Gimmal Blog

Read the latest thought leadership and industry news from the experts at Gimmal!

All Posts

A Practical Approach to SharePoint Governance

According to a recent survey conducted by, 83% of organizations that use Microsoft SharePoint use it for document management. The survey also found that these same organizations and many others are using SharePoint in many other ways such as publishing, social networking and running apps. As expected, SharePoint is being used as both a repository to store documents and place for collaboration.

Despite the many functions SharePoint has to offer, many organizations are still struggling to govern information stored in this multi-functional repository.

A PPT (People, Process, Technology) strategy has been tossed around by industry experts and makes a ton sense in solving the SharePoint sprawl.

Let’s discuss how applying this strategy to your SharePoint governance aids in the proper records management strategy.


First, you must engage key stakeholders to bring the right people to the table. Key stakeholders can include: Information Technology, Records Management, Privacy, Security, Legal, Human Resources, Finance, etc.

Next, you must understand how people currently use SharePoint in your organization. Some of the ways to gather this type of information include: interviews, surveys and possibly even informational lunch and learn sessions. In our experience, the latter has worked well because users are in a relaxed setting and are willing to share their ideas and experiences.

However, much will depend on the culture of the organization to decide what will work best; a hybrid approach will mostly likely prove to be most successful. In the end the choice is yours.


Once you have been successful and have brought the right people to the table, the next step is to decide if the current business process actually works. In other words, is your current process meeting the goals of the business? For example, suppose during one of the interviews with your legal department, you find out SharePoint is used to transfer data to other counsel. Why? Because it’s easier to share information using a repository like SharePoint rather than by email, due to file size restrictions and limits.

However, you also find out that each user operates a bit differently, and as a result, duplicate data is scattered across multiple sites without the ability to apply governance policies. This process must be dealt with immediately and the existing process will need to be amended.

At this point, an organization must decide on a process that is aligned with the business goals. Please keep in mind, the new process should not make it harder for users to do their jobs. If it does, your efforts will fail.


After you have engaged with the right people, evaluated processes, and spent time refining the processes, you must leverage technology to ensure the long-term success of the new strategy.

Organizations have three options:

  • Utilize existing technology
  • Purchase new technology
  • A hybrid approach – combination of existing and new technology

When trying to decide which option to choose, it’s important to be sure that the selected technology for your SharePoint governance continues to align with your business process and overall goals.

Suppose that after much analysis, it’s decided that the functionality of your existing technology can longer support the requirements of the business process and goals, so the organization chooses to purchase new technology. Perhaps a software application is required to enforce information governance policies. Under no circumstance should the process change because of the purchased technology. In order to be successful, the technology must be able to properly enforce policies and grow with the business. Not the other way around. It’s simply not practical and will once again lead to failure.

At Gimmal, we’re confident that if organizations follow this three-step approach (People, Process, Technology) their SharePoint governance environment will no longer be considered a black hole, but a secure repository that is trusted by everyone in the organization.

Posted by Shawn Cosby

Related Posts

Why Should Records Management be Important to You

Why should an organization care about records management? When users throughout all departments are creating new records without a thought to how they are cataloged or tagged, the sprawl of records can become a real threat. Unstructured data can lead to compliance issues for highly regulated industries. When proper records management isn’t a top priority, content that should have been disposed of for security purposes is left vulnerable for anyone to find and distribute.  

Creating Compliance in Chaos: A Consultant's Story

Records and Information Management (RIM) is constantly changing and evolving as record managers begin to realize the benefits of automation in their daily operations. In my 6 years of consulting, I have seen everything from heavily manual business processes to automated document management solutions.  Even as time goes by, information professionals continue to face the long-standing hardship of trying to get end users to comply with either internal or external regulations when it comes to records management.  Lately, there has been an apparent shift from ridged business centric solutions to end user centric solutions. 

Gimmal at ARMA International InfoCon 2019

Once a year, members in the records management community come together for ARMA’s annual conference to discuss the latest advancements and best practices for modern information managers.  ARMA, the global authority of information management and governance, hosted this year’s conference, ARMA InfoCon, in Nashville, TN. While attendees were not in the typical “record” industry that Nashville is known for, the location called for a great mix of music and information management knowledge.