Developing a Records & Information Retention & Disposition Program:

Slides:



Advertisements
Similar presentations
The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.
Advertisements

and Electronic Records Retention: IT Requirements Paul Dworak Office of Compliance
Records Management at Queen’s University By Shan Jin November 2008.
Introduction to Records Management Policy
Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
Identification and Disposition of Official University Records University of Texas at Arlington Records Management.
Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
E-Discovery New Rules of Civil Procedure Presented by Lucy Isaki January 23, 2007.
W W W. D I N S L A W. C O M E-Discovery and Document Retention Patrick W. Michael, Esq. Dinsmore & Shohl LLP 101 South Fifth Street Louisville, KY
1 E-Discovery Changes to Federal Rules of Civil Procedure Concerning Discovery of Electronically Stored Information (ESI) Effective Date: 12/01/2006 October,
NDSU RECORDS MANAGEMENT INITIATIVE December 2007 PowerPoint.
RECORDS MANAGEMENT MELANIE WELCH 1. What Is the Sunshine Law? The Sunshine law grants every person the Constitutional right to: ◦ View or copy any public.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
What Will My Records Retention Schedule Look Like ?
Peer Information Security Policies: A Sampling Summer 2015.
Obtaining, Storing and Using Confidential Data October 2, 2014 Georgia Department of Audits and Accounts.
Grant S. Cowan Information Management & eDiscovery Practice Group.
Why Information Governance….instead of Records & Information Management? Angela Fares, RHIA, CRM, CISA, CGEIT, CRISC, CISM or
Information Assurance and Information Sharing IMKS Public Sector Forum 7 February 2011 Clare Cowling, Senior Information Governance Adviser Transport for.
Records Management Overview. Why? It’s the Law It’s the Law It’s University Policy It’s University Policy Fiscal and Legal Compliance Fiscal and Legal.
ARMA Charlotte - Piedmont Educational Seminar 2007 Managing Public Records Law and Practice In North Carolina Government Records Branch Division of Historical.
Policies and Procedures Deb Bartlett Joy Faerber Office of Procedures, Records, and Forms Revised May 2015.
G17: Recordkeeping for Business Activities Carried out by Contractors Patrick Power, Manager Government Recordkeeping Programme Archives New Zealand.
Electronic Records Management: What Management Needs to Know May 2009.
HIPAA PRIVACY AND SECURITY AWARENESS.
How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.
1 Secure Commonwealth Panel Health and Medical Subpanel Debbie Condrey - Chief Information Officer Virginia Department of Health December 16, 2013 Virginia.
fact sheet (07/03/2007) 1 ARE ARCHIVING SOLUTIONS RECORDKEEPING SOLUTIONS? 7 th March 2007 Stephen Clarke Government Recordkeeping Programme.
RECORDS MANAGEMENT Office of Compliance. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping. –Protection.
Ecords Management Records Management Paul Smallcombe Records & Information Compliance Manager.
Best Practices: Financial Resource Management February 2011.
Records & Information Management (RIM) Risk: Is Your Company Exposed? March 19, 2013.
LeToia Crozier, Esq., CHC Vice President, Compliance & Regulatory Affairs Corey Wilson Director of Technical Services & Security Officer Interactive Think.
Developing Plans and Procedures
1.Summary of Needs Analysis 2.Summary of Action Plan 3.Systems Analysis between Microsoft SharePoint® and OpenText Content Server 4.System Recommendation.
An introduction to records management at Clemson University Records Management Office 139 Anderson Hwy, Suite 100 Clemson, S.C
Brette Kaplan, Esq. Erin Auerbach, Esq. Brustein & Manasevit, PLLC Spring Forum 2013
Electronic Records Management: A New Understanding of Policy, Compliance, and Discovery Robert J. Sobie, Ph.D. Director Information Systems Department.
Guide - Recordkeeping for business activities carried out by contractors Natalie Dewson Senior Advisor Government Recordkeeping Programme Archives New.
CORPORATE RECORDS RETENTION POLICY TRAINING By: Diana C. Toman, Corporate Counsel & Assistant Secretary.
Confidentiality A Training Without the Video. Laws FERPA (1976) or the Buckley Amendment (1994) IDEA (1991) KY Safe Schools (1998)
Data Governance 101. Agenda  Purpose  Presentation (Elijah J. Bell) Data Governance Data Policy Security Privacy Contracts  FERPA—The Law  Q & A.
1 Records Management Organization The Committee provides guidance on operating the company’s records management program.
All Employee Basic Records Management Training. Training Overview 1.Training Objectives 2.Clark County RIM Program 3.Key Concepts 4.Employee Responsibilities.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
An introduction to records management at Clemson University Records Center is located at the Library Depot 103 Clemson Research Blvd Anderson, S.C
EDiscovery Also known as “ESI” Discovery of “Electronically Stored Information” Same discovery, new form of storage.
RECORDS MANAGEMENT Office of Business Affairs. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping.
CITY OF PHOENIX RECORDS MANAGEMENT AND E-PRIVACY Margie Pleggenkuhle City Clerk Department March 18, 2004.
RECORDS MANAGEMENT TRAINING City of Oregon City. INTRODUCTION TO RECORDS MANAGEMENT
Records Management in Government Prepared by the Information Management Unit Saskatchewan Archives Board.
Records Management Training - Department Records Liaison.
Electronic Records Management Alan Cameron Records Management Consultant.
RECORDS MANAGEMENT TRAINING City of Oregon City. INTRODUCTION TO RECORDS MANAGEMENT.
Records Management Reality
UW-Madison Guidelines for Managing the Records of Departing Employees*
Leveraging the Data Map – A Case Study November 15, 2016
Records Retention and Disposition Naugatuck Valley Community College
Headline Records Retention Policy Information December 2016.
Data Minimization Framework
Records Management – & Shared Drives
Red Flags Rule An Introduction County College of Morris
RECORDS AND INFORMATION
Government Data Practices & Open Meeting Law Overview
Records Retention and Its Effects on Discovery
Information Governance Part 2
Government Data Practices & Open Meeting Law Overview
Enterprise Content Management (ECM) Project
Presentation transcript:

