SlideShare a Scribd company logo

Iso30300seminar16062014

Download as PPTX, PDF
Carlota Bustelo Ruesta
Carlota Bustelo Ruesta

This document discusses a seminar on understanding the ISO 30300 series of standards for management systems for records. It includes an agenda with three sessions covering an introduction to ISO 30300, its users and benefits, and its relationship to other management system standards. It also provides background information on what constitutes a record, management systems, and an overview of the ISO 30300 family of standards for establishing governance and processes for recordkeeping. The goal is to explain the value of adopting a management system approach to records according to ISO 30300 to help organizations integrate recordkeeping as a strategic function.

Presentations & Public Speaking
1 of 33
Understanding ISO 30300 series of standards Management systems for records carlota@carlotabustelo.com Oslo, 16th June 2014
carlota@carlotabustelo.com Seminar planning Subject Activity Time schedule 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management Presentation by the speaker 20 minutes Discussion with participants 20 minutes 2.Users of ISO 30300, benefits. How to convince management? Presentation by the speaker 20 minutes Discussion with participants 20 minutes 3.Relationship with other MSS. Quality assurance and ISO 30300. Certification of ISO 30300 Presentation by the speaker 20 minutes Discussion with participants 20 minutes
carlota@carlotabustelo.com Index 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management 2. Users of ISO 30300, benefits. How to convince management? 3. Relationship with other MSS. Quality assurance and ISO 30300. Certification of ISO 30300
carlota@carlotabustelo.com Introduction ISO 30300- Series Management System for Records MSS- Management System Standard Continous improvement ISO 9000 MSR
carlota@carlotabustelo.com What is a record? 1. Documents 2. Records 3. Archives DEFINITION Translation problems Records : information created, received and maintained as evidence and as an asset by an organization or person, in pursuit of legal obligations or in the transaction of business Dokumentasjon: informasjon som en organisasjon eller person skaper, mottar og vedlikeholder som bevis og som et aktivum, som et ledd i å oppfylle rettslige forpliktelser eller i en forretningstransaksjon A changing world 1. Paper document 2. Electronic file 3. Information in a database 4. An SMS 5. Information in a web form 6. etc-.
What is a management carlota@carlotabustelo.com system? Management system set of interrelated or interacting elements of an organization to establish policies and objectives, and processes to achieve those objectives styringssystem sett av samvirkende elementer i en organisasjon som er forbundet med hverandre, for å etablere policyer og målsetninger og prosesser for å nå de nevnte målsetningene Based in continous improvement Standardize MSS- Management Systems Standards • requirements • conformity can be assesed by an independent third Best seller is ISO 9000 partycertification
carlota@carlotabustelo.com What is an MSR? Management system for records. MSR • the management system to direct and control an organization with regard to records System for dokumentasjonsforvaltning • styringssystem for å rettlede og styre en organisasjon når det gjelder dokumentasjon GOVERNANCE FRAMEWORK Alligned with general strategy of the organization RECORS CREATION AND CONTROL
ISO DTR 17068 Trusted Third Party Repository for Digital Records ISO 16175 Principles and Functional Requirements for Records in Electronic Office Environments 1 Digital records management systems -2 carlota@carlotabustelo.com ISO 30300 family ISO 15489 Records management. General-1 Guidelines-2 ISO TR 26122 Work process analysis for records ISO 23081 Metadata for records. Principles-1 Conceptual and implementation issues-2 ISO 13008 Digital records conversion and migration process ISO TR 13028 Implement-ation guidelines for digitization of records Related standards & Technical reports Implementation of records processes Self assessment method-3 Management systems for records ISO 30300 Management systems for records- Fundamentals and vocabulary Fundamentals &Terminology Requirements ISO 30301 Management systems for records - Requirements ISO 30303 Management systems for records- Requirements for bodies providing audit and certification ISO 30302 Management systems for records: Guidelines for Implementation Guidelines Support High Level Structure Elements ISO 30304 Management systems for records: Assessment guide standards Governance framework for records Business systems 3 Under discussion Under development ISO 18128 Risk assessment for records processes and systems
carlota@carlotabustelo.com Management systems for records • Why the title? • Management system for record vs Records management systems • Extended use from the software industry of the name EDRMS (electronic document and records management systems) to refer to an specific software • Extended use in the professional literature and even in ISO 15489 of “record management system” or “records systems” to refer to the operational level records system information system which captures, manages and provides access to records over time dokumentasjonssystem informasjonssystem som fanger inn, styrer og gir tilgang til dokumentasjon over tid
ISO 30300 Management system for records - carlota@carlotabustelo.com Fundamentals and vocabulary • Umbrella standard General statements “marketing” messages Vocabulary to be applied in all the other products of the series
ISO 30301 Management system for carlota@carlotabustelo.com records - Requirements Requirements: need or expectation that is stated, generally implied or obligatory Identified by the verb shall When implementing requirements to be fulfilled When auditing compliance to be verified
Disposition carlota@carlotabustelo.com Requirements for an MSR Creation Register Classification Metadata Access RECORDS PROCESSES
carlota@carlotabustelo.com Index 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management 2. Users of ISO 30300, benefits. How to convince management? 3. Relationship with other MSS. Quality assurance and ISO 30300. 4. Certification of ISO 30300
carlota@carlotabustelo.com Reason for ISO 30300 • One of the main reasons: to convince management about the importance of recordkeeping using management language and tools • Marketing • Search for new allies among those responsible for other management systems • Opportunity to explain, propose and convince management
A favorable context The need of organizations to manage their records as evidence of their activities has always existed for -Accountability purposes (fiscal, administrative, economic, political, etc.) - Preservation of “know-how”, or an organization’s memory Records creation and control Operational level Strategic level Technological change E-society (e-government, e-business) Real risks so A new vision is needed
An integrated approach Business functions and MSS by Song-Ahm Cho (Korea) - ISO 30300 (Documents and records) ISO 27000 (Information security)
