| |||||||||
| |||||||||
Current Filter: Document>>>>>> Preservation order Editorial Type: Opinion Date: 01-2015 Views: 9229 Key Topics: Document Compliance Email Archiving Data protection Archiving & Compliance Scanning Key Companies: C2C Key Products: Key Industries: | |||
| Compliance, by its very nature, can only go one way, but some companies still falsely believe that they can demonstrate after the fact. Rich Turner, Vice President of Business Development and Strategic Marketing for C2C Systems, examines why there is no such thing as 'retrospective compliance' and what UK companies can do to effectively demonstrate compliance from the outset It would be an altogether more prosperous world if hindsight drove our business decisions. When it comes to compliance, the courts are littered with cases of tribulation. Unsurprisingly, the US lead the way. Fallen energy giant Enron's vast email collection hailed the "birth" of modern compliance regulations, with businesses worldwide suddenly facing the fact that simply through the virtue of employing people, they had an ongoing obligation to prove adherence with regulatory compliance for their applicable documents and records. Indeed, in certain vertical sectors, compliance has become even more regulated. The UK Financial Services Act mandates "preservation" of company/client interactions (including email) for specified periods of time - so if a company sells something for anything other than cash, by default, they are regulated and must achieve compliance.
HOW COMPANIES COMPLY Whilst most companies will mandate that documents, emails, records, and transactions are retained and preserved for specified periods of time, compliance audits for their own sake remain rare. That said, the big four accounting firms have large compliance practices advising usually larger companies how to demonstrate compliance through undertaking an audit that also identifies areas of weakness or failure, so they can impose corrective measures.
WHEN COMPANIES DON'T COMPLY As with most electronic litigation matters, the US sets the pace in achieving watertight compliance. In the US, regulatory challenges are now more common than compliance audits. Agencies in charge of regulating companies have found that specific challenges are more lucrative than audits, and work more effectively at ensuring companies follow regulatory guidelines. A regulatory challenge starts as a simple request for information regarding a specific incident, and the failure to provide this information triggers much larger, punitive audits. The issue goes well beyond retaining a particular email: preservation is more than simply saving data, it is the act of saving that email as it was originally sent or received, and protecting it against tampering or deletion. How can a company prove that critical email communications in dispute were never altered? The simple answer is they can't if they're merely saved them to an archive or worse, left them in a mailbox. And what about sent messages? Or communications which have not been kept at all?
DEMONSTRATING BEST PRACTICE
Page 1 2 | ||
Like this article? Click here to get the Newsletter and Magazine Free! | |||
Email The Editor! OR Forward Article | Go Top | ||
PREVIOUS | NEXT |