Electronic Records Retention: A Pragmatic View  Or  “Ya’ Gotta Know When to Hold ‘em, and Know When to Fold ‘em” ©2008 – Learn Consulting.

Slides:

Advertisements

Similar presentations

A GIA is a contract between a surety company and a contractor (or subcontractor)/principal. A GIA is a standard, typical document in the construction.

Advertisements

Public Records Office Indiana Access to Public Records Act and Responding to Subpoenas Employee Training.

Module 2: Legal Aspects of Associations & Non-Profits Presented by the Southern Early Childhood Association.

What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.

Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.

Litigation Holds: Don’t Live in Fear of Spoliation Jason CISO – University of Connecticut October 30, 2014 Information Security Office.

Chapter 7: Key Process Areas for Level 2: Repeatable - Arvind Kabir Yateesh.

INFORMATION WITHOUT BORDERS CONFERENCE February 7, 2013 e-DISCOVERY AND INFORMATION MANAGEMENT.

ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.

INDIANA UNIVERSITY OFFICE OF THE VICE PRESIDENT AND GENERAL COUNSEL Indiana Access to Public Records Act (APRA) Training.

W W W. D I N S L A W. C O M E-Discovery and Document Retention Patrick W. Michael, Esq. Dinsmore & Shohl LLP 101 South Fifth Street Louisville, KY

E -nuff! : Practical Tips For Keeping s From Derailing Your Case Presented by Jerry L. Mitchell.

EDiscovery and Records Management. Records Management- Historical Perspective- Paper Historically- Paper was the “Corporate Memory” – a physical entity.

Environmental Management Systems An Overview With Practical Applications.

Allvision Computing By Legal For Legal 2007 Litigation Readiness Andrew Haslam.

1 Structuring your Information Management to Ensure Litigation Readiness Julian Ackert, Principal Washington DC John Forsyth, HBOS Edinburgh Andrew Haslam,

Developing a Records & Information Retention & Disposition Program:

Educause 2009 Data Administration Constituent Group November 5th, /5/20091Educause DASIG Constituent Group.

1 © Copyright 2008 EMC Corporation. All rights reserved. Litigation Response Planning: eDiscovery Best Practices Stephen O’Leary Sr. eDiscovery and Compliance.

ISO 9001 Interpretation : Exclusions

(name) (title) (agency/division) (date). Records Management is the systematic control of records through creation, receipt, maintenance, use and disposition.

Grant S. Cowan Information Management & eDiscovery Practice Group.

Information Security Compliance System Owner Training Richard Gadsden Information Security Office Office of the CIO – Information Services Sharon Knowles.

Page 1 Records Management – 911 Case Study on Information Retention and Retrievability Rachel Verdugo March 23, 2010 Williamsburg, VA.

SEC835 Database and Web application security Information Security Architecture.

The Key Process Areas for Level 2: Repeatable Ralph Covington David Wang.

Electronic Discovery refers to the discovery of electronic documents and data…including , web pages, word processing files, computer databases, and.

ISO 14001:2004, Environmental Management System

Mary Ott RIM Specialist NE SOS-Records Management Division March 20, 2012.

Managing the Retention of Electronic Records Ann Marie Przybyla Electronic Records Symposium Region 9, November 2007.

Chapter 5 Internal Control over Financial Reporting

ASSESSMENT TASK 5 PRESENTATION ON : THE LEGAL RESPONSIBILITIES. THE LEGAL RESPONSIBILITIES. THE LEVEL OF THE STAKEHOLDER. THE LEVEL OF THE STAKEHOLDER.

Module 9 Configuring Messaging Policy and Compliance.

EDiscovery, Records Management and Records Retention.

Part 6 – Special Legal Rights and Relationships Chapter 35 – Privacy Law Prepared by Michael Bozzo, Mohawk College © 2015 McGraw-Hill Ryerson Limited 34-1.

Records & Information Management (RIM) Risk: Is Your Company Exposed? March 19, 2013.

Archiving s. How to Manage Auto-Archive in Outlook Your Microsoft Outlook mailbox grows as you create and receive items. To manage the space.

PRIVACY, SECURITY & ID THEFT PREVENTION - TIPS FOR THE VIGILANT BUSINESS - SMALL BUSINESS & ECONOMIC DEVELOPMENT FORUM October 21, WITH THANKS TO.

