1 Records Inventory & Data Classification Workshop Data Classification Project Note: This is an example of one agency’s approach to meeting the state records.

Slides:



Advertisements
Similar presentations
June 27, 2005 Preparing your Implementation Plan.
Advertisements

MAIN COMMITTEE OFFICERS DUTIES AND RESPONSIBILITIES.
Tips to a Successful Monitoring Visit
1.Decide on the information to be collected. 2.Decide how the information will be collected. 3.Prepare an inventory form. 4.Decide who will conduct the.
Evolution of Data Use and Stewardship Recent University-wide Data Stewardship Enhancements Integrated System Data Stewardship Shirley C. Payne, CISSP,
Process and Procedure Documentation. Agenda Why document processes and procedures? What is process and procedure documentation? Who creates and uses this.
1 Department of State Program Evaluation Policy Overview Spring 2013.
Identification and Disposition of Official University Records University of Texas at Arlington Records Management.
A Brief Overview of Emergency Management Office of Emergency Management April 2006 Prepared By: The Spartanburg County Office of Emergency Management.
Quality Management within the Clinical Research Process
FERPA 102 Helpful Guide for Administrators, Security Contacts and Support Staff Prepared by the Office of the Registrar Student Records: Institutional.
Join the conference call by dialing the conference number in your Invitation or Reminder s. Please put your phone on mute. Please stand by! The webinar.
Records Emergency Planning and Response Webinar Session 2 Join the conference call by dialing the conference number in your Invitation or Reminder s.
Data Ownership Responsibilities & Procedures
WELCOME MANAGING ATTENDANCE GOVERNOR / PRINCIPAL TRAINING MARCH 2012.
Dr. Julian Lo Consulting Director ITIL v3 Expert
Data Classification & Privacy Inventory Workshop
Developing a Records & Information Retention & Disposition Program:
Data Management Awareness January 23, University of Michigan Administrative Information Services Data Management Awareness Unit Liaisons January.
Coordinating Center Overview November 18, 2010 SPECIAL DIABETES PROGRAM FOR INDIANS Healthy Heart Project Initiative: Year 1 Meeting 1.
FPSC Safety, LLC ISO AUDIT.
SAS 112: The New Auditing Standard Jim Corkill Controller Accounting Services & Controls.
Created May 2, Division of Public Health Managing Records What is a Record? What is a Records Retention & Disposition Schedule? Why is this Important?
Complying With The Federal Information Security Act (FISMA)
Obtaining, Storing and Using Confidential Data October 2, 2014 Georgia Department of Audits and Accounts.
EASTERN MICHIGAN UNIVERSITY Continuity of Operations Planning (COOP)
Unit Introduction and Overview
Continuity of Operations Planning COOP Overview for Leadership (Date)
Records Survey and Retention Schedule Recertification 2011.
1 VUMC Confidentiality Policy and HIPAA Implications for Clinical Research General Clinical Research Center Skills Workshop March 2, 2007 Gaye Smith Privacy.
Programmatic and Fiscal Compliance as a Team Effort 2014 Project Director Training & Annual Meeting1.
Electronic Records Management: What Management Needs to Know May 2009.
Maureen B. Higgins Assistant Director, Agency Support & Technical Assistance Office of Personnel Management December 8, 2010.
Unit 5:Elements of A Viable COOP Capability (cont.)  Define and explain the terms tests, training, and exercises (TT&E)  Explain the importance of a.
Continuity of Operations. COOP Defined  Efforts to ensure continuance of essential functions across a wide range of potential emergencies – building.
ORO Reviews: Frequent Findings Related to IRBs Bob Brooks Associate Director Research Compliance Education and Policy VHA Office of Research Oversight.
Washington State Archives Washington State Archives: Documenting Democracy Public Records Management In Washington State The Basics Presented by: Michael.
Adapted from the January 4, 2012 memo to principals posted on Principals’ Weekly.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Best Practices: Financial Resource Management February 2011.
1 CIP Cyber Security – Personnel & Training Steve Garn CIP Compliance Workshop Baltimore, MD August 19-20, 2009 © ReliabilityFirst Corporation.
State Agencies’ Records Retention Schedule S6: Information Systems Records S6 Retention Schedules.
Anne Arundel County COOP Kick-Off Office of Emergency Management Jim Weed, Director
BACKNEXT Georgia State University --- Expenditure Review Executive Summary -- Online Training Online Training for Georgia State University Expenditure.
Developing Plans and Procedures
IWK Research Ethics - Workshop Series Session #2 REB Review Procedures How to submit … October 24, 2013 Bev White, Manager, Research Ethics Research Services,
Restructuring Mergers and CHANGE! Recordkeeping Advice Alice Patterson, Senior Advisor Government Recordkeeping Programme.
STANKIEWICZ. Essential Questions and Learning What is the purpose of criminal Investigation? What are the basic steps in criminal investigations? What.
Chapter 5 Technology in the Business Office Copyright © 2011, 2006 Mosby, Inc., an affiliate of Elsevier. All rights reserved.
Project quality management. Introduction Project quality management includes the process required to ensure that the project satisfies the needs for which.
Unit 3: Identifying and Safeguarding Vital Records Unit Introduction and Overview Unit objective:  Describe the elements of an effective vital records.
National PTA Standards of Affiliation (an SOA required training)
Information Security IBK3IBV01 College 2 Paul J. Cornelisse.
ITCC / IT Retreat Data Access Procedure December 10, 2009 Karl F. Lutzen Information Security Officer.
National Public Health Performance Standards Local Assessment Instrument Essential Service:6 Enforce Laws and Regulations that Protect Health and Ensure.
Evaluate Phase Pertemuan Matakuliah: A0774/Information Technology Capital Budgeting Tahun: 2009.
Indian Health Service Grants Management Grants 101- Fundamentals.
1 City of Shelby Wastewater Treatment Division Becomes State’s Second Public Agency to Implement a Certified Environmental Management System CERTIFICATION.
ISO DOCUMENT CONTROL. ISO Environmental Management Systems2 Lesson Learning Goals At the end of this lesson you should be able to: 
Prepared By: Razif Razali 1 TMK 264: COMPUTER SECURITY CHAPTER SIX : ADMINISTERING SECURITY.
Session 6: Data Flow, Data Management, and Data Quality.
Records Management in Government Prepared by the Information Management Unit Saskatchewan Archives Board.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
1 Auditing Your Fusion Center Privacy Policy. 22 Recommendations to the program resulting in improvements Updates to privacy documentation Informal discussions.
IT Risk Management Assessor SPECTRIM Tool Training
Randall (Randy) Snyder, PT, MBA Division Director January 27, 2016
Electronic Records Management Program
RECORDS AND INFORMATION
Continuity of Operations Planning
Government Data Practices & Open Meeting Law Overview
Presentation transcript:

