Electronic Records as Documentary Evidence Standard (CAN-CGSB 72.34) A Case Study from The University of Calgary By Regina Landwehr © University Archives.

Slides:



Advertisements
Similar presentations
2009 Data Protection Seminar
Advertisements

What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.
Document &Record Control/Management Workshop Presenter: Gail Nelson Coffee Industry Board July 18, Central St. Catherine Coffee.
Review Questions Business 205
Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.
IMPLEMENTING AN ELECTRONIC RECORDS MANAGEMENT PROGRAM Philip C. Bantin Indiana University Archivist IU Electronic Records Program Website:
Coping with Electronic Records Setting Standards for Private Sector E-records Retention.
The Islamic University of Gaza
PKI Records Management and Archive Issues October 10, 2002 Phoenix, AZ Charles Dollar Dollar Consulting ECURE 2002.
Developing a Records & Information Retention & Disposition Program:
Legal Archiving & Records management, existing technologies and solutions Marc Vandeveken - I.R.I.S.
Created May 2, Division of Public Health Managing Records What is a Record? What is a Records Retention & Disposition Schedule? Why is this Important?
What Will My Records Retention Schedule Look Like ?
Retention and Disposition. Are messages public records? At NMU, all messages composed and maintained on University hardware are considered.
Public Records Management Advanced Real Property Seminar September 15, 2010 Presented by: Tom Vincent, NCDCR Local Records Management Analyst.
Christchurch 23/11/ The PRA and Management 23 November 2007 Kate Jones Government Recordkeeping Programme Archives New Zealand.
ECM and Compliance Marcelle Blasl ECMm² (AIIM)
1 EDMS 101 Speaker: Monica Crocker, DHS EDMS Coordinator Overview of current project(s) Objective of this section: This session outlines EDMS fundamentals.
Electronic Records Management: What Management Needs to Know May 2009.
New Grants Model Document Retention 1 District 5240 Grants Document Retention District Assembly /6/2013.
Recordkeeping for Good Governance Toolkit Digital Recordkeeping Guidance Funafuti, Tuvalu – June 2013.
IQPC February 25, ELECTRONIC RECORDS INTEGRITY AND AUTHENTICITY AND STANDARDS OF EVIDENCE John D. Gregory Ministry of the Attorney General (Ontario)
Managing the Retention of Electronic Records Ann Marie Przybyla Electronic Records Symposium Region 9, November 2007.
How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.
fact sheet (07/03/2007) 1 ARE ARCHIVING SOLUTIONS RECORDKEEPING SOLUTIONS? 7 th March 2007 Stephen Clarke Government Recordkeeping Programme.
RECORDS MANAGEMENT Office of Compliance. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping. –Protection.
M a k i n g w o r k e r s ’ c o m p w o r k ® Content Management & Records Retention “A RIM Perspective” Nancy M. Maglothin, Records and Information Manager.
PwC 21 CFR Part 11 – A Risk Management Perspective Patrick D. Roche 07 March 2003, Washington D.C.
Meet and Confer Rule 26(f) of the Federal Rules of Civil Procedure states that “parties must confer as soon as practicable - and in any event at least.
Allegra Huxtable Manager Government Recordkeeping Tasmanian Archives and Heritage Office.
Records Management 101 The Basics Archival and Records Management Services Division.
Electronic Records Management Alan Cameron Records Management Consultant.
E-records and the law John D. Gregory Policy Division Ministry of the Attorney General May 14, 2007.
Part 11, Electronic Records; Electronic Signatures
RECORD RETENTION Arizona State Library, Archives and Public Records.
Paperless Government and the Law John D. Gregory Ministry of the Attorney General June 5, 2009.
DIGITAL SIGNATURE.
SCHOOLS FINANCE OFFICERS MEETINGS Records Management, “Paper-Lite” Environments and Procedures when a school closes Elizabeth Barber.
All Employee Basic Records Management Training. Training Overview 1.Training Objectives 2.Clark County RIM Program 3.Key Concepts 4.Employee Responsibilities.
New Form Approval Process. Background New Process is effective April 1, 2014 Published in the March 2014 Cities and Towns Bulletin, pages 7 and 8 Changes.
Generally Accepted Recordkeeping Principles Generally Accepted Recordkeeping Principles ® Registered Trademark of ARMA International.
HIPAA Security John Parmigiani Director HIPAA Compliance Services CTG HealthCare Solutions, Inc.
03/08/1999UT Austin: GSLIS LIS Information Management LIS /8/99 Martha Richardson.
ISO DOCUMENT CONTROL. ISO Environmental Management Systems2 Lesson Learning Goals At the end of this lesson you should be able to: 
RECORDS MANAGEMENT Office of Business Affairs. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping.
Information Resource Stewardship A suggested approach for managing the critical information assets of the organization.
The world leader in serving science OMNIC DS & Thermo Security Administration 21 CFR Part 11 Tools for FT-IR and Raman Spectroscopy.
NOTE: To change the image on this slide, select the picture and delete it. Then click the Pictures icon in the placeholder to insert your own image. Documents.
Project management Topic 8 Configuration Management.
CITY OF PHOENIX RECORDS MANAGEMENT AND E-PRIVACY Margie Pleggenkuhle City Clerk Department March 18, 2004.
Chang, Wen-Hsi Division Director National Archives Administration, 2011/3/18/16:15-17: TELDAP International Conference.
Managing Effectively. Managing effectively is your responsibility.
Records Management and You!. Your responsibilities as a Government of Canada employee.
What ICT specialists need to know about information and records Christine Johnston.
Health Sciences Administration Brown Bag Training Topics in Records Management November 12, 2015.
Information Management (IM) 101. What you need to know about IM, in a nutshell.
ARMA VI - NANAIMO 2016 David Young Records Management Archivist University of Victoria Electronic Records as Documentary Evidence CGSB‐72.34‐2015 (To supersede.
The University, Digitisation and You LRC meeting 5 th June, 2013 Adelaide Parr Records Analyst Records Services.
7 th Edition  Read-Smith, Ginn Records Management © 2002 South-Western Educational Publishing Chapter 6 Records Retention, Retrieval, and Transfer.
1 ECM APPLICATIONS AND SOLUTIONS - PART 1 MODULE 8 ECM SPECIALIST COURSE 1 Copyright AIIM.
Electronic Records Management Alan Cameron Records Management Consultant.
© 2016 Chapter 6 Data Management Health Information Management Technology: An Applied Approach.
Susan McKinney, CRM. RECORDS MANAGEMENT AT THE U Policy: Managing University Records and Information Procedures: Retention of University Records Destruction.
UW-Madison Guidelines for Managing the Records of Departing Employees*
Building A Repository for Digital Objects
Rich Grudman Program Administrator 10/9/08
ELECTRONIC RECORDS INTEGRITY AND AUTHENTICITY STANDARDS OF EVIDENCE
Good Spirit School Division
CGSB and Electronic Records
Why do we need to keep records
Presentation transcript:

