I-Scoop has issued a very handy executive guide to information management and strategy. I intend to share this guide with the students in my Records Management class, as it gives an excellent overview of information management and its importance. I have captured the table of contents to show the scope of the guide:
Dave Wells provides a very good discussion of the importance of making ethical decisions regarding information. Wells suggests that information managers need to consider the following matters:
Informed Consent: Should individuals be provided with full disclosure about the data that is collected about them? Should collection and use of individuals’ data be subject to their agreement?
Anonymity: Should all personally identifying information be eliminated from the data? Should data be collected only in the form of aggregates such that individuals can’t be identified?
Confidentiality: Should sources and providers of data be protected from disclosure?
Security: To what degree must data be protected from intrusion, corruption, and unauthorized access?
Privacy: To what degree should individuals have the right to determine which data about them can be shared with third parties?
Accuracy: What level of exactness and correctness is required of the data?
Ownership: Is personal data about individuals an asset that belongs to the business or privately owned information for which the business has stewardship responsibilities?
Honesty: To what degree should the business be forthright and visible about data collection, protection, and usage practices?
Responsibility: Who is accountable and at what level for use and misuse of data?
Transparency: On a continuum with polar extremes of “totally open” and “stealth data collection,” what is the right level of transparency?
Wells provides a useful matrix to demonstrate the need for ethics in information governance:
Robert Seiner takes a unique approach to addressing the need for data governance by writing an open letter to a generic company about the implementation of a data governance policy. The letter is addressed to data users, rather than to senior management, which I think is an important point. So much of the literature about data governance focuses on the need to convince senior management about its importance – which is essential, of course – but does not necessarily address the average person in a company who produces and uses data. This letter could serve as a useful template by which to discuss data governance with employees. Steiner includes this handy graphic: