Electronic Records Management: Are You Sure You Want to Save That?

By Ian Springsteel
Sat, September 15, 2001

CIO — Think you have a good electronic records management strategy? Think again. Sure, you back up your data rigorously. You save everything you can, whether it’s product specs or sales reports, in case the original files are damaged. But such practices, say electronic records experts, can be dangerous. To manage electronic files right, you need to take into account what’s in those files and decide how long to save them.

Few companies have addressed this issue head-on. After all, "records systems" smacks of too much dreary library science to arouse immediate interest. But CIOs are finding two issues that are making them pay attention. First and foremost are lawsuits. The files on servers and backup tapes are a common source of legal angst and expense when they are subpoenaed by plaintiffs’ attorneys. If such files aren’t organized, discovery costs can reach millions of dollars. Second, companies are creating digital documents that need to be saved for many years. Current systems and file formats may not be around then, creating the need for long-term digital file storage. To knock off both concerns at once, forward-looking CIOs are installing electronic records management systems.

Human versions of such systems have been used for years at most companies to track paper documents. Corporate records managers?professional experts in organizing and preserving company documents?help determine what files to keep, for how long, based on both legal requirements and any business need for them. By this plan, usually called a retention schedule, documents get filed according to predetermined categories

Increasingly, CIOs?working with records managers as well as their corporate legal departments?are applying those processes to digital documents, most often as part of a document management or knowledge management system. Using electronic record-keeping software?a type of middleware?CIOs can turn databases of documents into legally defensible records management systems.

See You in Court

Most CIOs get their first exposure to electronic records management at the wrong end of a lawsuit. That’s when Robert Rickert, CIO of KeyCorp, a multistate bank based in Cleveland, usually hears about it. "Electronic records issues come up probably monthly," says Rickert. KeyCorp holds records on $87 billion in assets from hundreds of thousands of customers, which are both consumers and businesses.

KeyCorp keeps hundreds of thousands of documents on hand to satisfy government regulations that govern those assets. Most records are on paper, stored away in boxes. But the company also has lots of unofficial documents, including correspondence, that it keeps on various LANs that are managed by local offices and departments. Rickert knows that all of that information can be subpoenaed by plaintiffs suing the bank. He doesn’t say how much retrieving the data costs his company, but legal experts note the costs can add up. Every backup tape that a plaintiff suspects contains incriminating data costs about $1,000 to process, says John Jessen, president and CEO of Seattle-based Electronic Evidence Discovery, which helps companies comply with legal discovery orders.

1 2 3 4 next page »

You are here: Technology Topics » Security » News Feature

Most Recent Security Stories

White Papers »

Overcome Top 7 Admin Challenges of Active Directory

As Active Directory's role in the enterprise has drastically increased, so has the need to secure the data. Gain insight on creating repeatable, enforceable processes that reduces administrative overhead and enables robust, customizable reporting and auditing capabilities. Brought to you by NetIQ.

Top Solutions and Tools to Prevent Devastating Malware

Custom malware frequently goes undetected. According to Forrester Research, the best way to reduce risk of breach is to deploy file integrity monitoring (FIM) tools that provide immediate alerts. This white paper has been brought to you by NetIQ, the leader in solving complex IT challenges.

Insiders Can Ruin Your Company. Take Action.

Did you know that 80 percent of threats to an organization come from the inside? The threat from insiders is often overlooked in organizations worldwide. This white paper from NetIQ, discusses key technology solutions that help to prevent and detect insider threats.

X-Ray of the PCI Process-4 Proactive Steps

This white paper from Forrester Research Inc., helps break PCI into understandable components. Security and risk professionals will gain knowledge and insight into creating a compliant and secure IT environment. Follow these four proactive steps now before your next audit. Brought to you by NetIQ.

Streamline Compliance and Increase ROI

Streamline, simplify, and automate compliance related activities; especially those that impact multiple business units. This white paper from NetIQ, outlines solutions that will help your business gain the maximum return on investment possible while aligning your compliance programs.

Identity Governance: The Business Imperatives

This white paper describes the business challenges and opportunities that are driving interest in Identity Governance while discussing considerations your organization should make to help achieve project success.

Webcasts »

Gartner Next Generation Network IPS Webcast

Learn how Gartner's criteria for next generation IPS helps organizations achieve effective threat prevention despite changes in network communications, new applications, and changes in the threat landscape.

McAfee Continuous Compliance

3 minute Flash video - overview of the need for and value of Configuration Control.

Taming the Wild West: How to build a strong cloud security strategy

Cloud deployments are playing a critical role in propelling innovation for many companies. At the same time security has become the #1 one of the top concerns for IT and business leaders as they migrate into the cloud. In this webinar, learn from Accenture discusses how to recast the cloud as a "fresh chance to rethink your approach to security."

Virtualization Success is a Team Effort

As greater numbers of datacenter servers transition from the physical to the virtual world, the components of virtualization success come to the fore. What scores of organizations have discovered is that success is derived from an optimal pairing of the right software platform with the right hardware platform.

Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on VMware

Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn about VMware customer, Navicure, and their experiences testing and evaluating the recovery manager, their progress in implementing it in their environment and their advice other customers considering using vCenter.

Quantifying the Business Value of VMware View - Webcast

Many enterprises have discovered that the use of virtualization to support desktop workloads creates a range of significant benefits. These benefits include price efficiencies, improved IT management and greater agility and choice for end users.

This VMware sponsored webcast with IDC will provide both quantitative measurement of the business value -- defined as the expected ROI -- and qualitative analysis associated with the use of VMware View™. IDC will also provide an analysis of the View Composer and ThinApp™ features of VMware View, including the business value of these solutions and an overview of how they work.

Attend this webcast to learn about:
- Challenges and barriers that might impede the adoption of desktop virtualization
- Navigating roadblocks to facilitate a strategic implementation
- Optimizing qualitative and quantitative benefits to IT and your business

Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter