Goals of an Electronic Document Retention Program



Similar documents
Rule 30(b)(6) Deposition Question Topics

Elements of a Good Document Retention Policy. Discovery Services WHITE PAPER

CORPORATE RECORD RETENTION IN AN ELECTRONIC AGE (Outline)

Preservation and Production of Electronic Records

Archiving Benefits

WHAT TO DO WHEN YOU RECEIVE A LITIGATION HOLD NOTICE. A Guide for University Faculty, Staff, and Others

Discovery Technology Group

How To Answer A Question About Your Organization'S History Of Esi

C. All responses should reflect an inquiry into actual employee practices, and not just the organization s policies.

Archiving and The Federal Rules of Civil Procedure: Understanding the Issues

Litigation Hold Notices & Electronic Discovery A R E S O U R C E F O R W S U E M P L OY E E S

10 Steps to Establishing an Effective Retention Policy

This article first appeared in the International Technology Law Association s ebulletin, Volume 2, Issue 3, summer 2008.

Developing an Integrated e-discovery and Corporate Records Management Program. Presented by: Janeine Charpiat Information Security Professional

Amendments to Federal Rules of Civil Procedure. electronically stored information. 6 Differences from Paper Documents

A 15-Minute Guide to 15-MINUTE GUIDE

Solving.PST Management Problems in Microsoft Exchange Environments

Measures Regarding Litigation Holds and Preservation of Electronically Stored Information (ESI)

Director, Value Engineering

SOUTHWEST VIRGINIA COMMUNITY COLLEGE RECORDS MANAGEMENT POLICY

DOCUMENT RETENTION STRATEGIES FOR HEALTHCARE ORGANIZATIONS

Integrated archiving: streamlining compliance and discovery through content and business process management

UNDERSTANDING E DISCOVERY A PRACTICAL GUIDE. 99 Park Avenue, 16 th Floor New York, New York

State of Michigan Records Management Services. Guide to E mail Storage Options

Archiving, Retrieval and Analysis The Key Issues

University of Louisiana System

DOCSVAULT WhitePaper. Concise Guide to E-discovery. Contents

Archiving: Common Myths and Misconceptions

Rule 30(b)(6) Depositions in Electronic Discovery. Discovering What There Is to Discover

E-DISCOVERY: BURDENSOME, EXPENSIVE, AND FRAUGHT WITH RISK

E-DISCOVERY AND RECORDS RETENTION PROGRAMS: What Healthcare Administrators Need to Know

Dublin City University

WACHA Going Paperless

FDU - Records Retention policy Final.docx

PRESERVATION AND PRODUCTION OF ELECTRONIC RECORDS

University of Wisconsin System Information Technology Records

Add the compliance and discovery benefits of records management to your business solutions. IBM Information Management software

BPA Policy Systems User Policies

How To Write A Hit Report On A Lawsuit Against A Company

Electronic Discovery How can I be prepared? September 2010

The Next Frontier. for Records Managers. Retention and Disposition of Structured Data:

E-discovery: Federal Rules of Civil Procedure and their Implications for Public Sector Corrections Departments

E-Discovery: The New Federal Rules of Civil Procedure A Practical Approach for Employers

Best Practices in Electronic Record Retention

Data Sheet: Archiving Symantec Enterprise Vault Store, Manage, and Discover Critical Business Information

ESI Risk Assessment: Critical in Light of the new E-discovery and notification laws

Using EMC SourceOne Management in IBM Lotus Notes/Domino Environments

ELECTRONIC DISCOVERY & LITIGATION SUPPORT

FRONTIER REGIONAL/UNION#38 SCHOOL DISTRICTS. Records Retention Policy for Electronic Correspondence

Module 5 Introduction to Processes and Controls

Best Practices Series Document Retention and Best Practices

Miguel Ortiz, Sr. Systems Engineer. Globanet

B. Preservation is not limited to simply avoiding affirmative acts of destruction because day-to-day operations routinely alter or destroy evidence.

Records and Information Management and Retention

How To Manage An Electronic Discovery Project

REALITY BYTES: A NEW ERA OF ELECTRONIC DISCOVERY

7Seven Things You Need to Know About Long-Term Document Storage and Compliance

INTERNATIONAL SOS. Data Retention, Archiving and Destruction Policy. Version 1.07

RECORDS AND INFORMATION MANAGEMENT AND RETENTION

The Legal Advantages of Retaining Information

PROPOSED ELECTRONIC DATA DISCOVERY GUIDELINES FOR THE MARYLAND BUSINESS AND TECHONOLOGY CASE MANAGEMENT PROGRAM JUDGES

Legal Issues Associated with Cloud Computing. Laurin H. Mills May 13, 2009

Cloud Computing and Records Management

EMC SourceOne Management and ediscovery Overview

ELECTRONIC DISCOVERY. Dawn M. Curry

W H I T E P A P E R E X E C U T I V E S U M M AR Y S I T U AT I O N O V E R V I E W. Sponsored by: EMC Corporation. Laura DuBois May 2010

Electronic Discovery: Litigation Holds, Data Preservation and Production

IT Best Practices Audit TCS offers a wide range of IT Best Practices Audit content covering 15 subjects and over 2200 topics, including:

Electronic Discovery

Backup and Recovery 1

Securing and Auditing Cloud Computing. Jason Alexander Chief Information Security Officer

Information Management Advice 18 - Managing records in business systems: Overview

How to Win the Battle Over Electronic Discovery in Employment Cases. By Philip L. Gordon, Esq.