Electronic Records as Documentary Evidence Standard (CAN-CGSB 72.34) A Case Study from The University of Calgary By Regina Landwehr © University Archives Presented at ARMA Canada Conference, Winnipeg, 6 June 2007

Agenda Reasons for choosing the standard Reasons for choosing the standard Overview of standard Overview of standard Applying the standard Applying the standard Assessment findings and recommendations Assessment findings and recommendations Future steps Future steps Comments on the standard Comments on the standard

NOT MY JOB!

Reasons for choosing standard Who’s responsibility is it? Who’s responsibility is it?  Continuum of Care model at UofC The issue: e-records replaced paper records in the admissions process The issue: e-records replaced paper records in the admissions process Can e-records take the place of paper records? Can e-records take the place of paper records? Legislative research: Electronic Transactions Act (ETA), Alberta Evidence Act Legislative research: Electronic Transactions Act (ETA), Alberta Evidence Act

Reasons for choosing standard The Acts: The Acts:  UofC must always be prepared to produce its records as evidence  Core requirements for admissibility:  Authenticity of the record  Integrity of the information system  Truthfulness of the record’s content

THE VOTING MACHINE

Reasons for choosing standard The Acts: The Acts:  Follow national standard(s) Microfilm and Electronic Images as Documentary Evidence Standard (CAN/CGSB ) Microfilm and Electronic Images as Documentary Evidence Standard (CAN/CGSB )  Conversion from paper to scans only Surprise: more than scans – Surprise: more than scans –  and EDMS record annotations

Overview of standard (GGSB 72.34) Published in 2005 Published in 2005 Applies to public and private sectors, to profit and not-for profit activities Applies to public and private sectors, to profit and not-for profit activities Purpose: Purpose:  To ensure records can provide reliable support for business decisions  To maximize admissibility and weight of records  To protect the value of e-records in documenting the content and accountability of decisions and transactions

Overview of standard Provides structure and principles for developing a comprehensive e-records management program Provides structure and principles for developing a comprehensive e-records management program Defines best practices Defines best practices Sections 5-8 are the ‘meat’ of the standard Sections 5-8 are the ‘meat’ of the standard  Legal requirements for e-records as evidence  Components of an e-records management system program incl. system requirements  QAP  Audit trail requirements

Overview of standard Technology neutral Technology neutral ISO and 2, ‘Records Management’ standard (2000) is its foundation ISO and 2, ‘Records Management’ standard (2000) is its foundation  References:  Fisher, Paul. Electronic Records as Evidence: The case for Canada’s new standard (Information Management Journal, March/April 2004)  Gurushanti, Vigi. e-Evidence Standard: Proving the integrity, reliability and trust of electronic records (ARMA/CIPS conference, 2002)

