1 02 Perfect FOIA 2020 Vision (Baron) IG World Spring 2019
Total Page:16
File Type:pdf, Size:1020Kb
American Society of Access Professionals National Training Conference July 22-24, 2019 Renaissance Capital View Hotel Arlington, Virginia Do You Have Perfect FOIA 2020 Vision? What are the New and Emerging Government Recordkeeping and access Issues Likely to Arise over the Next Decade? By Jason R. Baron Drinker Biddle “With permission to reprint from Spring 2019 edition of InfoGov World”. INFORMATION GOVERNANCE WORLD GDPR ONE YEAR OZ ALASHE ON ANALYTICS LATER W/ RICHARD HOGG & CYBERSECURITY ADVICE FROM LEADING IG EXPERTS JASON R. BARON ON RIM’S MAJOR THREAT NICOLAS ECONOMOU AI’S ROLE IN E-DISCOVERY SONIA LUNA ON COSO & RISK MANAGEMENT NATHANIEL PALMER IG & INTELLIGENT AUTOMATION JOHN ISAZA ON GLOBAL RIM HEIDI COMPLIANCE MAHER HER VISION FOR CGOC + IG & DATA PRIVACY BENCHMARKS VOL 1 • ISSUE 3 SUMMER 2019 INFOGOVWORLD.COM YOUR GLOBAL IG RESOURCE® PUBLISHER’S LETTER e are proud and pleased to bring BY LILLI GARCIA PHOTO you another spectacular issue! It is chocked full of engrossing content and keen insights from IG leaders. Our cover feature is an interview with CGOC’sW Executive Director, attorney Heidi Maher. Her story of her childhood in Iran, then immigrating to the US is intriguing; her rise to working in the Texas Attorney General’s office and then becoming a leading tech attorney is inspiring. And the story of how her parents met is quaint! We also feature two interviews from across the pond with keynote speakers at the annual MER Conference in Chicago. Oz Alashe, MBE, served as a leader in the British military and now applies his skills in leading a cybersecurity firm that leverages analytics and AI to prevent and detect threats. He offers some insights on looming cyber threats that you won’t want to miss. Nicolas Economou, the son of a diplomat who has traveled extensively, offers his discernments on AI governance and AI use in e-Discovery. Noted attorney and e-discovery expert Jason R. Baron provides a detailed look at ephemeral messaging and its threat to RIM. John Isaza, a leading attorney in the IG space, talks about his immigration from Columbia to Southern California, and his close friendship with fellow attorney and co-author John Jablonski. He then provides insights on global RIM compliance. Former ARMA President Fred Diers also contributed a provocative piece on RIM programs that every records management professional should read. We focus on data privacy heavily, especially in this issue. Richard Hogg, a leader in global privacy, gives us a look at GDPR a year after it went into effect, and our own Mark Driskill offers what he has uncovered about Metcalf, PhD, gives us a preview of the book he wrote GDPR as well. Also, Scott Allbert writes about what with several colleagues on blockchain in healthcare. financial institutions may not know about the impending Enjoy and learn! And please don’t forget to send us California Consumer Privacy Act. your topic ideas, opinions, and feedback – this is the IG Business process expert Nathaniel Palmer provides us community’s magazine and we strive to improve with with a clear view of the intersection of intelligent automation each issue. and IG. We also interviewed my friend Sonia Luna, CPA, who gives us expert insights on the COSO risk management For more information about becoming framework, cannabis compliance, and living in L.A. a Certified Records Manager or My longtime colleague at IMERGE Consulting, Certified Records Analyst Jim Just, and content analytics expert Brian Tuemmler, Robert Smallwood contact (518) 463-8644 or provide us with two viewpoints on cleaning up shared CEO & Publisher visit www.icrm.org drives with some very good advice. Again in this issue, data governance expert Merrill Albert gives us lessons on running a good DG program, and we are hoping the IG community picks up some of her tips. Tom Motzel writes about the rise of the Please send your comments, suggestions, and CDO and potential conflicts with the CISO; and David story ideas to me at [email protected] 4 INFOGOVWORLD.COM INFORMATION GOVERNANCE WORLD 5 INFORMATION GOVERNANCE WORLD YOUR GLOBAL IG RESOURCE® CONTENTS infogovworld.com INFORMATION GOVERNANCE REGULATORY COMPLIANCE EMERGING TECHNOLOGY VOLUME #1 IN SOCIETY 44 Law & Order: Interview with 64 Driving AI 10 ARMA Metro NYC Annual John Isaza, Esq. 65 AI Used to Transcribe Content ISSUE #3 Spring Conference 47 High Standards: Interview with 65 Future of Defense is AI SPRING 2019 11 The Annual AIIM Conference Sonia Luna, CEO and President at Aviva Spectrum INFORMATION GOVERNANCE INFORMATION GOVERNANCE HEALTHCARE BEST PRACTICES LEGAL & EDISCOVERY 66 Blockchain in Healthcare – 12 Mission Impossible 50 A.I. Governance: Interview Empowering Patients and by Jason R. Baron with Nicolas Economou Professionals by David Metcalf, PhD 67 Medical Bills Are Killing Americans INFORMATION PRIVACY RECORDS & INFORMATION 67 IG Leaders in Healthcare 16 GDPR One Year Later MANAGEMENT 68 Harvesting Computing Brainpower by Richard Hogg 52 Creating a Sustainable to Improve Healthcare CEO & PUBLISHER 19 Facebook Always Watching RIM Program – Fact or Fiction? 