carlota@carlotabustelo.com The message to management ‘Creation and management of records are integral to any organization’s activities, processes and systems. They enable business efficiency, accountability, risk management and business continuity. They also enable organizations to capitalize on the value of their information resources as business, commercial and knowledge assets, and to contribute to the preservation of collective memory, responding to the challenges of the global and digital environment.’ ‘Management System Standards (MSS) provide tools for a systematic and verifiable approach to organizational control in an environment that encourages good business practices.’ ISO30300 & 30301 Introduction
carlota@carlotabustelo.com Users of ISO30300 Every organization (all size, sector and country): - creates records and needs to control them - is a potential user of 30300 Some organizations decide to implement a program/policy/framework for records creation and control. This could be done by different approaches Aligning records framework with one of the most applied management methodologies known as “management systems”
carlota@carlotabustelo.com Users of MSRS • Key issues of “Management system” approach for records: – To integrate records as part of the strategic objectives – To link the overall management system to the operational records activities – To implement a systematic framework for continual improvement – To commit top management to provide the appropriate leadership, funds and people Following a standardized model: ISO 30300 series of Standards
carlota@carlotabustelo.com Benefits of MSR implementation Benefits of good control of records a) business efficiency b) legislative and regulatory compliance c) effective decision-making d) elimination of redundant and duplicate information e) information sharing f) IT performance increase g) disaster recovery and business continuity h) litigation protection i) defense of stakeholders’ rights and interests j) corporate or collective memory k) social responsibility support Full control of information about an organisation’s activities for as long as it is needed for any purpose
carlota@carlotabustelo.com Benefits of MSR implementation Benefits of implementing MSR Standards a) Use of internationally accepted model to establish and implement policy and objectives. b) Integrate risk assessment approach c) Promote the continual improvement through the assessment of performance measures and the implementation of auditing processes d) Allow the easy conformity confirmation process and independent third party certification e) Integrate use with other commonly used MSS To provide top management a management tool to implement a records framework.
New attitude from records •Understanding of the organization, its context, strategies and objectives •Don’t think in recordkeeping as an aim by itself •Design records policy and objectives aligned with organization strategic objectives carlota@carlotabustelo.com professionals LOOK FORWARD
Records policy carlota@carlotabustelo.com System Management system Management system for records Management Top management Records management Records objective Continual improvement Records planning Records control Records assurance Records improvement Source: Song-Ahm Cho (KO) 2008 Relationship between management and operational level
carlota@carlotabustelo.com Index 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management 2. Users of ISO 30300, benefits. How to convince management? 3. Relationship with other MSS. Quality assurance and ISO 30300. Certification of ISO 30300
Management systems standards (MSS). A great carlota@carlotabustelo.com ISO success Management Continuos improvement ISO 9000 Quality Success 1994 First edition 1987 Conformity assesment is possible Current 2008 ISO 14001- environmental management ISO 27001- information security management ISO 50001- energy management ISO 30301- recorkeeping management New edition expected 2015
carlota@carlotabustelo.com Fuente: ISO 30300 Cap 2.7 Relationship with other MSS ISO mandate to harmonize all MSS to promote the integrated approach to a management system ISO TMB-JTCG Common High Level Structure, core definitions and text on common requirements.
Relationship with other  ensuring that authoritative and reliable information about, and evidence of, business activities undertaken within a management system are created, managed and made accessible to those who need them, for as long as they need them;  establishing a systematic and verifiable approach to the management of records and documentation processes associated with the activities of other management systems;  establishing an assessment framework for records and documentation processes and practices within other management systems;  contributing to the continual improvement of the organization’s performance through its integrated management systems. Source ISO 30300 2.7 carlota@carlotabustelo.com COMMON IN ALL MSS: Documented information section. Formerly Control of documents + control of records ISO 30301 helps to be compliant with this section MSS
Conformity assesment carlota@carlotabustelo.com • Self assessment First-party CA • declares on its own responsibility • CA activity that is performed by a second person or organization • Has an interest in the organization Second-party CA • By an independent body Third party CA • Is paid for the service Certification – the provision by an independent body of written assurance (a certificate) that the product, service or system in question meets specific requirements.
carlota@carlotabustelo.com MSS Certification Certification bodies ISO/IEC 17021, Conformity assessment - Requirements for bodies providing audit and certification of management systems Accreditation bodies accredited Organizations which have implemented a MSS certified
carlota@carlotabustelo.com Certification figures Fuente ISO Survey 2012. http://www.iso.org/iso/iso_survey_executive-summary.pdf
carlota@carlotabustelo.com Certification figures
Reasons for certification carlota@carlotabustelo.com • Enhance company image • Meet customer demands • Gain preferred supplier status • Establish better control over business operations • A foundation for continuous improvement Certification shouldn´t be the aim, but the consequence of sucessful implementation Implementation Certification
carlota@carlotabustelo.com A question frequently asked • Why use ISO 30300 instead of ISO 9000? – ISO 30300 is not in competition with ISO 9000. They are compatible and complementary. The biggest source of complaints and non-conformities in ISO 9000 implementation are coming from the control of documents and records. ISO 30300 helps to solve them with little extra effort – Some organizations, such as in regulated environments, or in which the information is the main material, may consider control of this information as the main aspect of their management system, rather than the quality of the service or product, which is the core aspect of ISO 9000