2009 CHANGES IN CALIFORNIA DISCOVERY RULES The California Electronic Discovery Act Batya Swenson E-discovery Task Force

Dangerous Documents. Legal Compliances State and federal laws Contractual obligations Subject to an affirmative legal duty to establish and maintain certain.

Records Management Is Not an Option Anymore

M a k i n g w o r k e r s ’ c o m p w o r k ® Content Management & Records Retention “A RIM Perspective” Nancy M. Maglothin, Records and Information Manager.

Electronic Records Management: A New Understanding of Policy, Compliance, and Discovery Robert J. Sobie, Ph.D. Director Information Systems Department.

E-records and the law John D. Gregory Policy Division Ministry of the Attorney General May 14, 2007.

CORPORATE RECORDS RETENTION POLICY TRAINING By: Diana C. Toman, Corporate Counsel & Assistant Secretary.

ILTA – Insight 2007 E-Disclosure --Preparing for Compliance-- Moderator: Sally Gonzalez, Director, Navigant Consulting, Inc. Panelists: Oz Benamram, Director.

Information and Records Management INFM 718X/LBSC 708X Seminar on E-Discovery.

Supervision SICOR Securities, Inc.. Why? NASD 3110 requires the firm to “…establish and maintain a system to supervise the activities of each registered.

1 Privacy Plan of Action © HIPAA Pros 2002 All rights reserved.

SCHOOLS FINANCE OFFICERS MEETINGS Records Management, “Paper-Lite” Environments and Procedures when a school closes Elizabeth Barber.

All Employee Basic Records Management Training. Training Overview 1.Training Objectives 2.Clark County RIM Program 3.Key Concepts 4.Employee Responsibilities.

ISO Registration Common Areas of Nonconformances.

Indiana’s Access to Public Records Act Heather Willis Neal Indiana Public Access Counselor Presented to Indiana State Department of Health August 21, 2008.

Record Retention to Manage Risk F. Jay Meyer Vice President & Senior Attorney TD Banknorth, N.A. Portland, Maine.

ISO DOCUMENT CONTROL. ISO Environmental Management Systems2 Lesson Learning Goals At the end of this lesson you should be able to: 

1 PRESERVATION: E-Discovery Marketfare Annunciation, LLC, et al. v. United Fire &Casualty Insurance Co.

University Retention Schedule Training. Introduction to the University Retention Schedule.

Exercising, Maintaining and Reviewing BCM Arrangements ERMAN TASKIN

Visit us at E mail: Tele:

Electronic Records Management Alan Cameron Records Management Consultant.

Retention Breakout Session

Indiana Access to Public Records Act (APRA) Training

Leveraging the Data Map – A Case Study November 15, 2016

Red Flags Rule An Introduction County College of Morris

Litigation Holds: Don’t Live in Fear of Spoliation

RECORDS AND INFORMATION

Chapter 8 Developing an Effective Ethics Program

Information Governance Part 2

Neopay Practical Guides #2 PSD2 (Should I be worried?)

Presentation transcript:

Electronic Records Retention: A Pragmatic View  Or  “Ya’ Gotta Know When to Hold ‘em, and Know When to Fold ‘em” ©2008 – Learn Consulting

Disclaimer Learn Consulting Does Not Provide Legal Advice. If you are in Need of Legal Advice, Consult a Competent Attorney. © 2008 – Learn Consulting

Goals of an ERR Policy Meet Business Objectives and Requirements Assure Statutory, Regulatory, and Judicial Compliance Maintain Cost Effective Business Practices © 2008 – Learn Consulting

Discovery BlackMail! Avoid a Situation Where It Becomes Cheaper to Settle Litigation than to Comply with Requirements of Discovery! © 2008 – Learn Consulting

Known When to Hold 'Em Last May, Wall Street was stunned when a jury ordered white-shoe firm Morgan Stanley to pay financier Ron Perelman $1.58 billion for the bank's role in a botched deal. Almost as stunning as the award: the high-profile case turned on Morgan Stanley's failure to turn over requested electronic documents. © 2008 – Learn Consulting (Source: CFO Magazine)

Known When to Hold 'Em The average U.S. corporation is currently contending with 37 lawsuits — and, increasingly, litigants are demanding to see defendants' digital documents. © 2008 – Learn Consulting (Source: CFO Magazine)

