Why an international standard on Record Management?

Slides:

Advertisements

Similar presentations

1 Welcome Safety Regulatory Function Handbook April 2006.

Advertisements

The Managing Authority –Keystone of the Control System

EMS Checklist (ISO model)

The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.

Checking & Corrective Action

An Internal Control Overview

Health Records Management Practitioner

What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.

Unit 4- Assignment 3 P5, P6, M2 BTEC Business Level 3.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Environmental Management System (EMS)

Internal Control.

National Archives and Records Administration, 2003 Federal Records Management for Managers What’s in it for me?

Coping with Electronic Records Setting Standards for Private Sector E-records Retention.

Security Controls – What Works

Developing a Records & Information Retention & Disposition Program:

Laboratory Personnel Dr/Ehsan Moahmen Rizk.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

ISO 17799: Standard for Security Ellie Myler & George Broadbent, The Information Management Journal, Nov/Dec ‘06 Presented by Bhavana Reshaboina.

Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.

First Practice - Information Security Management System Implementation and ISO Certification.

Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.

Section 1 Guidelines for Office of Inspector General Quality Control and Assurance Programs Peer Review Training – National Science Foundation August 16,

The Role of Risk Management and Assurance in Effective Organizational Governance Urton Anderson The University of Texas at Austin.

THE PRINCIPLES OF QUALITY MANAGEMENT. DEFINING QUALITY Good Appearance? High Price? The Best? Particular Specification? Not necessarily, but always: Fitness.

4. Quality Management System (QMS)

Control environment and control activities. Day II Session III and IV.

1 CHCOHS312A Follow safety procedures for direct care work.

An Educational Computer Based Training Program CBTCBT.

1 Internal Controls. 2 Example Internal Control Manual  Focused Assessment Exhibit 4A  /trade/trade_programs/audits/focused.

HNC in Health and Social Care Unit 1: Communicating in Health and Social Care Organisations SESSION 7.

Data Archiving and Networked Services DANS is an institute of KNAW en NWO Trusted Digital Archives and the Data Seal of Approval Peter Doorn Data Archiving.

ERPANET pre-conference workshop, Glasgow 30 August 2004 Hans Hofman Nationaal Archief Netherlands Co-Director ERPANET ERPANET seminar Glasgow, 30 August.

Considering Internal Control

Lecture 31 AC312 AUDITING SPRING 2002 Lecture 3. Systems Work and Internal Auditing.

Generally Accepted Recordkeeping Principles Generally Accepted Recordkeeping Principles ® Registered Trademark of ARMA International.

Learning Objectives LO5 Illustrate how business risk analysis is used to assess the risk of material misstatement at the financial statement level and.

By Bankole Ebisemiju At an Intensive & Interactive workshop on Techniques for Effective & Result Oriented Annual Operation Plan November 24th 2010 Annual.

Records & Information Management (RIM) Risk: Is Your Company Exposed? March 19, 2013.

The Accomplished Connoisseur: Professional Expertise in Support for the Corporate Law Department Presented by: Lisa Daulby Canadian Association of Law.

Evaluation of Internal Control System. Learning Objective 1 Contrast management’s need for internal control with the auditor’s need to consider internal.

ISO GENERAL REQUIREMENTS. ISO Environmental Management Systems 2 Lesson Learning Goals At the end of this lesson you should be able to: 

FOURTH EUROPEAN QUALITY ASSURANCE FORUM "CREATIVITY AND DIVERSITY: CHALLENGES FOR QUALITY ASSURANCE BEYOND 2010", COPENHAGEN, NOVEMBER IV FORUM-

1.Summary of Needs Analysis 2.Summary of Action Plan 3.Systems Analysis between Microsoft SharePoint® and OpenText Content Server 4.System Recommendation.

Copyright © 2007 Pearson Education Canada 1 Chapter 1: The Demand for Auditing and Assurance Services.

1 Strategic Plan for Digital Archives Programme DAP PROJECT SCOPE OVERVIEW STATUS.

Evaluation of Internal control mechanism in Audit of Autonomous Bodies.

Risk Management & Corporate Governance 1. What is Risk?  Risk arises from uncertainty; but all uncertainties do not carry risk.  Possibility of an unfavorable.

The Government Recordkeeping Survey 2008 Natalie Dewson, Senior Advisor, Government Recordkeeping Programme, Archives New Zealand.

Exposure draft - Standard on Digital Recordkeeping Exposure draft - General Retention and Disposal Authority for Source Records that have been Migrated.

Incoming communication Diagram A0 Carry out business activity 2 Outgoing communication Manage records 3 Result, deliverable Mandate External requests.

Recordkeeping for Good Governance Toolkit Workshop PARBICA 14 Evidence and Memory in the Digital Age.