Recommended

Compliance 101 HITRUST Update.pdf
Compliance 101 HITRUST Update.pdfCompliance 101 HITRUST Update.pdf
Compliance 101 HITRUST Update.pdf
AmyPoblete3
 
Digital Records Management & Preservation
Digital Records Management & PreservationDigital Records Management & Preservation
Digital Records Management & Preservation
victor Nduna
 
Document Management System
Document Management SystemDocument Management System
Document Management System
Vaughan Olufemi ACIB, AICEN, ANIM
 
INTRODUCTION TO RECORDS
INTRODUCTION TO RECORDS INTRODUCTION TO RECORDS
INTRODUCTION TO RECORDS
Tanzania Public Service College
 
Records Creation And Maintenance
Records Creation And MaintenanceRecords Creation And Maintenance
Records Creation And Maintenance
IIM-Africa
 
RecordsManagement_FINAL
RecordsManagement_FINALRecordsManagement_FINAL
RecordsManagement_FINAL
guest66dc5f
 
Information security management system (isms) overview
Information security management system (isms) overviewInformation security management system (isms) overview
Information security management system (isms) overview
Julia Urbina-Pineda
 
Iso 27001 2013
Iso 27001 2013Iso 27001 2013
Iso 27001 2013
Magda CHELLY, Ph.D, S-CISO, CISSP®
 

Recommended

Compliance 101 HITRUST Update.pdf
Compliance 101 HITRUST Update.pdfCompliance 101 HITRUST Update.pdf
Compliance 101 HITRUST Update.pdf
AmyPoblete3
 
Digital Records Management & Preservation
Digital Records Management & PreservationDigital Records Management & Preservation
Digital Records Management & Preservation
victor Nduna
 
Document Management System
Document Management SystemDocument Management System
Document Management System
Vaughan Olufemi ACIB, AICEN, ANIM
 
INTRODUCTION TO RECORDS
INTRODUCTION TO RECORDS INTRODUCTION TO RECORDS
INTRODUCTION TO RECORDS
Tanzania Public Service College
 
Records Creation And Maintenance
Records Creation And MaintenanceRecords Creation And Maintenance
Records Creation And Maintenance
IIM-Africa
 
RecordsManagement_FINAL
RecordsManagement_FINALRecordsManagement_FINAL
RecordsManagement_FINAL
guest66dc5f
 
Information security management system (isms) overview
Information security management system (isms) overviewInformation security management system (isms) overview
Information security management system (isms) overview
Julia Urbina-Pineda
 
Iso 27001 2013
Iso 27001 2013Iso 27001 2013
Iso 27001 2013
Magda CHELLY, Ph.D, S-CISO, CISSP®
 
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information StandardQuick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
PECB
 
Information Security Management System ISO/IEC 27001:2005
Information Security Management System ISO/IEC 27001:2005Information Security Management System ISO/IEC 27001:2005
Information Security Management System ISO/IEC 27001:2005
ControlCase
 
What is Document Management
What is Document ManagementWhat is Document Management
What is Document Management
Radix Software
 
Electronic Records Management An Overview
Electronic Records Management An OverviewElectronic Records Management An Overview
Electronic Records Management An Overview
Ken Matthews
 
How to prepare for an audit and maintain oversight within your e qms
How to prepare for an audit and maintain oversight within your e qmsHow to prepare for an audit and maintain oversight within your e qms
How to prepare for an audit and maintain oversight within your e qms
Montrium
 
File And Records Management
File And Records ManagementFile And Records Management
File And Records Management
Oregon Law Practice Management
 
Basic introduction to iso27001
Basic introduction to iso27001Basic introduction to iso27001
Basic introduction to iso27001
Imran Ahmed
 
ISMS Requirements
ISMS RequirementsISMS Requirements
ISMS Requirements
humanus2
 
GDPR RACI.pdf
GDPR RACI.pdfGDPR RACI.pdf
GDPR RACI.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
SOC 2: Build Trust and Confidence
SOC 2: Build Trust and ConfidenceSOC 2: Build Trust and Confidence
SOC 2: Build Trust and Confidence
Schellman & Company
 
Document Management System - docManager
Document Management System - docManagerDocument Management System - docManager
Document Management System - docManager
Rajesh Shah
 
QMS implementation, process approach
QMS implementation, process approachQMS implementation, process approach
QMS implementation, process approach
Andreea Precup
 
Isms awareness training
Isms awareness trainingIsms awareness training
Isms awareness training
SAROJ BEHERA
 
Document Management System (DMS)
Document Management System (DMS)Document Management System (DMS)
Document Management System (DMS)
Hiran Wickramainghe
 
Basics of records management
Basics of records managementBasics of records management
Basics of records management
Russell James
 
What is Electronic Records Management?
What is Electronic Records Management?What is Electronic Records Management?
What is Electronic Records Management?
Atle Skjekkeland
 
Electronic Records Management
Electronic Records ManagementElectronic Records Management
Electronic Records Management
Brad Houston
 
Briefing the board lessons learned from cisos and directors
Briefing the board lessons learned from cisos and directorsBriefing the board lessons learned from cisos and directors
Briefing the board lessons learned from cisos and directors
Priyanka Aash
 
Iso 20000 presentation
Iso 20000 presentationIso 20000 presentation
Iso 20000 presentation
Musibau Taiwo Lasisi
 
Build an Information Security Strategy
Build an Information Security StrategyBuild an Information Security Strategy
Build an Information Security Strategy
Andrew Byers
 
Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Seminario - Taller: La gestión documental en los Sistemas de Gestion y Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Radar Información y Conocimiento
 
Como implantar un sistema de gestion de riesgos y no morir en el intento
Como implantar un sistema de gestion de riesgos y no morir en el intentoComo implantar un sistema de gestion de riesgos y no morir en el intento
Como implantar un sistema de gestion de riesgos y no morir en el intento
gedpro project management experts
 

More Related Content

What's hot

Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information StandardQuick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
PECB
 
Electronic Records Management An Overview
Electronic Records Management An OverviewElectronic Records Management An Overview
Electronic Records Management An Overview
Ken Matthews
 
SOC 2: Build Trust and Confidence
SOC 2: Build Trust and ConfidenceSOC 2: Build Trust and Confidence
SOC 2: Build Trust and Confidence
Schellman & Company
 

What's hot (20)

Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information StandardQuick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
 
Information Security Management System ISO/IEC 27001:2005
Information Security Management System ISO/IEC 27001:2005Information Security Management System ISO/IEC 27001:2005
Information Security Management System ISO/IEC 27001:2005
 
What is Document Management
What is Document ManagementWhat is Document Management
What is Document Management
 
Electronic Records Management An Overview
Electronic Records Management An OverviewElectronic Records Management An Overview
Electronic Records Management An Overview
 
How to prepare for an audit and maintain oversight within your e qms
How to prepare for an audit and maintain oversight within your e qmsHow to prepare for an audit and maintain oversight within your e qms
How to prepare for an audit and maintain oversight within your e qms
 
File And Records Management
File And Records ManagementFile And Records Management
File And Records Management
 
Basic introduction to iso27001
Basic introduction to iso27001Basic introduction to iso27001
Basic introduction to iso27001
 
ISMS Requirements
ISMS RequirementsISMS Requirements
ISMS Requirements
 
GDPR RACI.pdf
GDPR RACI.pdfGDPR RACI.pdf
GDPR RACI.pdf
 
SOC 2: Build Trust and Confidence
SOC 2: Build Trust and ConfidenceSOC 2: Build Trust and Confidence
SOC 2: Build Trust and Confidence
 
Document Management System - docManager
Document Management System - docManagerDocument Management System - docManager
Document Management System - docManager
 
QMS implementation, process approach
QMS implementation, process approachQMS implementation, process approach
QMS implementation, process approach
 
Isms awareness training
Isms awareness trainingIsms awareness training
Isms awareness training
 
Document Management System (DMS)
Document Management System (DMS)Document Management System (DMS)
Document Management System (DMS)
 
Basics of records management
Basics of records managementBasics of records management
Basics of records management
 
What is Electronic Records Management?
What is Electronic Records Management?What is Electronic Records Management?
What is Electronic Records Management?
 
Electronic Records Management
Electronic Records ManagementElectronic Records Management
Electronic Records Management
 
Briefing the board lessons learned from cisos and directors
Briefing the board lessons learned from cisos and directorsBriefing the board lessons learned from cisos and directors
Briefing the board lessons learned from cisos and directors
 
Iso 20000 presentation
Iso 20000 presentationIso 20000 presentation
Iso 20000 presentation
 
Build an Information Security Strategy
Build an Information Security StrategyBuild an Information Security Strategy
Build an Information Security Strategy
 

Viewers also liked

Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Seminario - Taller: La gestión documental en los Sistemas de Gestion y Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Radar Información y Conocimiento
 
NTC ISO14001-2004
NTC ISO14001-2004NTC ISO14001-2004
NTC ISO14001-2004
rosi2011
 
Ntc 5254 gestion del riesgo
Ntc 5254 gestion del riesgoNtc 5254 gestion del riesgo
Ntc 5254 gestion del riesgo
zmanjarres
 
Ntc 1700
Ntc 1700Ntc 1700
Ntc 1700
catain
 
Diapositivas iso 14000 --
Diapositivas iso 14000 --Diapositivas iso 14000 --
Diapositivas iso 14000 --
edward221989
 
Ntc 1461-higiene-y-seguridad-colores-y-senales-de-seguridad
Ntc 1461-higiene-y-seguridad-colores-y-senales-de-seguridadNtc 1461-higiene-y-seguridad-colores-y-senales-de-seguridad
Ntc 1461-higiene-y-seguridad-colores-y-senales-de-seguridad
Andrés Torres
 
37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...
37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...
37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...
Ncls Vrs
 

Viewers also liked (20)

Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Seminario - Taller: La gestión documental en los Sistemas de Gestion y Seminario - Taller: La gestión documental en los Sistemas de Gestion y
Seminario - Taller: La gestión documental en los Sistemas de Gestion y
 
Como implantar un sistema de gestion de riesgos y no morir en el intento
Como implantar un sistema de gestion de riesgos y no morir en el intentoComo implantar un sistema de gestion de riesgos y no morir en el intento
Como implantar un sistema de gestion de riesgos y no morir en el intento
 
Manual de normas y estandares de digitalizacion de documentos
Manual de normas y estandares de digitalizacion de documentosManual de normas y estandares de digitalizacion de documentos
Manual de normas y estandares de digitalizacion de documentos
 
La fusion de gantt y kanban
La fusion de gantt y kanbanLa fusion de gantt y kanban
La fusion de gantt y kanban
 
NTC ISO14001-2004
NTC ISO14001-2004NTC ISO14001-2004
NTC ISO14001-2004
 
Ntc 5254 gestion del riesgo
Ntc 5254 gestion del riesgoNtc 5254 gestion del riesgo
Ntc 5254 gestion del riesgo
 
Descubre la iso 31000 para la gestion de riesgos
Descubre la iso 31000 para la gestion de riesgosDescubre la iso 31000 para la gestion de riesgos
Descubre la iso 31000 para la gestion de riesgos
 
Iso 14001 2015
Iso 14001 2015Iso 14001 2015
Iso 14001 2015
 
NORMA TÉCNICA COLOMBIANA NTC 2885 (segunda actualización)
NORMA TÉCNICA COLOMBIANA NTC 2885 (segunda actualización)NORMA TÉCNICA COLOMBIANA NTC 2885 (segunda actualización)
NORMA TÉCNICA COLOMBIANA NTC 2885 (segunda actualización)
 
Ntc 1700
Ntc 1700Ntc 1700
Ntc 1700
 
Iso 14001 2015
Iso 14001 2015Iso 14001 2015
Iso 14001 2015
 
ISO 14000 Y MEDIO AMBIENTE
ISO 14000 Y MEDIO AMBIENTEISO 14000 Y MEDIO AMBIENTE
ISO 14000 Y MEDIO AMBIENTE
 
Diapositivas iso 14000 --
Diapositivas iso 14000 --Diapositivas iso 14000 --
Diapositivas iso 14000 --
 
MANUAL DE DEMARCACIONES
MANUAL DE DEMARCACIONESMANUAL DE DEMARCACIONES
MANUAL DE DEMARCACIONES
 
Ntc 1461-higiene-y-seguridad-colores-y-senales-de-seguridad
Ntc 1461-higiene-y-seguridad-colores-y-senales-de-seguridadNtc 1461-higiene-y-seguridad-colores-y-senales-de-seguridad
Ntc 1461-higiene-y-seguridad-colores-y-senales-de-seguridad
 
37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...
37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...
37306386 norma-icontec-ntc-6001-modelo-de-gestion-para-micro-empresas-y-peque...
 
Documentacion de un sistema
Documentacion de un sistemaDocumentacion de un sistema
Documentacion de un sistema
 
Iso 14001
Iso 14001Iso 14001
Iso 14001
 
Rutas de evacuación y salidas de emergencias
Rutas de evacuación y salidas de emergenciasRutas de evacuación y salidas de emergencias
Rutas de evacuación y salidas de emergencias
 
2G & 3G Overview
2G & 3G Overview2G & 3G Overview
2G & 3G Overview
 

Similar to Iso30300seminar16062014

ISO9001_2015_Frequently_Asked_Questions.docx
ISO9001_2015_Frequently_Asked_Questions.docxISO9001_2015_Frequently_Asked_Questions.docx
ISO9001_2015_Frequently_Asked_Questions.docx
Sunil Arora
 
iso-30301-lead-auditor_4p.pdf
iso-30301-lead-auditor_4p.pdfiso-30301-lead-auditor_4p.pdf
iso-30301-lead-auditor_4p.pdf
Samuel Mazoya
 
Ict Into Iso 9001 X Framework
Ict Into Iso 9001 X FrameworkIct Into Iso 9001 X Framework
Ict Into Iso 9001 X Framework
John Wachira
 
Syllabus CIISA ( Certified Internasional Information System Auditor ).pdf
Syllabus CIISA ( Certified Internasional Information System Auditor ).pdfSyllabus CIISA ( Certified Internasional Information System Auditor ).pdf
Syllabus CIISA ( Certified Internasional Information System Auditor ).pdf
Yoyo Sudaryo
 
Quality management system processes
Quality management system processesQuality management system processes
Quality management system processes
selinasimpson2801
 

Similar to Iso30300seminar16062014 (20)

From ISO to Implementation A framework for ECM Implementation
From ISO to Implementation A framework for ECM ImplementationFrom ISO to Implementation A framework for ECM Implementation
From ISO to Implementation A framework for ECM Implementation
 
How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?
 
Nick Milton - APM Knowledge SIG Conference 2018
Nick Milton - APM Knowledge SIG Conference 2018 Nick Milton - APM Knowledge SIG Conference 2018
Nick Milton - APM Knowledge SIG Conference 2018
 
ISO9001_2015_Frequently_Asked_Questions.docx
ISO9001_2015_Frequently_Asked_Questions.docxISO9001_2015_Frequently_Asked_Questions.docx
ISO9001_2015_Frequently_Asked_Questions.docx
 
Eurosec'2008 christophe feltus
Eurosec'2008 christophe feltusEurosec'2008 christophe feltus
Eurosec'2008 christophe feltus
 
iso-30301-lead-auditor_4p.pdf
iso-30301-lead-auditor_4p.pdfiso-30301-lead-auditor_4p.pdf
iso-30301-lead-auditor_4p.pdf
 
ISO TC 176
ISO TC 176ISO TC 176
ISO TC 176
 
Internal auditor 9001 day 1
Internal auditor 9001 day 1Internal auditor 9001 day 1
Internal auditor 9001 day 1
 
