- SOLUTIONS & SERVICES
Being tasked with putting together a plan for any type of information governance solution for your organization, whether addressing privacy, records management, eDiscovery or another concern can seem daunting. We understand the time it takes to search the internet, go to trade shows and comb through vendor marketing collateral. What really matters is the questions you need to ask after the proposals have been submitted and demonstrations completed. And, the answers should be clear, concise and compelling. Below are 10 answer to some of the all-important questions.
Managing information thoroughly seems so logical, but it is one of the most commonly overlooked aspects of information governance or records management. Below are three primary approaches that vendors take:
A is an appealing approach because it is extremely flexible and can fit into nearly all future environments, systems and upgrades. Plus, it often is associated with higher user adoption because users continue with their current processes and retention/disposition is automated behind the scenes.
B often requires significant design, implementation and cost. Similarly, it often leaves information that resides outside the central repository unmanaged.
C is a similar approach to B, but it can potentially leverage current technology. Still, it has the shortcomings of requiring storage in specific locations and leaves other information unmanaged.
It is important to understand what is required in terms of moving information from one location to another. The migration process can consume extensive time, cost and risk.
Further, when a system is upgraded, some software vendors need to adjust the file plan accordingly so it can be applied to records.
Clearly, there needs to be a mechanism to place information on hold. However, once the initial hold is created, it is vital that the solution automatically adds newly created information to an existing hold(s).
An information governance solution is only as good as the adoption rate. End user adoption is directly affected by system changes, cumbersome processes and confusing instructions. Fully understand the process end users will need to adopt. New technology and/or processes may be needed. Yet, the new technology should not drive the new process. The new technology should complement the process.
Increasingly important is the ability to govern access to sensitive information. The solution should be able to regulate access, identify locations, automatically protect and dispose of sensitive information appropriately.
Some records should be kept unchanged during their lifecycle. Understand if this functionality exists and if information needs to be moved to a specific location to accomplish this goal.
Obviously the solution has to fit into budgets. Take the time to understand the total cost of a solution. The total cost of ownership (TCO) could include software, hardware, third party systems, services (installation, configuration, assessments and migrations). When comparing multiple solutions, TCO can be tough to compare. Dig the vendors for true and total cost of their information governance solution.
Don’t ignore your other systems when designing your information governance practice. Each of these system is not only a potential location for redundant, obsolete and trivial information (ROT), they could also be the key to triggering the right actions to determine security, privacy or retention policies.
The time spent on designing, implementing and maintaining a records management solution is time away from other areas. With that in mind, fully understand how a new solution impacts time commitment.
Time is money. Not only does the time commitment equal opportunity cost, it can equal actual hard, quantifiable dollars when being charged by a vendor. Know what to expect before committing to an overly complicated project.
A solution with plenty of customization options can be handy because future reporting needs may change and it is difficult to know how. Regulations may alter the way you want to track or execute records management and disposition. If called into question, the assurance of sound documentation outlining the retention/disposition process can be critical.