Key records concepts Records in whatever format serve as evidence of activities Records in whatever format serve as evidence of activities Characteristics of records to act as evidence Characteristics of records to act as evidence  Trustworthy-stand for the facts a record is about  Trustworthy over time-not altered, falsified, substituted  Authoritative-capable of generating consequences

Records are trustworthy if…. Contain complete information Contain complete information  Date written and/or received  Author and title of author  Sender and title of sender  Recipient and title  Type of record  Body of text  Content description-re: subject  File code/classification #  Comments/notes on record  Attachments  Stamp for copy/draft  Signature(s)

Records are authoritative if… Authority given through permission Authority given through permission Permission is defined by position Permission is defined by position Positions reflect competence for a function/activity Positions reflect competence for a function/activity Functions are mandated in business plan Functions are mandated in business plan

Records are trustworthy over time if… Placed and kept in a file that relates to the matter (classification) Placed and kept in a file that relates to the matter (classification) Access to file remains privileged Access to file remains privileged Track whereabouts of files if removed Track whereabouts of files if removed Check for completeness upon return Check for completeness upon return Keep records only as long as required by retention authority Keep records only as long as required by retention authority

Check list-requirement 1: authenticate the source of a record Identify/verify the author of record Identify/verify the author of record Identify/verify the operator of the system Identify/verify the operator of the system Identify/verify the system/software from where record originates Identify/verify the system/software from where record originates

Check list-requirement 2: ability to capture IT metadata System design architecture System design architecture Entity and attribute definitions Entity and attribute definitions Description of how to use the operating system and program application Description of how to use the operating system and program applicationBeware! Issue of proprietary systems preventing effective testing and maintenance Issue of proprietary systems preventing effective testing and maintenance

Check list-requirement 3: ability to create audit trails Record of all historical activities/events performed on the records and the records system Record of all historical activities/events performed on the records and the records system System and operator generated logs System and operator generated logs  Initial capture  Changes to access privileges  Nature of processing events  Changes to record formats  Destruction/erasures and their attempts Audit trails must be kept as long as records exist and stored separately from system Audit trails must be kept as long as records exist and stored separately from system

Check list-requirement 4: security features a. Ability to assign permissions must be protected a. Ability to assign permissions must be protected b. Processing verification must be available b. Processing verification must be available c. Safeguarding of communication and transmission lines c. Safeguarding of communication and transmission lines d. Maintenance of backup copies of records d. Maintenance of backup copies of records e. Business continuity plan for system and records e. Business continuity plan for system and records

Check list-requirement 5: quality testing Quality Assurance Program (QAP) Quality Assurance Program (QAP) Regular testing of: Regular testing of:  System operability  Completeness of records Documentation that testing took place Documentation that testing took place Independent audit of QAP Independent audit of QAP

Check list-requirement 6: non- alterable official record Records are locked: Records are locked:  Scans: unchangeable format-pdf  correspondence sent is fixed  Annotation records-no overwrite

Check list-requirement 7: support records retention and disposition Schedule records Schedule records Notification of destruction readiness Notification of destruction readiness Generate disposition lists Generate disposition lists Log dispositions completed Log dispositions completed

Check list-requirement 8: record annotations/instructions Capability to create legible annotations Capability to create legible annotations Associate annotation with record Associate annotation with record Inseparability of annotation from record Inseparability of annotation from record Unalterable annotation Unalterable annotation

THE FIRST IT HELP DESK

Assessment findings No satisfactory back-up procedures No satisfactory back-up procedures No system’s maintenance/testing plan No system’s maintenance/testing plan No scheduling and disposition function No scheduling and disposition function No audit trail is kept of record deletions No audit trail is kept of record deletions No business continuity plan No business continuity plan

Assessment recommendations Paper records where exist will remain the official record Paper records where exist will remain the official record E-records in Synergize will be reference copies E-records in Synergize will be reference copies Annotations and records as yet unresolved Annotations and records as yet unresolved Develop a Procedures Manual for this system Develop a Procedures Manual for this system Develop a vital records system plan Develop a vital records system plan Develop a disposition tool with vendor Develop a disposition tool with vendor

Outlook Record making systems are difficult to convert into record keeping systems Record making systems are difficult to convert into record keeping systems DoD compliant enterprise wide ERS in its pilot phase DoD compliant enterprise wide ERS in its pilot phase Strengthen the policy framework around system security and quality assurance Strengthen the policy framework around system security and quality assurance Continue assessing other record making systems using this standard Continue assessing other record making systems using this standard

Comments on standard Strengthen significance of business process analysis Strengthen significance of business process analysis Add system requirement for annotations Add system requirement for annotations Add system requirement to specify a retention for audit trail of destruction Add system requirement to specify a retention for audit trail of destruction Clarify some definitions and terms Clarify some definitions and terms  Records vs. information vs. data

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.