We are currently reviewing this one aswell.
At the moment RM and compliance sit together, as they are in the same
service. Our FoI/DPA officer is the County Archivist and Records Management
falls under the remit of the Archives Service. We have a Records Manager,
and a Records Officer both full time posts. However, we also have a network
of DP/FoI officers in services to deal with requests for information and
liaise with the county archivist.
We also have an IT Security Manager and IT Data Manager who are in County
IT, 2 Information Managers in Environment Department and various other bits
of Information Management roles across the county.
We are currently reviewing this in light of the "Transforming Cheshire"
initiative so that we create an Information Management core consisting of
the following:
Head of IM, 2 Information Managers, 0.5fte Account Manager, and 2 compliance
people (legislative and 15489 compliance). These will be the designers of
the IM strategic architecture - both technical and business, developers of
policy etc. I see no value in separating the roles as the cross over is too
great, you cannot have effective compliance if you have no RM hence the
inclusion of the S46 code of practice for FoI.
The operational side of IM and RM will then be delivered through a "shared
service" operation who will deliver what the core have designed.
All comments gratefully accepted - this is still in the planning stages and
we have yet to go for member endorsement but reflect our current thoughts on
how best to deliver and improve Records and Information Management for the
authority
Paula
-----Original Message-----
From: The UK Records Management mailing list
[mailto:[log in to unmask]] On Behalf Of Donald Henderson
Sent: 01 August 2006 13:25
To: [log in to unmask]
Subject: Re: Where Records Management and Compliance Sit, together or apart
- You decide!
I'm always interested in this debate since we appear to be relatively unique
having brought together not only DP, FOI, and RM but also Information
Security into one team.
I have heard it said that Information Security was brought into existence by
the original DPA, and is of course the subject of the 7th principle, yet
everyone always seem to separate the two - probably because Information
Security is consider a "technical" subject.
I see the relationship between Information Security and the other parts of
Information Management as quite strong. They are all interested in who has
access to information and the provision of correct information when it is
required - the three basic principles of Information Security.
Donald Henderson
Information Compliance Manager
Perth & Kinross Council
-----Original Message-----
From: The UK Records Management mailing list
[mailto:[log in to unmask]] On Behalf Of Bradshaw, Phillip
Sent: 01 August 2006 12:07
To: [log in to unmask]
Subject: Re: Where Records Management and Compliance Sit, together or apart
- You decide!
Taking Martin's point I was not in my earlier post suggesting that I would
want my Records Manager to handle FOI or DPA requests. Far from it. They are
however part of the Information Management team. I suppose the fundamental
issue is that we simply do not regard FOI / EIR as a compliance issue (or at
least most of us try not to ) but simply as good information management with
the ultimate (not achievable of course) aim of having zero requests because
all information is proactively published. As it is not a compliance issue
there is nothing to separate.
-----Original Message-----
From: The UK Records Management mailing list
[mailto:[log in to unmask]] On Behalf Of Martin Sanderson
Sent: 01 August 2006 11:35
To: [log in to unmask]
Subject: Re: Where Records Management and Compliance Sit, together or apart
- You decide!
Dear Paul
Although there is no right or wrong answer to your proposition my personal
opinion is that records management and compliance should be kept separate
(but obviously with close relations).
My reason for this is that linking RM and compliance creates too narrow a
scope and management/public perception for RM. RM has much more to offer in
helping an organization/enterprise in realizing its business goals e.g.
customer responsiveness, interoperability, knowledge sharing, support for
innovation, value from technology.
Although compliance has been a springboard for RM in many organizations over
recent years there is a danger that if records managers take on the yoke of
compliance it could hinder their ability to take on the much bigger role and
dilute the real contribution they can make.
Regards
Martin
.. Linking the two
-----Original Message-----
From: The UK Records Management mailing list
[mailto:[log in to unmask]] On Behalf Of Paul Dodgson
Sent: 01 August 2006 10:56
To: [log in to unmask]
Subject: Where Records Management and Compliance Sit, together or apart
- You decide!
Dear All,
There exists in my authority a proposal to separate compliance (FOI, DPA
etc) from Records Management. My personal view is that there is much merit
in combining the two given the tight relationship between them. I regard the
roles as complimentary; to have good records management practices is to
provide good compliance. I also think that Section 46 of FOI establishes a
clear relationship.
I would be interested to learn from colleagues as to whether or not they
would support this joined up function and any additional views you may have.