Developing a Records & Information Retention & Disposition Program: It’s bigger than just a policy!!!

Benefits: It’s About Stewardship Ensure compliance with applicable laws and regulations Promote operational efficiency and effectiveness Manage institutional risk by specifying requirements and standards for consistent management of records across the organization Identify and effectively communicate mandatory and desired practices with appropriate monitoring for compliance Results = Systematic! Consistent! Effective!

Retention & Disposition: A Living Program Technology gives people multiple options on how they want to work and create a record to document the work product...and some of them are “off the grid” In general, people are not educated on how to tag data so that it can be managed There can be multiple stakeholders that use a common “slice” of data, but stakeholders may not be aligned on requirements The ease of copying electronic records makes consistent disposition difficult to enforce Rules and regulations that define records, privacy rules, response to privacy breaches, and items subject to discovery are constantly changing how we are required to do business.

Federal Rules of Civil Procedure Rule 34(a)(1)(a) …A party may serve on any other party a request with the scope of Rule 26(b): to produce and permit the requesting party or its representative to inspect, copy, test, or sample the following items in the responding party’s possession, custody or control: any designated documents or electronically stored information – including writings, drawings, graphs, charts, photographs, sound recordings, images, and other data or data compilations – stored in any medium from which information can be obtained either directly or, if necessary, after translation by the responding party into a reasonably usable form…

What is a Record? A record is information created, received and maintained by an organization or person that is evidence of its activities or operations, and has value requiring its retention for specific period of time Records can be used in pursuance of legal, financial, regulatory, or historical business obligations Records can be just about anything that tells a story of the events that took place

Record? Part of a contract or agreement ? No No Approval for service, action transaction or policy? Created intentionally as evidence Official action or communication Supports creation of official reports Record? No No Yes Likely A Record Yes Yes Document Draft or Copy ? No No Yes Yes Likely not a Record No No

Questions: Custodianship Who are the primary data owners or stewards? Is there anyone is charge of records and information management retention? Do you have any business associates or third parties that “host” or have custody of your records? Is custodianship defined in the agreement? Who holds the official record or system of record once the record has been declared? Do you know who the primary records custodian or records manager is? Is there a committee that evaluates record retention?

Questions: Stakeholders Has education been provided about records retention in your area? Is your legal counsel and tax department aware of your records retention policies? Do you need technology to support retention and disposition activities? Are you destroying any information and is that being done consistently? How is that information being disposed of? Do you know where your employees are keeping information and the media that it is stored on? Are you aware of who is sharing your information internally and externally?

Questions: Storage Devices What records are created or received and when do they become records? Where are the records stored? Are tools such as SharePoint or One Drive permitted for use as record repositories? If so, how are those repositories managed? Does your department allow the use of portable devices and are they encrypted? Includes tablets, flash drives, cd’s, phones, collaboration sites. Are personal devices permitted to host company records? Is everything backed up and what media is used? How often are backups performed? Is there a plan for how to restore data in the event that restoration from a backup is required? What metadata is stored with each type of document?

Questions: Email Is email used as part of the business process and is there a plan for filing that information as part of the business record? Are employees permitted to forward business information to personal email accounts and home computers? Are emails encrypted when information is passed outside of the organization is another transmission method required when confidential information is transferred? Are employees permitted to store official business records in .pst folders?

Questions: Classification and Security Is there a method for determining which records require additional considerations because of personally identifiable information or personal health information? Is access to information restricted on a need to know basis or is information generally available? Is there a safe method of disposal of physical and electronic data and has this been communicated to everyone in the work area? Are access rights to information reviewed and updated regularly?

Retention Program Development Allocate project resources (management support, funding, and subject matter expertise) Conduct a contextual functional analyses to understand the needs and practices of your stakeholders and determine a records management strategy Compile a records inventory that clearly defines the meaning of records, transitory information, data, and other key elements Identify requirements (federal and state regulatory requirements, business stakeholder requirements, security, vital records protection, and historical preservation considerations) Develop a records retention schedule Document supporting materials Establish a training program to be repeated at regular intervals Establish a monitoring program and perform periodic audits with corrective action recommendations

Resources National Archives and Records Administration Generally Accepted Recordkeeping Principles Association of Records Managers and Administrators American Health Information Management Association National Conference of State Legislatures

Questions: Angela.Fares@bnsf.com

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.