All University web hosted services will be at risk of downtime every Tuesday between 7am to 9am.
IT Support Update – September 2020 - Due to ongoing challenges presented by Covid-19 and the increased level of support required, we are seeing an unprecedented increase in demand for support and you may experience delays when requesting assistance from the IT Team. To help us better prioritise our workload and staffing, please only contact us on our phone lines for urgent requests to report a loss of service and direct all other requests to us via the IT Portal. Please be assured that we are doing everything we can to reduce these delays..
The following is a web version of the current University of Sunderland Records Management Policy
Version 1.0 - written November 2018
Review date - December 2020
Records Management is the process by which an organisation manages all the aspects of records, whether internally or externally generated and in any format or media type, from their creation, all the way through their lifecycle to their eventual disposal.
Records created by the institution to support its core functions and to comply with legal and regulatory obligations, must be handled effectively to contribute to the overall management of the University. This policy provides a framework for managing the University’s records and introduces a series of Records Management related policies, procedures and guidance notes which have been drawn up in conjunction with the Lord Chancellor’s Code of Practice on the Management of Records revised and reissued under s46 Freedom of Information Act 2000 and associated guidance from the Information Commissioner’s Office.
The purpose of this policy is to provide a robust managed approach to the management of corporate records held by or on behalf of the University. This policy, together with the associated procedures and guidance notes, applies to the management of all documents and records, in all technical or physical formats or media, created or received by the University in the conduct of its business activities. It applies to all staff, contractors, consultants and third parties who are given access to our documents and records and information processing facilities.
The following principles form the University’s records management policy, the implementation of which is guided by robust processes, procedures and guidance notes. In following these principles along with sufficiently robust responsibilities (outlined in the responsibilities section) the University can be assured of a fit for purpose and well managed corporate records environment.
The International Standards Organisation (ISO) defines record(s) as “recorded information, in any form, created or received and maintained by the organisation in the transaction of business or conduct of affairs and kept as evidence of such activity”
4.2 Records Management
Records management is a discipline, which uses an administrative system to direct and control the creation, version control, distribution, filing, retention, storage and disposal of records, in a way that is administratively and legally sound, whilst at the same time serving the operational needs of the organisation and preserving an appropriate historical record.
We have a responsibility to ensure that our records are managed well. Different staff have different roles in relation to records management and these responsibilities are detailed below:
The Executive member with overall responsibility for this policy is the Chief Operating Officer. S/he is responsible for deciding on the outcome of internal reviews of Freedom of Information requests and EIR requests.
Director of Technical Services, who performs the role of the University’s Senior Information Risk Owner (SIRO) is responsible for:
Information Governance Team, responsible to the Director of Technical Services, is responsible for drawing up information governance and records management policy, process and guidance and ensuring compliance with this policy.
The University Deans of Faculty and Directors of Support Services (Information Asset Owners) have responsibility for ensuring compliance with the University’s Information Governance policies and ensuring any issues of non-compliance are addressed. They have responsibility for ensuring that an appropriate member of staff, in each Faculty and Service, takes on the role of “Information Asset Administrator”.
The Cyber and Information Governance Management Group is responsible for recommending policy direction on information governance to the Executive and monitoring that agreed policies are followed.
Members of the IG Working Group are accountable to the Information Asset Owner within their area and have a responsibility to monitor information governance compliance and awareness and be the primary point of contact and source of information and support within the Faculty/Service. The IG Working Group will report to the Cyber and Information Governance Management Group.
Individual employees and contractors have responsibility for ensuring that they comply with this policy and any related policies and guidance. Staff must ensure that the records for which they are responsible form complete and accurate records of their activities, and that they are maintained and disposed of in accordance with the University’s records management guidelines and information compliance policies. Staff should attend training and awareness sessions provided by the University. Employees also have a duty to report any incidents or ‘near misses’ in relation to information governance.
This policy should be read in conjunction with the following policies / documents:
1. Information Security and Risk Management Policy
2. Data Protection Policy
3. University Retention Schedule
Ongoing monitoring of compliance with this policy and supporting guidance material will be undertaken on a regular basis by the Information Governance Management Group and the IG Working Group.
Guidance on the procedures necessary to comply with this Policy is available from the IG Team. This guidance covers:
This policy will be reviewed biennially. Unscheduled reviews will take place in the event of significant changes.
Records Management Policy
Version 1.0 - written November 2018
Review date - December 2020