As this issue hits both lists I have sent to both, apols for any duplicate
posts for those on both lists.
Regards
Paul
_______________________________________________________________________
Leicestershire County Council - rated a 'four-star' council by the Audit
Commission
_______________________________________________________________________
This e-mail and any files transmitted with it are confidential. If you are
not the intended recipient, any reading, printing, storage, disclosure,
copying or any other action taken in respect of this e-mail is prohibited
and may be unlawful. If you are not the intended recipient, please notify
the sender immediately by using the reply function and then permanently
delete what you have received.
Incoming and outgoing e-mail messages are routinely monitored for compliance
with Leicestershire County Council's policy on the use of
electronic communications. The contents of e-mails may have to be
disclosed to a request under the Data Protection Act 1998 and the Freedom of
Information Act 2000.
The views expressed by the author may not necessarily reflect the views or
policies of the Leicestershire County Council.
Attachments to e-mail messages may contain viruses that may damage your
system. Whilst Leicestershire County Council has taken every reasonable
precaution to minimise this risk, we cannot accept any liability for any
damage which you sustain as a result of these factors. You are advised to
carry out your own virus checks before opening any attachment.
**********************************************************************
Privileged/Confidential Information may be contained in this message. If you
are not the addressee indicated in this message (or responsible for delivery
of the message to such person), you may not copy or deliver this message to
anyone. In such case, you should destroy this message and kindly notify the
sender by reply email. Please advise immediately if you or your employer
does not consent to Internet email for messages of this kind. Opinions,
conclusions and other information in this message that do not relate to the
official business of the Council of the City and County of Cardiff shall be
understood as neither given nor endorsed by it. All e-mail sent to or from
this address will be processed by Cardiff County Councils Corporate E-mail
system and may be subject to scrutiny by someone other than the addressee.
**********************************************************************
Mae'n bosibl bod gwybodaeth gyfrinachol yn y neges hon. Os na chyfeirir y
neges atoch chi'n benodol (neu os nad ydych chi'n gyfrifol am drosglwyddo'r
neges i'r person a enwir), yna ni chewch gopio na throsglwyddo'r neges.
Mewn achos o'r fath, dylech ddinistrio'r neges a hysbysu'r anfonwr drwy
e-bost ar unwaith. Rhowch wybod i'r anfonydd ar unwaith os nad ydych chi
neu eich cyflogydd yn caniatau e-bost y Rhyngrwyd am negeseuon fel hon.
Rhaid deall nad yw'r safbwyntiau, y casgliadau a'r wybodaeth arall yn y
neges hon nad ydynt yn cyfeirio at fusnes swyddogol Cyngor Dinas a Sir
Caerdydd yn cynrychioli barn y Cyngor Sir nad yn cael sel ei fendith. Caiff
unrhyw negeseuon a anfonir at, neu o'r cyfeiriad e-bost hwn eu prosesu gan
system E-bost Gorfforaethol Cyngor Sir Caerdydd a gallant gael eu harchwilio
gan rywun heblaw'r person a enwir.
**********************************************************************
The information in this email is solely for the intended recipients.
If you are not an intended recipient, you must not disclose, copy, or
distribute its contents or use them in any way: please advise the
sender immediately and delete this email.
Perth & Kinross Council does not warrant that this email or any
attachments are virus-free and does not accept any liability for any
loss or damage resulting from any virus infection. Perth & Kinross
Council may monitor or examine any emails received by its email
system.
The information contained in this email may not be the views of Perth
& Kinross Council. It is possible for email to be falsified and the
sender cannot be held responsible for the integrity of the
information
contained in it.
Requests to Perth & Kinross Council under the Freedom of Information
(Scotland) Act should be directed to the Freedom of Information Team -
email: [log in to unmask]
***************************************************************************
Note: This E-Mail is intended for the addressee only and may include
confidential information.
Unauthorised recipients are requested to please advise the sender immediately
by telephone and then delete the message without copying or storing it or
disclosing its contents to any other person.
We have taken all reasonable precautions to ensure that no viruses are
transmitted from Cheshire County Council to any third party. Copyright in this
e-mail and attachments created by us unless stated to the contrary belongs to
Cheshire County Council.
Any liability (in negligence or otherwise) arising from any party acting,
or refraining from acting on any information contained in this e mail is
hereby excluded.
Should you communicate with anyone at Cheshire County Council by e-mail,
you consent to us monitoring and reading any such correspondence.
Printing this email? Please think environmentally and only print when essential!
***************************************************************************
|