Haystack Associates, Inc. About Haystack

 

 About

Resources

Services

Home

Our retention program services include:

  • Retention program, policies, and schedule development.

  • Privacy and security policies and procedures.

  • Review and update of existing retention, security, and privacy programs.

  • Compliance audits for existing retention, security, and privacy programs.

  • Review, analysis, and recommendations for software and systems to automate how paper and electronic information is managed and tracked.

  • Project management and training during implementation of new document and retention management programs.

Retention Program Policies and Schedules
A
corporate retention program ensures information required by regulatory agencies, auditors, and to support business decisions is retained and obsolete information is pulled from record keeping systems and destroyed when no longer needed or required. 

An important part of compliance and risk management programs, our retention programs include:

  • Schedules that identify information and retention of all types of records and information (paper and electronic) created and maintained throughout the company.

  • Audit trails to identify record keeping systems across storage medias including paper, network databases and servers, electronic files, and e-mail.

  • Documented legal requirements for retention, security, and privacy for each country and state where business is done.

  • Responsibilities, procedures, and policies for the storage, retention, and destruction of records that meet US federal, state, and international compliance requirements for the security, maintenance, retention, and destruction of information.

Reviews and Compliance Audits
Numerous US federal, state, and international laws create compliance obligations for documentation, retention, secure storage and destruction of information, and the management of corporate information assets.  Compliance/performance audits need to be performed each year to monitor and meet requirements for existing security, privacy, and retention/disposal programs.  Legal requirements need to be reviewed and updated every 1-3 years to ensure compliance with current legal requirements for the retention, destruction, privacy, and security of information.

 

 

Information and Links:

Summary of Recent Legal Requirements that impact records management and retention programs.

Identify information system gaps, risk, and compliance issues with the Records Management Self Assessment questions.

Why develop or review your existing Document Retention Policy and Schedule? (pdf file).

View the full text of Sarbanes-Oxley 2002 (pdf file).

For recent legislative and SEC requirements for retaining and managing records visit ARMA Legislation

For information about retention programs please contact
Denise Simons by:
E-mail: dsimons@haystackassociates.com
Phone:  (253) 631-1509

Copyright ©2000 - 2010 Haystack Associates, Inc. All Rights Reserved