Tax, Legal and Compliance conduct the final review of records subject to disposition. Records Inventory list is reviewed and approved by the Corporate Records Management Department. Some records may be held due to litigation or audit. Records Coordinators review and highlight exceptions to disposition. Department Managers review the report.

Disposition Procedures Overview Disposition of Records Procedures support the RIM Policy and define rules and requirements for: Retention and disposition of records Preservation for Legal Holds Protection of records 19

Disposition of Records Records Coordinators Identify records subject to disposition using the RRS Retain records identified as subject to a Legal hold Work with Key Custodians within their departments to ensure records that are subject to Legal/Audit Holds are retained accordingly In preparation for the RIM Review Day disposition process, review Electronic Inventory Reports to ensure official records are protected and validate records class codes are accurate in compliance with disposition authority Submit Disposition Approval Request to the Department Management and the Corporate Records Management Department 20

Disposition of Records (cont d) IT Representatives Verify with the Records Coordinator information has been tagged for disposition according to the RRS and the Procedures Manual Confirm disposition authorization with the Corporate Records Management Department Retain records identified by Associates as subject to a Legal hold and/or Audit hold Review Records Inventory Reports in preparation for the RIM Review Day disposition process to ensure official records are protected and validate records class codes are accurate in compliance with disposition authority 21

RIM and Legal Hold Legal Hold is a communication issued by the Legal Department as a result of current or reasonably anticipated litigation, audit, government investigation, or other such matters that suspends (or stops) the normal disposition or processing of records and information. A legal hold applies to both Official Records and non-records. Penalties can be significant criminal in government investigations 22

Disposition of Electronic Records & Email Disposition for a record, is the final action taken per the Records Retention Schedule, concluding with destruction, transfer, or permanent preservation, or, for records with historical value, transfer to a historical records archive Prior to disposition of electronic records or email, Associates shall obtain authorization from Department Management and the Corporate Records Management Department to delete documents Documents to be deleted must have passed their retention period or be Convenience Information IT deletes documents from file shares, document management systems, or archives upon direction from Corporate Records Administration or the Information Owner 23

Why Get Your House In Order? Efficiency If you are offering services related to Records and Information Management, you might consider how your own organization manages information Information has both value and risk. Depending on your organizational profile, the ROI is probably there Low-cost and free tools are available from providers like Microsoft through non-profit programs like TechSoup.org 24

Tools: Office365 for Non-Profits 25

Tools: Office365 for Non-Profits 26

Ideas for RIM/InfoGov Services Copying/Scanning Services Document Management Database Management Secured Document Destruction Secured Electronic Media Destruction Project Management Computer Technicians Information Security Specialists FOIA Support 27

Questions & Dialogue with the Panelists 28

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information