BACKUP SECURITY GUIDELINE

Rethinking Archiving: Exploring the path to improved IT efficiency and maximizing value of archiving solution investments

QuickSpecs HP Archiving software for Lotus Domino 2.1

Predictability in E-Discovery

In-House Solutions to the E-Discovery Conundrum

Solving Key Management Problems in Lotus Notes/Domino Environments

IBM CommonStore Archiving Preload Solution

Records Retention & Destruction Policy. Metro Metro & Associates

ZL UNIFIED ARCHIVE A Project Manager s Guide to E-Discovery. ZL TECHNOLOGIES White Paper

Todd Heythaler Information Governance & ediscovery. Emerging Technologies Work Group

LEGAL ISSUES IN CLOUD COMPUTING

savvisdirect White Papers

3 Tips for Your Woes: Streamline. Simplify. Cloud.

and ediscovery Peter Pepiton ediscovery Product Manager CA Information Governance

Protecting Official Records as Evidence in the Cloud Environment. Anne Thurston

Meaning Based Computing: Managing the Avalanche of Unstructured Data

# Is ediscovery eating a hole in your companies wallet?

E-Discovery Quagmires An Ounce of Prevention is Worth a Pound of Cure Rebecca Herold, CISSP, CISA, CISM, FLMI Final Draft for February 2007 CSI Alert

MINIMIZING THE PAIN OF

IBM Tivoli Storage Manager

QRadar SIEM 6.3 Datasheet

Strategies for Preparing for E-Discovery

The Growing Need to Archive

Recordkeeping for Good Governance Toolkit. GUIDELINE 14: Digital Recordkeeping Choosing the Best Strategy

Information Security Program Management Standard

COURSE DESCRIPTION AND SYLLABUS LITIGATING IN THE DIGITAL AGE: ELECTRONIC CASE MANAGEMENT ( ) Fall 2014

Lowering E-Discovery Costs Through Enterprise Records and Retention Management. An Oracle White Paper March 2007

Transcription:

Goals of an Electronic Document Retention Program June 1, 2006 Presented by: Blake Marks-Dias

Trends That Make Sound Document Retention a High Priority Electronic documents make this a unique problem At least 93% of all information is first generated in electronic form. 30% of that is never printed to hard copy. Experts predict that in 10 years, the number of electronic documents on the planet will double every 60 minutes. Hefty sanctions for failing to preserve/produce electronic evidence. Zubulake. Riddell Williams P.S. 2

Risks of Not Having a Policy/Not Following your Policy Andersen example (selective enforcement) Inability to retrieve and productively use business critical information on a daily or historic basis Riddell Williams P.S. 3

Risks (cont.) Increase costs of doing business from inefficiencies related to disparate or inaccessible data Failure to comply with statutory or regulatory retention and destruction requirements Reduced ability to comply with court orders and other litigation-related imperatives requiring access to existing information Inability to respond promptly to government inquiries Riddell Williams P.S. 4

Benefits of an Effective Document Management Policy Facilitating easier and more timely access to necessary information Controlling the creation and growth of information Reducing operating and storage costs Improving efficiency and productivity Incorporating information and records management technologies as they evolve Riddell Williams P.S. 5

Benefits (cont.) Meeting statutory and regulatory guidelines Meeting litigation presentation obligations, which may be broader and more extensive than the organization s other records management obligations Protecting the integrity and availability of business critical information Preserving corporate history and memory, including evidence to support corporate governance and compliance initiatives Riddell Williams P.S. 6

Goals Compliance with statutes, regulations and industry norms Ability to retrieve data efficiently Manage storage costs and information growth Ability to suspend destruction ( litigation hold ) Riddell Williams P.S. 7

Mandatory Suspension of Document Retention Policy During government audits or investigations and pending or threatened litigation Morgan Stanley example New FRCP - - Safe harbor Riddell Williams P.S. 8

Sample Document Retention Audit Program Phase I: Identify potential sources of risk Industry-specific regulations Employment-related records Unnecessary and/or outdated backup tapes and archives E-mail proliferation Failure to follow written document retention policy Deletion of documents during government audit or pending or threatened litigation Goal: Identify key specific areas to review, based upon sources of risk Riddell Williams P.S. 9