Known When to Hold 'Em Only 57 percent of U.S. businesses have records-retention policies. Many businesses craft retention policies that cover memos, Word files, and the like, but not , instant messages, or other "unstructured" data. The convergence of mobile phones with computers will cause even more problems. © 2008 – Learn Consulting (Source: CFO Magazine

You Don’t Have to Manage What You Never Created! If There Isn’t a Reasonable Business Need to Create an ER, Don’t Create It! © 2008 – Learn Consulting

You Don’t Have to Manage What You Never Created! Implement and Enforce Appropriate E- Mail, IM, Text Message, etc., Policies and Procedures that Discourage the Creation of Superfluous ERs that are Potentially Dangerous, Costly to Manage and Store, and Totally Unnecessary! © 2008 – Learn Consulting

You Don’t Have to Manage What You Never Created! Discourage, Control and/or Prohibit Personal Use of Corporate Electronic Messaging Technologies! Manage and Control Use of Outside Accounts by Employees. Axiom: Lives Forever!! – It is Very Difficult, If Not Impossible, to Determine Where the May Have been Forwarded and/or Stored! © 2008 – Learn Consulting

Disaster Recovery ERR Must Be Credibly Included in Disaster Recovery Strategies, Plans, Processes and Policy. A Judge May Be Less Than Understanding About a Hard Drive Crash or Virus Attack! © 2008 – Learn Consulting

What About Encryption? Make Sure Your Policy Addresses the Ability to Recover Archived Records That Are Encrypted!! © 2008 – Learn Consulting

What About Encryption? Make Sure You Have the Keys to Encrypted Records!! Maintain an Encryption Policy! © 2008 – Learn Consulting

Business Imperatives Process and consistency will be key when retaining electronic records. In order for the enterprise to verify the authenticity and origin of an electronic record, it must have in place a system to capture and catalog identifying metadata. Enterprises will need to factor into any electronic records retention policy any outsourcing agreements in which they participate. © 2008 – Learn Consulting (Source: RFG Research)

Bottom Line IT executives should ensure that their e-records retention policy is comprehensive, well documented, and covers issues such as outsourced arrangements and non-business system use. IT executives should investigate the effect of various business arrangements and procedures in light of their formulation of this policy. Furthermore IT executives should validate that the procedures established as a result of the policy effectively address all the tenets of the policy. This will help to ensure that the enterprise is not left exposed in times of investigation or litigation, should such a scenario arise. © 2008 – Learn Consulting (Source: RFG Research)

Honest, Your Honor! The Courts currently appear to allow significant discretion when it comes to ERR, Provided the Policy is: – Reasonable – Consistent, and – Rigorously Enforced © 2008 – Learn Consulting

Reasonable Policy Is Written, Widely Promulgated, and Reflects Adequate Training of Affected Personnel Meets Statutory, Regulatory and Judicial Requirements (including Provisions for Placing Legal Holds on Documents) © 2008 – Learn Consulting

Reasonable Promotes Reasonable and Understandable Business Objectives and Requirements Is Inclusive and Encompassing © 2008 – Learn Consulting

Consistent Codified at the Highest Level of the Organization No Exceptions (or Exceptions are Rigorously Handled within a Documented Process within the Policy) © 2008 – Learn Consulting

Consistent Enduring; e.g., Not Implemented or Changed as the Result of (or in Temporal Proximity to) Anticipated or Actual Litigation Specific and Organization-Wide © 2008 – Learn Consulting

Rigorously Enforced Ultimate Responsibility and Authority for Implementation and Enforcement Is Vested in a Specific Individual (i.e., Not a Position, Organizational Unit, etc.) There is a Clear Record of Compliance Over an Extended Period of Time © 2008 – Learn Consulting

Assure You Can Read Archived Data Much of NASA’s Early Space Exploration Data Is Irrecoverable. Must Also Archive Software Used To Recover Data. © 2008 – Learn Consulting (Source: Ohio Historical Society)

“Know When to Fold ‘em” Kill Expired Records!! …and Kill them Again! Make Certain They Are Dead!! Wounded Records Will Come Back to Haunt You!! © 2008 – Learn Consulting

Questions/Discussion??