69 Artificial Intelligence in Healthcare Robert Smallwood 20 Cali Privacy Act to Hit by Fred Diers, CRM, FAI 70 Six Strategies to Consider When Financial Services Firms Implementing IG by Rita Bowen CHIEF OPERATING OFFICER the Hardest? by Scott Allbert DATA GOVERNANCE and Erin Head Baird Brueseke 22 GDPR’s First Birthday 56 Data Governance: Insights from by Mark Driskill the Field By Merrill Albert 72 INFORMATION GOVERNANCE CREATIVE DIRECTOR 57 What is Master Data Management? TRADE SHOWS Kenny Boyer INFORMATION SECURITY 24 An Interview with Cybersecurity CONTENT SERVICES 74 INFORMATION GOVERNANCE SENIOR EDITOR Leader Oz Alashe, MBE 58 Intelligent Automation & IG:The EVENTS Dan O’Brien 28 CSA’s Cloud Controls Matrix Critical Path to Digital Transformation Maps to Leading Frameworks by Nathaniel Palmer CONTRIBUTING EDITORS by Baird Brueseke 60 The Rise Of The CDO: 30 CIS Releases New Mobile Controls Conflicts Emerge With CISO Role? Mark Driskill, Martin Keen, Andrew Ysasi by Baird Brueseke by Tom Motzel CONTRIBUTING WRITERS COVER STORY ARCHIVING & LONG-TERM Merrill Albert, Scott Allbert, Jason Baron 32 The Visionary: Interview with DIGITAL PRESERVATION Rita Bowen, Baird Brueseke, Fred Diers Heidi Maher by Robert Smallwood 62 Newer Cloud-based Erin Head, Richard Hogg, Jim Just Check us out online Approaches Simplify David Metcalf, Tom Motzel, Nathaniel Palmer and sign up today for a ANALYTICS & INFONOMICS Digital Preservation Robert Smallwood, Brian Tuemmler 40 Clean-up content with Content free digital subscription to Analytics Technologies by Jim Just CONTRIBUTING PHOTOGRAPHERS Information Governance 42 Kick Start Your IG Program with Nikki Acosta, Lilli Garcia Content Cleanup by Brian Tuemmler Nate Kieser, Robert Smallwood, Christian Yi World magazine. SPECIAL THANKS TO INTERVIEWEES: Print subscriptions for Heidi Maher, Nicolas Econmou Sonia Luna, John Isaza, Oz Alashe the quarterly mag are $49/year, or $195 for five team members. ON THE COVER: Heidi Maher, Executive Director, Compliance, 2358 University Ave # 488, infogovworld.com Governance & Oversight San Diego, CA 92104 1.888.325.5914 888-325-5914 Council. Photo by Nikki Acosta, Magnetic Focus Photography. © 2019 InfoGov World Media LLC INFORMATION GOVERNANCE EDUCATION, NEWS & EVENTS: subscribe.infogovworld.com YOUR GLOBAL IG RESOURCE® 6 INFOGOVWORLD.COM OPERATIONALIZE Information Governance: YOUR PRIVACY PROGRAM A PRIMER O AUTOMATE GDPR ccording to the Sedona Conference, RECORD KEEPING Information Governance (IG) is about minimizing information risks and costs while maximizing information value. This is a compact way to convey the key aims of IG programs. The definition of IG can be distilled Afurther. An even more succinct “elevator pitch” definition of IG is, “security, control, and optimization” of information. This is a short definition that anyone can remember. It is a READINESS & PIA, DPIA & PbD DATA MAPPING COOKIE CONSENT & useful one for communicating the basics of IG to executives. ACCOUNTABILITY TOOL AUTOMATION AUTOMATION WEBSITE SCANNING To go into more detail: This definition means that An even more succinct information—particularly confidential, personal, or other Benchmark organizational Choose from pre-defined Populate the data flow Conduct ongoing scans of “elevator pitch” definition of IG is, readiness and provide screening questionnaires to inventory through websites and generate cookie sensitive information—is kept secure. “ executive-level visibility with generate appropriate record questionnaires, scanning banners and notices. It means that your organizational IG processes control “security, control, and optimization” detailed reports. keeping requirements. technologies or who has access to which information, and when. through bulk import. And it means that information that no longer of information. GDPR Articles 5 & 24 GDPR Articles 25, 35 & 36 GDPR Articles 6, 30 & 32 GDPR Articles 7 & 21 has business value is destroyed and the most valuable ” ePrivacy Directive Draft Regulation information is leveraged to provide new insights and value. In other words, it is optimized. DG includes data modeling and data security, and IG PROGRAMS REQUIRE CROSS FUNCTIONAL also utilizes data cleansing (or data scrubbing) to strip COLLABORATION out corrupted, inaccurate, or extraneous data and de- IG involves coordination between data privacy, information duplication, to eliminate redundant occurrences of data. security, IT, legal and litigation/e-discovery,