Samantha Schreiner University of Illinois at Urbana- Champaign BA 559 – Professor Michael Shaw December 15 th, 2008 A Survey of IT Governance Through COBIT,

BSBPMG507A Manage Project Communications Manage Project Communications Unit Guide Diploma of Project Management Qualification Code BSB51507 Unit.

Managing Records: Good government, Better business. FOI Presentations to Boards & Committees Cayman Islands National Archive November 2008.

POLICIES = CONTROL Simply stated, a policy lays out what management wants employees to do and a procedure describes how it should be done.

International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.

AUDIT OF INTERNAL CONTROL Day V Sessions I & II. Session Overview Periodical audit of existence of internal control in order to examine its effectiveness.

National Public Health Performance Standards Local Assessment Instrument Essential Service:6 Enforce Laws and Regulations that Protect Health and Ensure.

Generally Accepted Recordkeeping Principles Generally Accepted Recordkeeping Principles ® Registered Trademark of ARMA International.

1 Information Governance (For Dental Practices) Norman Pottinger Information Governance Manager NHS Suffolk.

Alex Ezrakhovich Process Approach for an Integrated Management System Change driven.

Internal Control Process at Geneseo. Objectives Understand the objectives of effective internal controls Describe Geneseo’s internal control program Accurately.

Copyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall. Chapter

WORKSHOP ON ACCREDITATION OF BODIES CERTIFYING MEDICAL DEVICES INT MARKET TOPIC 6 CH 5 ISO MANAGEMENT RESPONSIBILITY Philippe Bauwin Medical.

Governance, risk and ethics. 2 Section A: Governance and responsibility Section B: Internal control and review Section C: Identifying and assessing risk.

COBIT. The Control Objectives for Information and related Technology (COBIT) A set of best practices (framework) for information technology (IT) management.

What is ISO Certification? Information is a valuable asset that can make or break your business. When properly managed it allows you to operate.

What standards, relevant to me, are there? Barbara Reed Chair, Standards Australia IT 21 Committee on Records and Document Management Systems.

Presentation transcript:

Why an international standard on Record Management? Anki Steen

“The standardization of records management policies and procedures ensures that appropriate attention and protection is given to all records, and that the evidence and information they contain can be retrieved more efficiently and effectively, using standard practices and procedures.”

SCAA 19 airports Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Stockholm-Arlanda Göteborg-Landvetter Malmö-Sturup Bromma Luleå Umeå Sundsvall/Härnösand Östersund Ängelholm/Helsingborg Visby Karlstad Kalmar Skellefteå Jönköping Ronneby Norrköping Halmstad Kiruna Örnsköldsvik Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Group Staff Communications 2000-08-30 9

Laws that controls records management Freedom of the Press Act Act on Secrecy Archives Act Administrative Procedure Act Personal Data Act

ISO 15489-1 : Information and documentation – Records management – Part 1: General ISO TR 15489-2 : Information and documentation – Records management – Part 2: Guidelines

The records management standard is intended to be used by managers employees records management professionals, information professionals and IT-professionals

The standard applies to the management of records, in all formats or media, created or received by any public or private organization in the conduct of its activities provides guidance on determining the responsibilities of organizations for records and records policies provides guidance on records management in support of a quality process framework to comply with ISO 9001 and ISO 14001 provides guidance on the design and implementation of a records system

Does not include the management of archival records within archival institutions

The standard describes why it is necessary to control the records management and what benefits it gives to the organisation how to design and implement a records system, digital or not what methods can be used when the business activities is analysed and the documentation structure identified what training and information the organisation needs, and how to monitor and modify the system

“An organization should provide adequate evidence of its compliance with the regulatory environment in the records of its activities”

Why should a company or an authority be interested in this standard? Documents and information are assets Established procedures gives structured information and regulate the records management

”Records are created, received and used in the conduct of business activities. To support the continuing conduct of business, comply with the regulatory environment, and provide necessary accountability, organizations should create and maintain authentic, reliable and usable records, and protect the integrity of those records for as long as required.”

Such a programme includes • determining what records should be created in the business processes, and what information should be included, deciding form and structure for the records, and the technologies to be used, determining what metadata should be created with the record and how that metadata should be linked and managed, • determining requirements for retreiving the records and how long they should be kept to answer to the need of the organisation

deciding how to organize the records to support requirements for use assessing the risk if the records are not authoritative preserving the records and making them accessible complying with legal demands and applicable rules ensuring that the records are maintained safely ensuring that records not needed are disposed of evaluating and improving the system

Why should a company or an authority be interested in this standard? documents and information are assets established procedures give structured information and regulate the records management the organization can meet the requirements for records keeping in both ISO 9001 and ISO 14001

What training and monitoring is needed? Everyone in the organisation must be trained and informed about the processes and procedures in the system and their own responsibility “Modifications to the records systems and records management processes should be made if these are found to be unsuitable or ineffective.”

Certificate