By Harry Pugh
NOV 1, 2011

Related Links

EMC Kicks Up Content Management with Update, Acquisition
May 22, 2012
ACORD, XBRL Seek Business Data Standards
May 16, 2012
Information Management Value Doesn’t Match Initiatives
May 9, 2012

Web Seminars

The Big Deal About Big Data Governance
Available On Demand
Getting Started with Big Data
Available On Demand
Transactions & Interaction: The Correlation of Structured and Unstructured Data
Available On Demand

Getting Rid of Data: Why it's So Hard

Print
Reprints
Email

Many organizations think they are taking the right approach to information overload: buy ever-cheaper storage solutions, lower compliance risk by saving all data and focus more resources on solutions for turning all this data into actionable intelligence. Unfortunately, storing and managing data stores that only get bigger with time is very expensive, and instead of reducing risk, it dramatically increases costs and risks associated with e-discovery.

According to Gartner, IT shops already spend between 2 and 3 percent of revenues on data management, which can add up to hundreds of thousands or even millions of dollars each year. And according to IDC, corporate data volumes grew by about 50 percent last year. The fact is, no matter how inexpensive storage devices become, the total cost of managing data will continue to grow. And while some data must be retained for its business, legal or compliance value, retaining data that has no such value increases the complexity and cost of every hold issued by the legal department in response to an e-discovery request.

How can IT organizations defensibly dispose of data to control IT costs while satisfying the requirement for legal holds? The answer is a robust, cross-functional information governance program.

The Rise of Information Governance

Gartner's defines information governance as "the specification of decision rights and an accountability framework to encourage desirable behavior in the valuation, creation, storage, use, archival and deletion of information. It includes the processes, roles, standards and metrics that ensure the effective and efficient use of information in enabling an organization to achieve its goals." This complex definition reveals that the domain of information governance is a function of information management and also extends beyond it, because it implies managing information according to its legal and regulatory obligations.

In practical terms, a key operational business goal of information governance is to resolve the disconnect that exists between legal and record information management on one side, and IT on the other. Legal and RIM answer to a "records retention schedule," which defines not only how certain information must be stored but also how long information should be kept based on all the myriad complex laws and regulations that govern a business (e.g., privacy, safety, hiring practices, Sarbanes-Oxley, Dodd-Frank legislation, etc.).

While legal and RIM struggle to keep their records retention schedule up to date, they have no robust mechanism for communicating this schedule to IT. And even if they manage to publish an updated schedule, it is typically built around the now ancient concept of one paper form and one location for a record in any given class with no conflicts between country laws and no costs associated with choosing the longest retention period where several regulations apply.

In the face of this, IT, with its ever-changing, business-driven, complex and often global information storage structures and the same information existing in hundreds or thousands of places, has no way to confidently identify relevant information and ensure it gets retained or disposed of. Modernizing and unifying data governance processes based on information as digital data managed by IT, not RIM, is essential to reducing IT costs, improving regulatory compliance and ensuring a proper e-discovery process.

It Must Be an Enterprise-Wide Initiative

A study commissioned by the Compliance, Governance, and Oversight Council, in concert with Electronic Discovery Reference Model and the new Information Management Reference Model project, set out to assess the gap and how companies are addressing the problem. This first-of-its-kind survey of legal, records and IT stakeholders from financial services, energy, life sciences, insurance, consumer goods, chemical and other industries asked participants what they perceived as the benefits and barriers to better information governance and how well the traditional tools and processes worked. The study captures the essence of painful compliance and governance disconnects, and in particular, the disconnects across legal, RIM and IT practitioners within the same company. Several survey findings underscore the problem's scope:

  • Only 22 percent of responding companies are able to dispose of data today.
  • Although most of today's data is electronic, 70 percent of respondents claimed their retention schedules were not actionable by IT or could be used only in disposition of physical records.
  • A majority of IT respondents reported that they managed data volume by simply applying flat data quotas instead of strategically assigning business, legal or regulatory value to the data.
  • Seventy percent of companies use "people glue" to connect legal duties and business value to information assets.

But there is also some good news:

  • Ninety-eight percent of respondents believe defensible disposal of unnecessary data is a key outcome of an information governance program.
  • Eighty-five percent reported that the most critical success factor to information governance is more consistent collaboration and systematic linkage among IT, legal and records.

Most illuminating perhaps, the survey reveals several areas of confusion around responsibilities, sponsorship and return on investment:

  • When asked if RIM staff are involved in establishing, enabling or monitoring routine disposal of information, 60 percent of RIM respondents said yes, while 60 percent of IT respondents (typically from the same company) said no.
  • Fifty-seven percent of companies have governance committees in place, but just 25 percent believe the right stakeholders are at the table.
  • While data disposal was an objective for 98 percent of respondents, IT efficiency was a factor in executive sponsorship for just 12 percent of companies.

Clearly there is a disconnect.

Perhaps the biggest organizational challenge leading to this information governance disconnect is that no single department can independently achieve the desired goals and benefits. Legal holds practices, retention procedures (encompassing regulatory, privacy and business needs) and data management practices must move past departmental silos and intersect to meet legal obligations and business requirements to efficiently and defensibly dispose of data. It must be a true cross-functional practice requiring harmonization of activities involving thousands of individuals in a global organization.

Filed under:
Data Management

Advertisement

Most Read
Most Emailed

Slide Shows

Expert Insight on Data Integration

Current Buzz about Mobile BI

Twitter
Facebook
LinkedIn

Analytics

Business Intelligence

Customer Experience

Open Source

Predictive Analytics

Data Governance

Data Integration

Data Management

Login  |  My Account  |  White Papers  |  Web Seminars  |  Events |  Newsletters |  eBooks
FOLLOW US
Please note you must now log in with your email address and password.