1 Records Inventory & Data Classification Workshop Data Classification Project Note: This is an example of one agency’s approach to meeting the state records inventory and data classification requirements. Material may need to be modified to meet your particular needs. The project has been successful, thus far.

Welcome & Introductions  INSTRUCTOR INFORMATION  PROJECT LEAD INFORMATION

Workshop Agenda  Role & Responsibility of Designee  Introduction to State Policies Records Inventory & Retention Records Classification & Security  Scope of Effort & Process  Access to Materials on the Intranet  Conducting the Inventory & Classification Part I – Records Management Practices Part II – Records Inventory & Classification  Workshop Exercises

Role & Responsibility of Designee  Role: Records management: the management of records within your functional division and/or unit(s).  Responsibilities: Identify and classify records used and maintained. Complete or oversee the completion of the survey and periodic updates. If overseeing the completion, must:  train and assist the person completing the survey  verify accuracy of information reported

State Policy Agencies must comply with the following requirements:  INVENTORY – (SAM section 1666) Inventory records at least once every 5 years Use Records Inventory Worksheet form (STD. 70) Use Records Retention Handbook as guide for preparing and conducting the inventory  RETENTION – (SAM section 1665) Establish a Records Retention Schedule Program consistent with state/agency laws Use Records Retention Handbook and Addenda

General Retention Schedule  Personnel & Payroll  Delegated Testing  Fiscal  Information Technology  Records Management  Administrative & Common Use 

STD. 70 – Worksheet  Per SAM this is the form used to comply with inventory requirement: std070-Records Inventory Worksheet-DGS.pdf  This form is being used as the basis of this inventory and classification effort  Phase II Activity (4 and 9 on modified form)

State Policy  Information records are essential public resources  We are the protectors of the public’s information  All agencies must: IDENTIFY CLASSIFY PROTECT

State Data Classification Criteria  Data classification is a key element to identifying appropriate levels of precautions to protect these resources (BL-05-08).  Every agency must classify each file and database using the following classification structure (SAM Section ).

Data Classifications  Primary Public Confidential Sensitive  Secondary (Confidential) Personal Notice-triggering Protected Health Information (PHI) Electronic Health Information (EHI)

Record System  Also referred to as a Record Series.  Group of related records under a single filing category that deal with a particular subject or result from the same activity.  Maintained by an agency for official purposes  A physical record system may be an output of an electronic record system (e.g., lists, reports).

Scope of Effort  B-I-G! Really, really BIG!  Identify all records used and maintained by the agency  Triggers: “What records are your office and/or staff using and maintaining to support this specific business function, process or service?” “Have employees created reports, spreadsheets, databases or other tools to assist them with their work?”

Initial Inventory Process 1.Each division/program identifies a person responsible for management of records = “Designee” 2.Designees are trained on completing the inventory for their offices 3.Designees complete or oversee the completion of Inventory Worksheets 4.Information feeds and serves to facilitate compliance with:  Inventory and classification requirements  Other requirements (e.g., retention, security and operational recovery processes)

Goal and Process for Updates  Develop a mechanism to: Continually update as required to support annual reporting Minimize further impact to business operations  Project lead is currently working with IT to develop an Access Database The information gathered through this process will be input/imported into the database. Records management designees will be able to update database as changes occur and generate report forms versus repeating the comprehensive survey process each year.

Timeline Initial Process:  Designee Training – 9/28/06 to 10/19/06  Offices complete survey – 2 Months from date of training  Project lead reviews and clarifies responses – 2 Months  Project lead inputs and/or imports data into database – Subsequent Process:  Offices update inventory database on a continuous basis  Designee Training – September/October each year

Important “Go Forward” Thoughts  Maintain awareness of record inventory and classification requirements  As more records are created, used, maintained or transmitted we must ensure they are added to the inventory, and properly classified and protected  Ensure we are only collecting data that we have the authority and need to collect  Plan for the protection of records during the system design phase

Intranet Access  Download Data Classification Documents

Hands-On Exercises  Part I –Records Management Practices  Part II – Records Inventory & Classification

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.