Electronic Records Management the role of TNA. Richard Blake Head of the Records Management Advisory Service

Similar documents
Terms in the glossary are listed alphabetically. Words highlighted in bold are defined in the Glossary.

Recordkeeping Standards Analysis of HealthConnect

Records Management Standard for the New Zealand Public Sector: requirements mapping document

The InterPARES Glossary

The InterPARES Glossary

PRINCIPLES AND FUNCTIONAL REQUIREMENTS

DRI: Dr Aileen O Carroll Policy Manager Digital Repository of Ireland Royal Irish Academy

ISO Information and documentation Digital records conversion and migration process

Management: A Guide For Harvard Administrators

DATA STEWARDSHIP BODY OF KNOWLEDGE (DSBOK)

ISO TC46/SC11 Archives/records management

UNIVERSITY OF NOTTINGHAM LIBRARIES, RESEARCH AND LEARNING RESOURCES

RELATIONSHIP BETWEEN THE ISO SERIES OF STANDARDS AND OTHER PRODUCTS OF ISO/TC 46/SC 11: 1. Records processes and controls 2012

Requirements for Assessing and Maintaining the Authenticity of Electronic Records. Authenticity Task Force

The Trustworthiness of Digital Records

Agenda. Bibliography

GEOSS Data Management Principles: Importance and Implementation

The Long-term Preservation of Accurate and Authentic Digital Data: The InterPARES Project

Which database components are records

Key definitions. May Part of the Department of Internal Affairs

ELECTRONIC RECORDS MANAGEMENT SYSTEMS - SYSTEM SPECIFICATIONS FOR PUBLIC OFFICES

RPost's Registered services and Evidence issues within the United Kingdom Legal System

Networking Infrastructure

Records management workflows

DIRECTIVE ON RECORDS AND INFORMATION MANAGEMENT (RIM) January 12, 2018

ILNAS/PSCQ/Pr004 Qualification of technical assessors

Corporate Information Security Policy

Bridging the divide: from theory to practice

ConnectingGTA Combined Back-End and Front-End Solution Privacy Impact Assessment (Executive Summary & Conclusion)

Authenticity, Accuracy and Reliability in the Public Sector: Annotated Bibliography

DATA PROTECTION - CCTV

APPENDIX TWO RETENTION AND DISPOSAL SCHEDULE IMPLEMENTATION GUIDELINES

ISACA Cincinnati Chapter March Meeting

Australian Standard. Records Management. Part 1: General AS ISO ISO

Certification Report

Archiving the Web: What can Institutions learn from National and International Web Archiving Initiatives

APPENDIX THREE RETENTION AND DISPOSAL SCHEDULE IMPLEMENTATION GUIDELINES FOR NSU PROVIDERS

National Policing Community Security Policy

An Overview of ISO/IEC family of Information Security Management System Standards

QUALITY ASSURANCE POLICY. Quality Assurance Policy. September 2016 Version 2.0 Policy authorised by Responsible Officer

Manchester Metropolitan University Information Security Strategy

Certification Report

NSPCC JOB DESCRIPTION

Common approaches to management. Presented at the annual conference of the Archives Association of British Columbia, Victoria, B.C.

Policy Title; Business Continuity Management Policy. Date Published/Reviewed; February 2018

DEPARTMENT OF HOMELAND SECURITY RECORDS MANAGEMENT HANDBOOK

Certification Report

Risk Priority Index - Introductory User Guide

ACCEPTANCE OF ELECTRONIC MAINTENANCE RECORDS

Digital Preservation: How to Plan

ETSI TR V1.1.1 ( )

INTERNATIONAL ASSISTANCE AND CAPACITY BUILDING IN AVIATION SECURITY Briefing for AVSEC/FAL/RG-PA May, 2011

Automation Change Management for Regulated Industries

IT Governance ISO/IEC 27001:2013 ISMS Implementation. Service description. Protect Comply Thrive

Guide to the implementation and auditing of ISMS controls based on ISO/IEC 27001

DATA SELECTION AND APPRAISAL CHECKLIST University of Reading Research Data Archive

The University of Texas at El Paso. Information Security Office Minimum Security Standards for Systems

ELECTRONIC RECORDS (EVIDENCE) ACT (No. 13 of 2014) ELECTRONIC RECORDS (EVIDENCE) REGULATIONS. (Published on, 2015) ARRANGEMENT OF REGULATIONS

Records Retention Schedule

Category: Data/Information Keywords: Records Management, Digitization, Imaging, Image capture, Scanning, Process

Have Records Management Fundamentals Changed with the Revision of ISO 15489?

Records Retention Policy

Certification Report

ISO INTERNATIONAL STANDARD. Information and documentation Records management Part 1: General

REVIEW OF MANAGEMENT AND OVERSIGHT OF THE INTEGRATED BUSINESS MANAGEMENT SYSTEM (IBMS) January 16, 2009

TARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS

EA-7/05 - EA Guidance on the Application of ISO/IEC 17021:2006 for Combined Audits

Transferring vital e-records to a trusted digital repository in Catalan public universities (the iarxiu platform)

C017 Certification Report

How To Establish A Compliance Program. Richard E. Mackey, Jr. SystemExperts Corporation

Farmingdale State College Records Management Training PRESENTED BY DOROTHY HUGHES INTERNAL CONTROL OFFICER AND RECORDS MANAGEMENT OFFICER

Auditing in an Automated Environment: Appendix E: System Design, Development, and Maintenance

Data Warehouse Risk Assessment (GDPR)

Cloud Computing: A European Perspective. Rolf von Roessing CISA, CGEIT, CISM International Vice President, ISACA

