Click here for our Financial Systems Division

Information Governance

Many organisations are under increasing pressure not only to adhere to a whole raft of legal and regulatory obligations and internal, corporate policies, but also the ability to demonstrate their compliance. Information may need to be handled differently according to the local jurisdiction, but effective Information Governance requires a consistent level of access and control across the organisation. The challenges relating to these issues are further complicated by the rate at which information is being generated and distributed.

Information Governance Consultancy Services

Information Governance Framework

We can initiate, develop and implement an Information Governance Framework that enables your organisation to meet the key requirements in matters relating to Information and Records Management. An Information Governance Framework typically covers the following:
  • Systems – All Information Systems (both electronic and paper based) e.g. Customer, Finance, Risk Management, Human Resources and Payroll.
  • Staff – All users of information and/or systems including employees and contractors who have been authorised to access and use such information and/or systems.
  • Information – All information and data created, received or maintained in relation to any activity whether by employees or contractors.
Enables your organisation to:
  • Establish good practice around the handling of information
  • Promote a culture of awareness and improvement
  • Comply with legislation, regulation and other standards
Developed as a standalone exercise or as part of a larger Enterprise Content Management or Document Management project, BEP will work in partnership with software vendors and systems integrators to provide the governance components for each of these projects. The framework will typically include the following categories:
  • Information Security & Risk
  • Information Quality Assurance
  • Information Sharing Policy (including confidentiality and freedom of information)
  • Email Policy
  • Remote Working & Mobile Devices
  • Internet Acceptable Use Policy
  • Records Management Policy (including a records retention schedule)
  • Scanning Policy
Policies, standards, procedures and guidelines must be created, approved and communicated. Processes and associated roles and responsibilities must be designed and put in place, including a suitable training and awareness programme, to ensure effective and sustained implementation.
Ultimately the purpose of an Information Governance Framework is to set out and promote a culture of good practice around the processing of information and use of information systems.



Today’s Legislation

There are many Acts of Parliament, Departmental Regulations, Orders and Statutory Instruments that affect information governance, plus various industry-specific of Codes of Practice. These will need to be identified dependent upon your business and its locations, and assessed for working practice, record keeping and security implications. Examples include:

  • The Companies Act 2006
  • The Data Protection Act 1998
  • The Freedom of Information Act 2000
  • The Computer Misuse Act 1990
  • Copyright, Designs and Patents Act 1988
  • ISO/IEC 27001 Information Security Management System
  • BS10008 Evidential weight and legal admissibility of electronic information

Let us demonstrate how we can make better use of your company information, ensuring total legislation compliance.

Technology: RSD Glass


Hitachi White Paper – HCP and European Union Compliance