Email archiving solutions alone do not achieve recorkeeping compliance

Reviews
Shared by: XIAOHUI MA
Categories
Tags
Stats
views:
4
rating:
not rated
reviews:
0
posted:
10/29/2009
language:
pages:
0
Public Records Brief A RECORDKEEPING UPDATE FOR QUEENSLAND PUBLIC AUTHORITIES – ISSUED SEPTEMBER 2007 This Public Records Brief has been developed in consultation with Crown Law i to provide advice to public authorities about the risks associated with relying on email archiving systems to achieve recordkeeping compliance. Email archiving solutions alone do not achieve recordkeeping compliance There is an increasing trend for public authorities to consider implementing commercial email archiving solutions as a method of addressing a range of email management challenges. However, email archiving solutions alone do not achieve compliance with the recordkeeping requirements under the Public Records Act 2002 (the Act) or Information Standard 40: Recordkeeping (IS40). Emails that are public records need to be captured into an identifiable recordkeeping system, such as an Electronic Document and Records Management System (eDRMS), or the agency’s approved paper-based recordkeeping system. Managing emails as public records benefits public authorities by providing evidence of the actions, decisions and communications that support a transparent and accountable government. Good recordkeeping systems, practices and programs support and facilitate effective and efficient management of government business and service delivery. What are email archiving solutions? An email archiving solution is the software product which is installed to enable the capture and transfer of copies of all emails from a public authority’s email server to a separate storage location. There are a number of factors driving the consideration of email archiving solutions including the need to reduce the: burden on email servers due to the growing volume of emails; cost of storing and maintaining emails; cost of retrieving deleted emails; risk of not being able to retrieve an email quickly for a legal proceeding; and risk of loss of emails due to system failure. Email archiving solutions offer a variety of functions including the ability for public authorities to establish business rules for how the system might operate. Some of the most common features being offered include the: automated capture of all emails being sent and received in a way that doesn’t impede the delivery of emails to end-users and ensures an audit trail; filtering of incoming emails (i.e. for spam); automated indexing of emails according to key fields such as sender, subject and date; capability for key word searches in the text of all emails and attachments; ability to restrict access to the email storage system to certain users (e.g. administrators); and protection of the integrity and authenticity of emails retained in storage. Some vendors may promote email archiving solutions as a way to achieve compliance with regulatory requirements in other jurisdictions, for example, the USA’s Sarbanes Oxley Act 2002. American legislation does not apply to Queensland public authorities, except in some instances where they are transacting business in the USA. Achieving compliance with Queensland legislative and regulatory requirements IS40 provides the principles for managing public records in Queensland and is designed to assist public authorities to meet their recordkeeping obligations under the Act. It includes seven principles that are mandatory for the purposes of achieving best practice recordkeeping across Queensland’s public sector, in order to comply with requirements of section 7 of the Act for public authorities to keep “full and accurate records”. Email archiving solutions alone do not provide an integrated system for appropriately capturing, managing, classifying and providing access to public records over time. Such systems do not provide the appropriate functionality to comply with the principles of IS40 for compliant and accountable recordkeeping. Recordkeeping function Capture Compliance issues Email archiving systems capture all email indiscriminately, regardless of whether they are public records or not. Only public records need to be captured and managed in recordkeeping systems. Email archiving systems do not comprehensively document the complete range of business activities undertaken by a public authority. Automatic classification does not reliably link emails to their business context because related non-email records are stored elsewhere, for example, in the public authority’s records management system. Emails stored in an email archiving system may not be able to be categorised according