E-DISCOVERY PRESENTATION E-DISCOVERY 101: BASICS

Chapter 8: SDLC Reviews and Audit Learning objectives Introduction Role of IS Auditor in SDLC

Audit Report. The Prince s Trust. 27 September 2017

Summary of PIC/S Guidance Good Practices for Data Management and Integrity in Regulated GMP/GDP Environments

FOUNDATION CERTIFICATE IN INFORMATION SECURITY v2.0 INTRODUCING THE TOP 5 DISCIPLINES IN INFORMATION SECURITY SUMMARY

Improving a Trustworthy Data Repository with ISO 16363

Audit Report. The Chartered Institute of Personnel and Development (CIPD)

MAPP Update

ISO 27001:2013 certification

Certification Efforts at Nestor Working Group and cooperation with Certification Efforts at RLG/OCLC to become an international ISO standard

Chapter 9 Section 3. Digital Imaging (Scanned) And Electronic (Born-Digital) Records Process And Formats

Chain of Preservation Model Diagrams and Definitions

PECB Certified ISO Lead Implementer

The Human Touch: Develop a Patient-Centric Injection Device

European Commission s proposal for a Regulation on Electronic identification and trust services for electronic transactions in the EU internal market

Chain of Custody Policy. July, 2015

INFORMATION TECHNOLOGY SECURITY POLICY

New York Department of Financial Services Cybersecurity Regulation Compliance and Certification Deadlines

NARA RECORDS MANAGEMENT INITIATIVES FOR MORE EFFECTIVE ACCESS TO INFORMATION. SERI Educational Webinar Tuesday, September 9, :00 pm Eastern

SECURITY & PRIVACY DOCUMENTATION

WEEE disposal and the creation of social value. Jon Selby Tier 1 Asset Management Ltd

Gramm Leach Bliley Act 15 U.S.C GLBA/HIPAA Information Security Program Committee GLBA, Safeguards Rule Training, Rev.

Wescom Solutions, Inc. Practitioner Engagement Android Version CFR EPCS Certification Report

Electronic Records management (ERM)

Understanding my data and getting value from it

eidas Workshop Return on Experience from Conformity Assessment Bodies - EY June 13, 2016 Contacts: Arvid Vermote

Transcription:

Electronic Records Management the role of TNA Richard Blake Head of the Records Management Advisory Service

What records management has to address Accountability & records as evidence Standards & controls Protection & security Audit trails & reporting Capture, access & retrieval Disposal and archiving Supporting business continuity 24 September 2003 The National Archives 2003 2

The role of ERM in a wider framework Business process change Online public access Integrated information environment Electronic service delivery e -Transactions FoI Decision making Knowledge management Policy Research development Electronic document and records management 24 September 2003 The National Archives 2003 3

The ideal RM system is: Compliant to ensure the business can comply with the regulatory environment and community expectations ; Comprehensive to ensure records pertaining to all relevant aspects of the business are managed; Systematic to ensure that the above characteristics are operated consistently across the organisation. 24 September 2003 The National Archives 2003 4

Accountability & evidential records BS ISO 15489 (Records management standard) requires 4 key characteristics: Authenticity Reliability Integrity Usability 24 September 2003 The National Archives 2003 5

Definition of authenticity BS ISO 15489 states: An authentic record is one that can be proven: To be what it purports to be, To have been created or sent by the person purported to have created or sent it, and To have been created or sent at the time purported 24 September 2003 The National Archives 2003 6

Presumption of authenticity A presumption of authenticity will be based upon the number of requirements that have been met and the degree to which each has been met. The requirements are, therefore, cumulative: the higher the number of satisfied requirements, and the greater the degree to which an individual requirement has been satisfied, the stronger the presumption of authenticity. 24 September 2003 The National Archives 2003 7

Defining reliability BS ISO 15489 regards a reliable record as one whose contents can be trusted as a full and accurate representation of the transactions, activities or facts to which they attest and can be depended upon in the course of subsequent transactions or activities. 24 September 2003 The National Archives 2003 8

Defining integrity BS ISO 15489 states that the integrity of a record refers to its being complete and unaltered 24 September 2003 The National Archives 2003 9

Presumption of integrity requires a trusted custodian possessing: name of the creating organisation that regards the record as part of its official corporate record name of the organisation which has custody of the record indication of types of annotations added to the record indication of technical modifications 24 September 2003 The National Archives 2003 10

Defining usability BS ISO 15489 defines a usable record as one that can be located, retrieved, presented and interpreted. 24 September 2003 The National Archives 2003 11

What controls are needed? ISO 15489 requires processes & controls to: Determine what needs to be captured & determining disposal schedules; Classify an organisation s activities; Manage storage and handling; Manage access and security; Tracking the movement and use of records; Implementing disposition; Documenting RM processes. 24 September 2003 The National Archives 2003 12

Functional requirements Record organisation Record capture, declaration and management Search, display and presentation Retention and disposal Access Control for ERM 1 24 September 2003 The National Archives 2003 13

Functional requirements for ERM 2 Audit Reporting Usability Design and performance Compliance with other standards 24 September 2003 The National Archives 2003 14

Archiving & business Generic requirements for sustaining electronic information over time continuity Defining the characteristics for authentic records Management requirements Technical requirements Guidance for categorising records to identify sustainable requirements 24 September 2003 The National Archives 2003 15

Strategic framework Products Criteria for assessing if the sustained records meet the business need Information about use of actively maintained records Priorities for sustainability and action plans Maintenance strategies Assessment of continued authenticity of records Proposed changes to technological infrastructure 24 September 2003 The National Archives 2003 16

Ensuring the archives of the future Records & information management a core business activity richard.blake@nationalarchives.gov.uk 24 September 2003 The National Archives 2003 17

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback