1 / 58

SharePoint Records (Information) Management

SharePoint Records (Information) Management. What works, what doesn’t?. Chris Caplinger RecordLion , Inc. Who am I?. And why am I talking about Records Management? Founder and President of Former CTO and co-founder of Co-author of “SharePoint 2010 ECM”. Session Overview.

miya
Download Presentation

SharePoint Records (Information) Management

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. SharePoint Records (Information) Management What works, what doesn’t? Chris Caplinger RecordLion, Inc.

  2. Who am I? And why am I talking about Records Management? Founder and President of Former CTO and co-founder of Co-author of “SharePoint 2010 ECM”

  3. Session Overview What we are going to discuss: • RIM Components • (Mostly) SharePoint 2013 On Premise and Online • What RIM features work and what are the issues What we will briefly discuss: • Microsoft Exchange What we are not going to discuss: • Rights Management • Technical details on the product (no demos) • Infrastructure design • Something else that’s likely important to you

  4. Why RIM • Business Benefits: • Define and Enforce compliance • Preserve a corporate “memory” • Fosters a professional image • Cost Benefits • Reduces storage costs • Reduces the effort • Reduces eDiscovery costs • IT Benefits • Continuity of RIM during disasters • Recovery of records, their history and audit information • Legal Benefits • Enforce compliance of standards and authorities • Demonstrate compliance to legal authorities

  5. The Cost of Obsolete Information • Data Growth Moore’s Law • Organizations double amount of data they store each year • Information Breach • The more data you keep, the greater the risk of information breach • Noise Data is useless if it can’t be analyzed • More data you keep - the harder it is to find • The more data you keep - the harder it becomes to analyze • Legal Costs Local company fined for old accounting data • Opponents discovering information that could have been destroyed can cost millions of dollars. • Error in obsolete data are prone to penalties

  6. 9 Big RIM Rocks • File Plan Management • Classification • Event based retention • Disposition • Auditing • Email Handling • Physical File Handling • Legal Holds • eDiscovery

  7. File Plan Managementand taxonomy “By failing to prepare, you are preparing to fail.” - Benjamin Franklin

  8. File Plan Overview A document or a way to document the retention schedules for all your information. • Your Records Manager should create and maintain your File Plan • You must publish your File Plan • File Plans should include a cutoff event, retention period and disposition information

  9. File Plan, what works? • Record Managers need File Plan Management • Use Excel Spreadsheet • Use SharePoint List • Taxonomy Structure • Location Based for Homogenous environments • Content Type Based for Heterogeneous environments

  10. Location Based Taxonomy One site (or site collection) for each business unit Human Resources Accounting Corporate Libraries for high level record types Employee Records Hiring Records Employee Benefits Folders for different cases Employees Candidates Benefit Year Only possible if similar information is stored together Find information by browsing

  11. Content Type Based Use Content Type Publishing • Central location for document types and policies • Helps ensure governance Find information By searching Crucial in heterogeneous environment

  12. Record Centers vs. In-Place

  13. File Plan Issues • Taxonomy is not generated from File Plan • Changing File Plan does not change taxonomy • No help in understanding regulations and laws

  14. Classification

  15. Classification Overview Classification assigns information to a specific class of content which should be related to policies. • Creates defensiblepolicy assignment • Simplifies searching • Reduces cost of eDiscovery

  16. Classification, what works? • Drop Off Libraries • Route content based on Metadata • Metadata foldering (great for handling case type files) Employee Records John Doe Jane Doe Fred Smith

  17. Classification, what works? • Location based classification • Upload from library • Drag and drop on browser • Drag and drop using Synced Libraries (also SkyDrive Pro)

  18. Classification Issues • No Automatic Document Classification • Metadata Extraction • Classification for Content Types • No Email Classification • Move to SharePoint? • Leave in Exchange?

  19. Retention

  20. Retention Overview Retention is a component of a file plan. Specifically it specifies how long after an event before disposition takes place. What drives retention periods? • Industry regulations • FINRA, SOx • Corporate policies • Local, state and federal laws • IRS, DOL File Plans should include a cutoff event, retention period and disposition information Barclays fined $3.75M

  21. Retention, what works? • Assigning policies per Content Type or Location Temptation • Site Retention • Close and Delete Sites based on rules Recommended

  22. Retention Issues • No Case Based Retention • Need to dispose all related document(ex. Employee Files, Tax Records, Loan Files) • No Event Based Retention • Required for cases • Date column retention is not enough • Custom policies require experienced developer

  23. Disposition

  24. Disposition Overview Disposition refers to the formal disposal of content from your organization. For disposition to work you need a… • File Plan • Review and Approval capabilities • Destruction and/or Transfer process

  25. Disposition, what works? • Deletion of content • Recycle Bin • Permanent (but not forensic) • Deletion of entire sites • Also Exchange Mailboxes • Transfer to other SharePoint locations

  26. Disposition Issues • No Review and Approval features • Custom workflow required • Forensic destruction • SQL data? • SkyDrive Pro Data? • Is this important to your organization?

  27. Auditing

  28. Auditing Overview • Needed for defensible RIM and eDiscovery • Needed to see if your system is working

  29. Auditing, what works? • Content Auditing

  30. Auditing Issues • No way to determine accuracy • Classification accuracy • Records declaration accuracy • Disposal accuracy • Difficult to impossible to analyze • Excel Export • No cubes or custom reporting

  31. Email

  32. SharePoint • Email records only • Not for active or non-record Emails • Moving records to SharePoint • Automatic (Third Party) • Drag and Drop (Limited) • Move in Outlook (Third Party)

  33. Exchange • Retention for all messages on a mailbox • 2010 and newer • Custom retention for specific locations • 2010 and newer • Message classification (2013 and Online) • In-Place Legal Holds • 2010 used deleted or modified dates • 2013 can use receive date • In-Place Archiving • Eliminates PST (Good for compliance)

  34. Exchange or SharePoint It will be difficult (or maybe impossible) to create the policies for your File Plan in Exchange • Determine how to identify records in Exchange • Move identified records to SharePoint • Create policies for non-records in Exchange Call to action…

  35. Physical Files

  36. Physical Files Overview • A safe dry place. • Are they secure? (Who’s viewing and copying?) • Do they have retention schedules? • How is it being destroyed. Do you need paper? • Quick ROI with scanning • Electronic creation is even better When you store paper consider…

  37. Physical Files, what works? • Organization • Libraries and folders can match physical locations • By Record Type • By Date (typically year) • Organizational/Departmental • Content Types • Rarely homogeneous • Use when possible

  38. Physical File Issues • No integration into commercial records centers • Iron Mountain • Recall • The File Room • No tracking • No auditing • Check In/Out not a solution • No file requests/fulfillment • Barcodes and Labels • Built for electronic documents

  39. Legal Holds

  40. Legal Holds Overview Suspending the normal disposition of information when it is reasonably expected. • Legal holds can protect you from spoliation fines or in some cases, incarceration • Legal holds should suspend the information management policies • Legal holds should lock information from further editing • Identifying the correct information is key to successful legal holds • Legal holds are required for present and future information

  41. Legal Holds, what works? Legal holds aren’t the problem… finding the right information is • Classification is key • eDiscovery Center • In-Place Holds (Records Center not necessary) • Record Centers

  42. eDiscovery

  43. eDiscovery Overview Disclosure required (usually by courts) of items in possession of one party to the opposing party during the course of legal action. Courts decide what is discoverable Best defensive tactics • Create and publish a File Plan • Create and publish information handling policies • Get key personnel on board • Be prepared to hold information before eDiscovery

  44. eDiscovery, what works? • eDiscovery Center • Site Collection • Single place to collect information • Automatically places Legal Holds • Ability to export data • Integration with Microsoft Exchange • Enterprise wide searching • Record Centers • Site Template • Basic search and hold

  45. eDiscovery Issues • What about your other information? • Unstructured Data can be difficult to search • Conversion to usable formats

  46. What about Standards?

More Related