30 Jul Information Governance – The Next Round’s on Me.
Master data management, data governance, compliance, health information management, and risk management walk into a bar…..Bartender says, “It’s about time you all came to the same watering hole. Now, how about a round of shots of information governance?” In fact, we are late to the party. If you went to a similar watering hole in the UK, or in the US legal industry, you would find that there, not only have they had the IG shots, but have barstools with their names on it.
It is time to reconsider the functional areas of your organization. IT cannot do this alone. Ask a DBA about uses and disclosures of information, or litigation risk. Or a SQL expert about legal retention requirements of business or health records. Compliance, quality, HIM, risk management, and the like should be a critical team member of software lifecycle management. Yet, they are often uninvolved with software purchases, implementations, inventory, or decommissions. Maybe you have been lucky so far, but you are at risk if you are not addressing an enterprise view of not just data, but information.
Like the hottest new club on the strip, everybody is talking about Information Governance yet there is not a universal understanding of what it actually is. Here are definitions to get you started.
- AHIMA (American Health Information Management Association defines IG as an organization-wide framework for managing information throughout its lifecycle and for supporting the organization’s strategy, operations, regulatory, legal, risk, and environmental requirements. AHIMA Information Governance Glossary
- Gartner definition – Information governance, or IG, is the set of multi-disciplinary structures, policies, procedures, processes and controls implemented to manage information at an enterprise level, supporting an organization’s immediate and future regulatory, legal, risk, environmental and operational requirements. Gartner IT Glossary – Information Governance
- ARMA (Association of Records Managers and Administrators) International – Created the Information Governance maturity model based on the Generally Accepted Recordkeeping Principles of Accountability, Integrity, Protection, Compliance, Availability, Retention, Disposition, and Transparency. ARMA – Information Governance Maturity Model
There is a risk for disclosure, mishandling, maintaining past retention, data being stored without leadership’s knowledge, and data that is incorrect. It has been reported that benign data errors cost 10 times as much to correct as to prevent. We are not just discussing clinical, but all business records. This includes unstructured information and discrete data which may be paper-based records and forms, e-mail (we all know those people with 6000+ emails saved in Outlook), social media , voice recordings , images, or electronic databases saved onsite or cloud-hosted. Maintaining a central ‘source of truth’ for all information is likely to prevent duplication and inconsistencies that could result in patient harm or undue financial loss. One source says that as much as 69% of information in most organizations has no business, legal, or regulatory value.
Information is an asset. Is that on your CFO’s budget worksheet?
Welcome to the Information Governance party. The night is still young, there is much more to come on this topic.
This article was originally published on HITECH Answers and is republished here with permission.
Latest posts by Susan Clark (see all)
- MIPS is Easier – Say WHAT?!? - November 4, 2016
- Thriving During the Zombie Apocalypse (a.k.a. MIPS) - July 20, 2016
- Information Governance – The Next Round’s on Me. - July 30, 2015