01 integrated management system telkom 2016 opening
01 integrated management system telkom 2016 opening01 integrated management system telkom 2016 opening
01 integrated management system telkom 2016 opening
 
Ict Into Iso 9001 X Framework
Ict Into Iso 9001 X FrameworkIct Into Iso 9001 X Framework
Ict Into Iso 9001 X Framework
 
Syllabus CIISA ( Certified Internasional Information System Auditor ).pdf
Syllabus CIISA ( Certified Internasional Information System Auditor ).pdfSyllabus CIISA ( Certified Internasional Information System Auditor ).pdf
Syllabus CIISA ( Certified Internasional Information System Auditor ).pdf
 
Financial Services - New Approach to Data Management in the Digital Era
Financial Services - New Approach to Data Management in the Digital EraFinancial Services - New Approach to Data Management in the Digital Era
Financial Services - New Approach to Data Management in the Digital Era
 
Quality management system processes
Quality management system processesQuality management system processes
Quality management system processes
 
ISO_TC_176_SC2_N1286_Guidance_on_the_req.pdf
ISO_TC_176_SC2_N1286_Guidance_on_the_req.pdfISO_TC_176_SC2_N1286_Guidance_on_the_req.pdf
ISO_TC_176_SC2_N1286_Guidance_on_the_req.pdf
 
To ISO or not to ISO?
To ISO or not to ISO?To ISO or not to ISO?
To ISO or not to ISO?
 
Integrated management systems
Integrated management systemsIntegrated management systems
Integrated management systems
 
IMR652 Assignment 1.pdf
IMR652 Assignment 1.pdfIMR652 Assignment 1.pdf
IMR652 Assignment 1.pdf
 
Management ( Six Business Objectives)
Management ( Six Business Objectives)Management ( Six Business Objectives)
Management ( Six Business Objectives)
 
Integrated Management Systems ASQ Silicon Valley section 0613 april 2017_gr c...
Integrated Management Systems ASQ Silicon Valley section 0613 april 2017_gr c...Integrated Management Systems ASQ Silicon Valley section 0613 april 2017_gr c...
Integrated Management Systems ASQ Silicon Valley section 0613 april 2017_gr c...
 
Demo of ISO 37001:2016 documentation kit
Demo of ISO 37001:2016 documentation kitDemo of ISO 37001:2016 documentation kit
Demo of ISO 37001:2016 documentation kit
 

Recently uploaded

Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Rahsaan L. Browne
 
527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf
rajpreetkaur75080
 

Recently uploaded (15)

123445566544333222333444dxcvbcvcvharsh.pptx
123445566544333222333444dxcvbcvcvharsh.pptx123445566544333222333444dxcvbcvcvharsh.pptx
123445566544333222333444dxcvbcvcvharsh.pptx
 
Eureka, I found it! - Special Libraries Association 2021 Presentation
Eureka, I found it! - Special Libraries Association 2021 PresentationEureka, I found it! - Special Libraries Association 2021 Presentation
Eureka, I found it! - Special Libraries Association 2021 Presentation
 
Acorn Recovery: Restore IT infra within minutes
Acorn Recovery: Restore IT infra within minutesAcorn Recovery: Restore IT infra within minutes
Acorn Recovery: Restore IT infra within minutes
 
Bitcoin Lightning wallet and tic-tac-toe game XOXO
Bitcoin Lightning wallet and tic-tac-toe game XOXOBitcoin Lightning wallet and tic-tac-toe game XOXO
Bitcoin Lightning wallet and tic-tac-toe game XOXO
 
Pollinator Ambassador Earth Steward Day Presentation 2024-05-22
Pollinator Ambassador Earth Steward Day Presentation 2024-05-22Pollinator Ambassador Earth Steward Day Presentation 2024-05-22
Pollinator Ambassador Earth Steward Day Presentation 2024-05-22
 
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
 
Getting started with Amazon Bedrock Studio and Control Tower
Getting started with Amazon Bedrock Studio and Control TowerGetting started with Amazon Bedrock Studio and Control Tower
Getting started with Amazon Bedrock Studio and Control Tower
 
The Canoga Gardens Development Project. PDF
The Canoga Gardens Development Project. PDFThe Canoga Gardens Development Project. PDF
The Canoga Gardens Development Project. PDF
 
Hi-Tech Industry 2024-25 Prospective.pptx
Hi-Tech Industry 2024-25 Prospective.pptxHi-Tech Industry 2024-25 Prospective.pptx
Hi-Tech Industry 2024-25 Prospective.pptx
 
Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...
Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...
Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...
 
05232024 Joint Meeting - Community Networking
05232024 Joint Meeting - Community Networking05232024 Joint Meeting - Community Networking
05232024 Joint Meeting - Community Networking
 
Oracle Database Administration I (1Z0-082) Exam Dumps 2024.pdf
Oracle Database Administration I (1Z0-082) Exam Dumps 2024.pdfOracle Database Administration I (1Z0-082) Exam Dumps 2024.pdf
Oracle Database Administration I (1Z0-082) Exam Dumps 2024.pdf
 
0x01 - Newton's Third Law: Static vs. Dynamic Abusers
0x01 - Newton's Third Law: Static vs. Dynamic Abusers0x01 - Newton's Third Law: Static vs. Dynamic Abusers
0x01 - Newton's Third Law: Static vs. Dynamic Abusers
 
Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...
Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...
Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...
 
