Managing a records retention and disposition program is one of the chronic challenges for any organization in the information age. Businesses and government agencies of all sizes are seeking to implement or improve these programs due to increased risk of cybercrime and data breaches, the complexities of complying with a variety of data privacy laws and regulations worldwide that dictate how long personally identifiable data can be retained, and the desire to reduce their data footprint in order to cut back on their storage expenses however possible.
At this year’s annual ARMA Live! Conference in Anaheim, we conducted an informal survey of the 300+ visitors to our booth, asking a single question: “What is your greatest information governance challenge today?” We received a variety of responses including:
As law firms recognize the growing importance of an information governance (IG) strategy, they are beginning to think about how they can transform traditional records management (RM) staff into true IG professionals. This shift, which is driven by increasing regulatory demands and pressure from clients for stronger security, is making firms realize that IG requires a much broader set of skills than records management.
Over the course of this IG blog series, we have examined how the IG professional can align their IG program to directly support the mission and vision of their organization. Several case studies helped illustrate how this alignment allows the IG / RIM professional to contribute to the bottom line in meaningful ways. In this post, I am taking a deeper dive into a very specific challenge that most multinational organizations face today: compliance with the soon-to-be-effective GDPR imperative. During our annual roundtable events, we surveyed clients regarding their level of engagement with their organizations’ GDPR initiatives, and learned that a surprising 45% said they had minimal to no involvement at all.
In today’s world of never-ending data growth, privacy breaches and cyber-attacks, and growing legal and regulatory oversight, an IG professional’s job is challenging enough. But when an organization acquires or divests an entity or even a product line, the IG professional faces an additional set of challenges as new data may need to be integrated into systems and applications, existing data may need to be segregated and separated, and other data may require sharing or redacting.
As data continues to grow uncontrollably in every organization today, the need for comprehensive information governance becomes increasingly apparent. Defining the rules and operating needs that govern an organization’s data, and then acting on those rules through defensible disposition, reduces the risk and cost of unnecessary storage and e-Discovery, as well as reducing the damage of a potential cyber-attack.
High-profile security breaches, the ever-growing volume of corporate data and increasingly complex regulatory and technical environments emphasize the need for enhanced enterprise-wide information governance (IG). The mission of many corporate law departments is to help protect their organizations from unnecessary risk and exposure. Therefore, many corporate law departments are facing increased pressure to help reduce the risk that is inherent in unmanaged and uncontrolled information.
Evolving case law, new proposed rules and technology advances provided no shortage of complex topics at this year’s conference. The Annual Georgetown Advanced eDiscovery Institute never fails to deliver engaging topics that are top of mind for lawyers and technologists practicing in the electronic discovery realm. The industry has experienced a number of innovation milestones over the past several years as it has adapted to the complexities presented by discovering relevant evidence in this ever-changing electronic age.