Presentation is loading. Please wait.

Presentation is loading. Please wait.

Developing a Records & Information Retention & Disposition Program:

Published byHorace Fowler Modified over 9 years ago

Similar presentations

Presentation on theme: "Developing a Records & Information Retention & Disposition Program:"— Presentation transcript:

1 Developing a Records & Information Retention & Disposition Program:
It’s bigger than just a policy!!!

2 Benefits: It’s About Stewardship
Ensure compliance with applicable laws and regulations Promote operational efficiency and effectiveness Manage institutional risk by specifying requirements and standards for consistent management of records across the organization Identify and effectively communicate mandatory and desired practices with appropriate monitoring for compliance Results = Systematic! Consistent! Effective!

3 Retention & Disposition: A Living Program
Technology gives people multiple options on how they want to work and create a record to document the work product...and some of them are “off the grid” In general, people are not educated on how to tag data so that it can be managed There can be multiple stakeholders that use a common “slice” of data, but stakeholders may not be aligned on requirements The ease of copying electronic records makes consistent disposition difficult to enforce Rules and regulations that define records, privacy rules, response to privacy breaches, and items subject to discovery are constantly changing how we are required to do business.

4 Federal Rules of Civil Procedure Rule 34(a)(1)(a)
…A party may serve on any other party a request with the scope of Rule 26(b): to produce and permit the requesting party or its representative to inspect, copy, test, or sample the following items in the responding party’s possession, custody or control: any designated documents or electronically stored information – including writings, drawings, graphs, charts, photographs, sound recordings, images, and other data or data compilations – stored in any medium from which information can be obtained either directly or, if necessary, after translation by the responding party into a reasonably usable form…

5 What is a Record? A record is information created, received and maintained by an organization or person that is evidence of its activities or operations, and has value requiring its retention for specific period of time Records can be used in pursuance of legal, financial, regulatory, or historical business obligations Records can be just about anything that tells a story of the events that took place

6 Record? Part of a contract or agreement ? No No
Approval for service, action transaction or policy? Created intentionally as evidence Official action or communication Supports creation of official reports Record? No No Yes Likely A Record Yes Yes Document Draft or Copy ? No No Yes Yes Likely not a Record No No

7 Questions: Custodianship
Who are the primary data owners or stewards? Is there anyone is charge of records and information management retention? Do you have any business associates or third parties that “host” or have custody of your records? Is custodianship defined in the agreement? Who holds the official record or system of record once the record has been declared? Do you know who the primary records custodian or records manager is? Is there a committee that evaluates record retention?

8 Questions: Stakeholders
Has education been provided about records retention in your area? Is your legal counsel and tax department aware of your records retention policies? Do you need technology to support retention and disposition activities? Are you destroying any information and is that being done consistently? How is that information being disposed of? Do you know where your employees are keeping information and the media that it is stored on? Are you aware of who is sharing your information internally and externally?

9 Questions: Storage Devices
What records are created or received and when do they become records? Where are the records stored? Are tools such as SharePoint or One Drive permitted for use as record repositories? If so, how are those repositories managed? Does your department allow the use of portable devices and are they encrypted? Includes tablets, flash drives, cd’s, phones, collaboration sites. Are personal devices permitted to host company records? Is everything backed up and what media is used? How often are backups performed? Is there a plan for how to restore data in the event that restoration from a backup is required? What metadata is stored with each type of document?

10 Questions: Is used as part of the business process and is there a plan for filing that information as part of the business record? Are employees permitted to forward business information to personal accounts and home computers? Are s encrypted when information is passed outside of the organization is another transmission method required when confidential information is transferred? Are employees permitted to store official business records in .pst folders?

11 Questions: Classification and Security
Is there a method for determining which records require additional considerations because of personally identifiable information or personal health information? Is access to information restricted on a need to know basis or is information generally available? Is there a safe method of disposal of physical and electronic data and has this been communicated to everyone in the work area? Are access rights to information reviewed and updated regularly?