527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf
 

Iso30300seminar16062014

  • 1. Understanding ISO 30300 series of standards Management systems for records carlota@carlotabustelo.com Oslo, 16th June 2014
  • 2. carlota@carlotabustelo.com Seminar planning Subject Activity Time schedule 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management Presentation by the speaker 20 minutes Discussion with participants 20 minutes 2.Users of ISO 30300, benefits. How to convince management? Presentation by the speaker 20 minutes Discussion with participants 20 minutes 3.Relationship with other MSS. Quality assurance and ISO 30300. Certification of ISO 30300 Presentation by the speaker 20 minutes Discussion with participants 20 minutes
  • 3. carlota@carlotabustelo.com Index 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management 2. Users of ISO 30300, benefits. How to convince management? 3. Relationship with other MSS. Quality assurance and ISO 30300. Certification of ISO 30300
  • 4. carlota@carlotabustelo.com Introduction ISO 30300- Series Management System for Records MSS- Management System Standard Continous improvement ISO 9000 MSR
  • 5. carlota@carlotabustelo.com What is a record? 1. Documents 2. Records 3. Archives DEFINITION Translation problems Records : information created, received and maintained as evidence and as an asset by an organization or person, in pursuit of legal obligations or in the transaction of business Dokumentasjon: informasjon som en organisasjon eller person skaper, mottar og vedlikeholder som bevis og som et aktivum, som et ledd i å oppfylle rettslige forpliktelser eller i en forretningstransaksjon A changing world 1. Paper document 2. Electronic file 3. Information in a database 4. An SMS 5. Information in a web form 6. etc-.
  • 6. What is a management carlota@carlotabustelo.com system? Management system set of interrelated or interacting elements of an organization to establish policies and objectives, and processes to achieve those objectives styringssystem sett av samvirkende elementer i en organisasjon som er forbundet med hverandre, for å etablere policyer og målsetninger og prosesser for å nå de nevnte målsetningene Based in continous improvement Standardize MSS- Management Systems Standards • requirements • conformity can be assesed by an independent third Best seller is ISO 9000 partycertification
  • 7. carlota@carlotabustelo.com What is an MSR? Management system for records. MSR • the management system to direct and control an organization with regard to records System for dokumentasjonsforvaltning • styringssystem for å rettlede og styre en organisasjon når det gjelder dokumentasjon GOVERNANCE FRAMEWORK Alligned with general strategy of the organization RECORS CREATION AND CONTROL
  • 8. ISO DTR 17068 Trusted Third Party Repository for Digital Records ISO 16175 Principles and Functional Requirements for Records in Electronic Office Environments 1 Digital records management systems -2 carlota@carlotabustelo.com ISO 30300 family ISO 15489 Records management. General-1 Guidelines-2 ISO TR 26122 Work process analysis for records ISO 23081 Metadata for records. Principles-1 Conceptual and implementation issues-2 ISO 13008 Digital records conversion and migration process ISO TR 13028 Implement-ation guidelines for digitization of records Related standards & Technical reports Implementation of records processes Self assessment method-3 Management systems for records ISO 30300 Management systems for records- Fundamentals and vocabulary Fundamentals &Terminology Requirements ISO 30301 Management systems for records - Requirements ISO 30303 Management systems for records- Requirements for bodies providing audit and certification ISO 30302 Management systems for records: Guidelines for Implementation Guidelines Support High Level Structure Elements ISO 30304 Management systems for records: Assessment guide standards Governance framework for records Business systems 3 Under discussion Under development ISO 18128 Risk assessment for records processes and systems
  • 9. carlota@carlotabustelo.com Management systems for records • Why the title? • Management system for record vs Records management systems • Extended use from the software industry of the name EDRMS (electronic document and records management systems) to refer to an specific software • Extended use in the professional literature and even in ISO 15489 of “record management system” or “records systems” to refer to the operational level records system information system which captures, manages and provides access to records over time dokumentasjonssystem informasjonssystem som fanger inn, styrer og gir tilgang til dokumentasjon over tid
  • 10. ISO 30300 Management system for records - carlota@carlotabustelo.com Fundamentals and vocabulary • Umbrella standard General statements “marketing” messages Vocabulary to be applied in all the other products of the series
  • 11. ISO 30301 Management system for carlota@carlotabustelo.com records - Requirements Requirements: need or expectation that is stated, generally implied or obligatory Identified by the verb shall When implementing requirements to be fulfilled When auditing compliance to be verified
  • 12. Disposition carlota@carlotabustelo.com Requirements for an MSR Creation Register Classification Metadata Access RECORDS PROCESSES
  • 13. carlota@carlotabustelo.com Index 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management 2. Users of ISO 30300, benefits. How to convince management? 3. Relationship with other MSS. Quality assurance and ISO 30300. 4. Certification of ISO 30300
  • 14. carlota@carlotabustelo.com Reason for ISO 30300 • One of the main reasons: to convince management about the importance of recordkeeping using management language and tools • Marketing • Search for new allies among those responsible for other management systems • Opportunity to explain, propose and convince management
  • 15. A favorable context The need of organizations to manage their records as evidence of their activities has always existed for -Accountability purposes (fiscal, administrative, economic, political, etc.) - Preservation of “know-how”, or an organization’s memory Records creation and control Operational level Strategic level Technological change E-society (e-government, e-business) Real risks so A new vision is needed
  • 16. An integrated approach Business functions and MSS by Song-Ahm Cho (Korea) - ISO 30300 (Documents and records) ISO 27000 (Information security)
  • 17. carlota@carlotabustelo.com The message to management ‘Creation and management of records are integral to any organization’s activities, processes and systems. They enable business efficiency, accountability, risk management and business continuity. They also enable organizations to capitalize on the value of their information resources as business, commercial and knowledge assets, and to contribute to the preservation of collective memory, responding to the challenges of the global and digital environment.’ ‘Management System Standards (MSS) provide tools for a systematic and verifiable approach to organizational control in an environment that encourages good business practices.’ ISO30300 & 30301 Introduction
  • 18. carlota@carlotabustelo.com Users of ISO30300 Every organization (all size, sector and country): - creates records and needs to control them - is a potential user of 30300 Some organizations decide to implement a program/policy/framework for records creation and control. This could be done by different approaches Aligning records framework with one of the most applied management methodologies known as “management systems”
  • 19. carlota@carlotabustelo.com Users of MSRS • Key issues of “Management system” approach for records: – To integrate records as part of the strategic objectives – To link the overall management system to the operational records activities – To implement a systematic framework for continual improvement – To commit top management to provide the appropriate leadership, funds and people Following a standardized model: ISO 30300 series of Standards
  • 20. carlota@carlotabustelo.com Benefits of MSR implementation Benefits of good control of records a) business efficiency b) legislative and regulatory compliance c) effective decision-making d) elimination of redundant and duplicate information e) information sharing f) IT performance increase g) disaster recovery and business continuity h) litigation protection i) defense of stakeholders’ rights and interests j) corporate or collective memory k) social responsibility support Full control of information about an organisation’s activities for as long as it is needed for any purpose
  • 21. carlota@carlotabustelo.com Benefits of MSR implementation Benefits of implementing MSR Standards a) Use of internationally accepted model to establish and implement policy and objectives. b) Integrate risk assessment approach c) Promote the continual improvement through the assessment of performance measures and the implementation of auditing processes d) Allow the easy conformity confirmation process and independent third party certification e) Integrate use with other commonly used MSS To provide top management a management tool to implement a records framework.
  • 22. New attitude from records •Understanding of the organization, its context, strategies and objectives •Don’t think in recordkeeping as an aim by itself •Design records policy and objectives aligned with organization strategic objectives carlota@carlotabustelo.com professionals LOOK FORWARD
  • 23. Records policy carlota@carlotabustelo.com System Management system Management system for records Management Top management Records management Records objective Continual improvement Records planning Records control Records assurance Records improvement Source: Song-Ahm Cho (KO) 2008 Relationship between management and operational level
  • 24. carlota@carlotabustelo.com Index 1. Introduction to ISO 30300 series of standards: Recordkeeping as a tool for management 2. Users of ISO 30300, benefits. How to convince management? 3. Relationship with other MSS. Quality assurance and ISO 30300. Certification of ISO 30300
  • 25. Management systems standards (MSS). A great carlota@carlotabustelo.com ISO success Management Continuos improvement ISO 9000 Quality Success 1994 First edition 1987 Conformity assesment is possible Current 2008 ISO 14001- environmental management ISO 27001- information security management ISO 50001- energy management ISO 30301- recorkeeping management New edition expected 2015
  • 26. carlota@carlotabustelo.com Fuente: ISO 30300 Cap 2.7 Relationship with other MSS ISO mandate to harmonize all MSS to promote the integrated approach to a management system ISO TMB-JTCG Common High Level Structure, core definitions and text on common requirements.
  • 27. Relationship with other  ensuring that authoritative and reliable information about, and evidence of, business activities undertaken within a management system are created, managed and made accessible to those who need them, for as long as they need them;  establishing a systematic and verifiable approach to the management of records and documentation processes associated with the activities of other management systems;  establishing an assessment framework for records and documentation processes and practices within other management systems;  contributing to the continual improvement of the organization’s performance through its integrated management systems. Source ISO 30300 2.7 carlota@carlotabustelo.com COMMON IN ALL MSS: Documented information section. Formerly Control of documents + control of records ISO 30301 helps to be compliant with this section MSS
  • 28. Conformity assesment carlota@carlotabustelo.com • Self assessment First-party CA • declares on its own responsibility • CA activity that is performed by a second person or organization • Has an interest in the organization Second-party CA • By an independent body Third party CA • Is paid for the service Certification – the provision by an independent body of written assurance (a certificate) that the product, service or system in question meets specific requirements.
  • 29. carlota@carlotabustelo.com MSS Certification Certification bodies ISO/IEC 17021, Conformity assessment - Requirements for bodies providing audit and certification of management systems Accreditation bodies accredited Organizations which have implemented a MSS certified
  • 30. carlota@carlotabustelo.com Certification figures Fuente ISO Survey 2012. http://www.iso.org/iso/iso_survey_executive-summary.pdf
  • 32. Reasons for certification carlota@carlotabustelo.com • Enhance company image • Meet customer demands • Gain preferred supplier status • Establish better control over business operations • A foundation for continuous improvement Certification shouldn´t be the aim, but the consequence of sucessful implementation Implementation Certification
  • 33. carlota@carlotabustelo.com A question frequently asked • Why use ISO 30300 instead of ISO 9000? – ISO 30300 is not in competition with ISO 9000. They are compatible and complementary. The biggest source of complaints and non-conformities in ISO 9000 implementation are coming from the control of documents and records. ISO 30300 helps to solve them with little extra effort – Some organizations, such as in regulated environments, or in which the information is the main material, may consider control of this information as the main aspect of their management system, rather than the quality of the service or product, which is the core aspect of ISO 9000