to a business classification scheme. Emails stored in an email archiving system may be missing the essential recordkeeping metadata required to preserve their context and make them useable as public records. Accessibility The accessibility of emails is reduced as generally only the sender, receiver and administrator are aware an email has been created and can access and retrieve it from the “email archive”. In comparison, emails that are public records and captured into an identifiable recordkeeping system can be accessible by other staff in accordance with security settings and permissions. As email archiving solutions capture all emails, including personal emails, issues relating to privacy may arise if widespread access is permitted. Retention and disposal Some email archiving solutions have the functionality to automatically assign retention periods according to business rules. However, while this functionality is evolving, there is still a significant risk that automatic deletion of emails by the system could result in the unauthorised disposal of public records. The system must be able to manage emails appropriately as public records by assigning retention periods in accordance with an approved retention and disposal schedule. Without this functionality, it is likely that the emails in the email archiving system may need to be retained on a permanent basis. Alternatively, the emails could be migrated later to a recordkeeping system where the retention requirements could be assigned, greatly increasing the costs associated with email management. Management and organisation Conclusion Although email archiving solutions may offer some benefits to public authorities, they are not recordkeeping systems and will not assist public authorities to achieve recordkeeping compliance. Queensland State Archives has developed a policy and guideline Managing Emails that are Public Records and a number of Public Records Briefs to further assist Queensland public authorities to manage emails that are public records. This information is available on the Queensland State Archives website at www.archives.qld.gov.au. For more detailed guidance on the management of public records visit the Queensland State Archives’ website at www.archives.qld.gov.au, or contact staff from the Policy and Research Unit on telephone: (07) 3131 7777 or email: info@archives.qld.gov.au. i Disclaimer: While Crown Law has provided input into this Public Records Brief, the contents do not constitute legal advice. Public authorities may wish to seek additional legal advice on the application of the legislation to their operations.

Related docs
data archiving solutions
Views: 158  |  Downloads: 7
ZL Complaint - Email Archiving for Exchange & Lotus Notes
Views: 0  |  Downloads: 0
The Archiving Database
Views: 21  |  Downloads: 4
ARCHIVING TECHNOLOGIES
Views: 1  |  Downloads: 1
Data management and archiving
Views: 3  |  Downloads: 0
Email Archiving
Views: 26  |  Downloads: 1
Is-There-A-Return-on-Investment-for-E-mail-Archiving
Views: 4  |  Downloads: 0
Email Archiving Brief - Template
Views: 45  |  Downloads: 3
Email Backup and Archiving - Differences and Explanations
Views: 0  |  Downloads: 0
MessageLabs_Best_Practices_Email_Archiving
Views: 36  |  Downloads: 1
Data Management and Archiving Plan
Views: 4  |  Downloads: 1
premium docs
California Member-Managed LLC Operating Agreement$19.95
Acknowledgment of Independent Contractor$8.95
Artist-Agent Engagement Agreement$8.95
Website Design Non-Disclosure$14.95
Employee Handbook for Company$39.95
Limited Liability Partnership Agreement$29.95
Office Lease Agreement$8.95
Other docs by XIAOHUI MA
Group Fitness Schedule March _March 1st – April 5th_ Monday
Views: 261  |  Downloads: 0
Group Fitness Schedule April _April 6th – May 3rd_ Monday Tuesday
Views: 104  |  Downloads: 0
Group Exercise Schedule - ymcadcorg
Views: 106  |  Downloads: 0
FT 240
Views: 95  |  Downloads: 0
Fitness-Pilates for Pregnancy Handout
Views: 103  |  Downloads: 1
Fitness-Pilates Exercises
Views: 104  |  Downloads: 0
Fitness _ Pilates Instructor Resume WORD Document - in es sens
Views: 132  |  Downloads: 0
FINAL PARADE LINEUP 2006 - City Of Belvedere
Views: 101  |  Downloads: 0
Fall 2009 Drop Dates AND COURSE INFORMATION - College of the Desert
Views: 130  |  Downloads: 0
Exercise for Life
Views: 100  |  Downloads: 0
Dowling discusses cancer_ recovery through Pilates
Views: 97  |  Downloads: 0
Directory - cmslgflnet - LGfL
Views: 128  |  Downloads: 0
Cstaging49E4DD1F-35F0-08D938in49E4DD1F-35F0-08D938jpg
Views: 99  |  Downloads: 0
CSP Student Representatives Conference
Views: 120  |  Downloads: 0
Covenant Wellness Center Schedule
Views: 146  |  Downloads: 0