12 Retention Program Development
Allocate project resources (management support, funding, and subject matter expertise) Conduct a contextual functional analyses to understand the needs and practices of your stakeholders and determine a records management strategy Compile a records inventory that clearly defines the meaning of records, transitory information, data, and other key elements Identify requirements (federal and state regulatory requirements, business stakeholder requirements, security, vital records protection, and historical preservation considerations) Develop a records retention schedule Document supporting materials Establish a training program to be repeated at regular intervals Establish a monitoring program and perform periodic audits with corrective action recommendations

13 Resources National Archives and Records Administration
Generally Accepted Recordkeeping Principles Association of Records Managers and Administrators American Health Information Management Association National Conference of State Legislatures

14 Questions: Angela.Fares@bnsf.com

Download ppt "Developing a Records & Information Retention & Disposition Program:"

Similar presentations

The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.

The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.
and Electronic Records Retention: IT Requirements Paul Dworak Office of Compliance 565-4906.

and Electronic Records Retention: IT Requirements Paul Dworak Office of Compliance
Records Management at Queen’s University By Shan Jin November 2008.

Records Management at Queen’s University By Shan Jin November 2008.
Introduction to Records Management Policy

Introduction to Records Management Policy
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
Identification and Disposition of Official University Records University of Texas at Arlington Records Management.

Identification and Disposition of Official University Records University of Texas at Arlington Records Management.
Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.

Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
E-Discovery New Rules of Civil Procedure Presented by Lucy Isaki January 23, 2007.

E-Discovery New Rules of Civil Procedure Presented by Lucy Isaki January 23, 2007.
W W W. D I N S L A W. C O M E-Discovery and Document Retention Patrick W. Michael, Esq. Dinsmore & Shohl LLP 101 South Fifth Street Louisville, KY 40202.

W W W. D I N S L A W. C O M E-Discovery and Document Retention Patrick W. Michael, Esq. Dinsmore & Shohl LLP 101 South Fifth Street Louisville, KY
1 E-Discovery Changes to Federal Rules of Civil Procedure Concerning Discovery of Electronically Stored Information (ESI) Effective Date: 12/01/2006 October,

1 E-Discovery Changes to Federal Rules of Civil Procedure Concerning Discovery of Electronically Stored Information (ESI) Effective Date: 12/01/2006 October,
NDSU RECORDS MANAGEMENT INITIATIVE December 2007 PowerPoint.

NDSU RECORDS MANAGEMENT INITIATIVE December 2007 PowerPoint.
RECORDS MANAGEMENT MELANIE WELCH 1. What Is the Sunshine Law? The Sunshine law grants every person the Constitutional right to: ◦ View or copy any public.

RECORDS MANAGEMENT MELANIE WELCH 1. What Is the Sunshine Law? The Sunshine law grants every person the Constitutional right to: ◦ View or copy any public.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
What Will My Records Retention Schedule Look Like ?

What Will My Records Retention Schedule Look Like ?
Peer Information Security Policies: A Sampling Summer 2015.

Peer Information Security Policies: A Sampling Summer 2015.
Obtaining, Storing and Using Confidential Data October 2, 2014 Georgia Department of Audits and Accounts.

Obtaining, Storing and Using Confidential Data October 2, 2014 Georgia Department of Audits and Accounts.
Www.frostbrowntodd.com Grant S. Cowan Information Management & eDiscovery Practice Group.

Grant S. Cowan Information Management & eDiscovery Practice Group.
Why Information Governance….instead of Records & Information Management? Angela Fares, RHIA, CRM, CISA, CGEIT, CRISC, CISM 817.352.4929 or

Why Information Governance….instead of Records & Information Management? Angela Fares, RHIA, CRM, CISA, CGEIT, CRISC, CISM or
Information Assurance and Information Sharing IMKS Public Sector Forum 7 February 2011 Clare Cowling, Senior Information Governance Adviser Transport for.

Information Assurance and Information Sharing IMKS Public Sector Forum 7 February 2011 Clare Cowling, Senior Information Governance Adviser Transport for.

Similar presentations

Ads by Google