Sample Document Retention Audit Program (cont.) Phase II: Investigation of current electronic document retention Map out current IT architecture Determine how paper and electronic documents are handled in key areas Analyze current procedure for instituting a litigation hold during government audit or pending or threatened litigation Compare company s current practices to best practices for document retention and report to company on results Riddell Williams P.S. 10

Sample Document Retention Audit Program (cont.) Phase III: Develop appropriate document retention practices to minimize risk Develop appropriate retention and deletion periods, including procedure for a litigation hold Craft measures for ensuring compliance Develop adequate archive resources Limit number of backup tapes and store them in an easily retrievable format Software solutions for more convenient storage and deletion of electronic documents Train key personnel to enable self-policing Riddell Williams P.S. 11

The Need to Identify Key Sources of Risk The Sedona Conference s Checklist for Evaluating an Organization s IT Function: 1. All hardware used for organization-wide systems (i.e., mainframes, mini computers, e-mail servers, file servers, fax servers, voice-mail servers?) 2. All operating systems (e.g., Windows NT/2000/XP, Linux, Novell, Unix, proprietary?) 3. All desktop hardware and software, including: a. office document programs (e.g., word processing, spreadsheet programs) b. internet browsers c. electronic mail d. calendar/scheduling e. database management programs f. industry-specific applications g. finance or accounting systems h. remote connection applications Riddell Williams P.S. 12 i. instant mail or chat programs

The Need to Identify Key Sources of Risk The Sedona Conference s Checklist for Evaluating an Organization s IT Function: (cont.) 4. All data storage locations available to users (e.g., local hard drives, network drive locations, removable media, third-party storage locations) 5. All portable hardware and software (e.g., notebook computers, PDA, etc.) 6. All backup systems (hardware and software) a. For what purpose(s) does the organization keep backup media (e.g., tapes)? (Disaster recovery? To restore individual accounts? As a means to ensure records retention? Other?) b. How often are backups made? Are they complete backups or incremental? c. What is the length of retention of backup media? Riddell Williams P.S. 13

The Need to Identify Key Sources of Risk The Sedona Conference s Checklist for Evaluating an Organization s IT Function: (cont.) d. Does disposal occur immediately when the retention expires? e. If a backup tape is simply released for reuse, is there a concern over the passage of time before reuse occurs? f. Is the backup tape degaussed or otherwise erased as a whole, or simply released for reuse? 7. All electronic data archives 8. All network components and locations (e.g., routers, hubs, firewalls, etc.) 9. All data storage locations outside of the United States 10.All third parties involved in data collection or storage on behalf of the organization 11.If the organization uses file servers, how does the organization assure compliance with retention schedules for: a. The records on the server? b. Backup copies of the server? Riddell Williams P.S. 14

The Need to Identify Key Sources of Risk The Sedona Conference s Checklist for Evaluating an Organization s IT Function: (cont.) 12. Does the IT Function take ownership of records compliance on file servers, or is this left to the users or others? 13. Does the IT Function know all the servers? 14. Does the IT Function know what type of records are on each server? 15. If an employee places a record on a server (e.g., a word processing document) and forgets about it, how is compliance with retention policies achieved? 16. Is compliance with retention policies a mandatory deliverable for hardware and software? 17. What tools and automation are employed by the organization to manage documents in general and records in particular (for example, Accutrac, imanage, Hummingbird, IBM) Riddell Williams P.S. 15

The Need to Identify Key Sources of Risk The Sedona Conference s Checklist for Evaluating an Organization s IT Function: (cont.) 18. Does the organization have a formal electronic records management system? 19. Has the organization implemented formal technology standards for records management? (ISO 15489, DoD 5015.2, ISO 17799) 20. Does the organization employ automated assigning of metadata for content management or control issues to documents? 21. Does the organization use technology to filter outbound content for loss of intellectual property (for example, Sybari for filtering outbound e-mail and attachments)? 22. Does the organization deploy leveraged Digital Rights Management technology to enforce external parties copyright and license conditions? Riddell Williams P.S. 16

The Need to Identify Key Sources of Risk The Sedona Conference s Checklist for Evaluating an Organization s IT Function: (cont.) 23. If a technology is adopted, and concerns regarding records management implications are identified later, what is the process to address those concerns? Riddell Williams P.S. 17

Hypothetical: Foodie Corporation Sells gourmet stocks and sauces History of employment lawsuits from angry chefs No written e-mail policy Stores backup tapes indefinitely Subject to certain industry regulations Riddell Williams P.S. 18

Hypothetical: Foodie Corporation Focus audit on: Employment/HR documents E-mail policy Backup/archive policy Industry-related retention periods Riddell Williams P.S. 19

Questions? Please contact me any time with additional questions. Blake Marks-Dias Riddell Williams P.S. 1001 Fourth Avenue, Suite 4500 Seattle, WA 98154-1192 206.389.1575 bmarksdias@riddellwilliams.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information