Information Governance is the setting of Objectives to achieve measurable Outcomes by People using information Assets in a life cycle Process that considers the impact of both Risk and Time.
People are our greatest asset; thanks to Graham Sadd of PAOGA for promoting this phrase. It highlights a weakness in the definition above. In the public service context, consideration has to be given to both the receivers and providers of service. Service receivers are rightly sensitive to, and legally protected for, the sharing of personal data; they have rights. Service providers have roles and responsibilities with respect to processing data about their clients. Organisations have a duty to administer information Assets securely and use them for improving Outcomes.
People are a primary dimension in the 7DIG Framework. Seven candidate secondary dimensions are:
- Identity: defines a person uniquely. It is essential in every personalised service for both the giver and receiver. Identity Management is a huge topic and beneficially considered as separate subject, however it is inextricably linked with Information Governance. Correct identity is used to establish rights, roles and responsibilities. Correct identity is necessary for information sharing between organisations.
- Rights: Whether enshrined in statute or common law, individual citizens have rights of many kinds. Information collected from and held about citizens is entrusted to public authorities for safe-keeping. Entitlements, such as housing benefits, are personally sensitive and there is a right of privacy.
- Responsibilities: Service delivery staff are charged with administrative duties and may be obliged to follow strict information sharing protocols.
- Organisation: Government agencies and local authorities, not named staff, are usually nominated as the guardians of information. The management structure and hierarchy needs to identify a senior responsible officer who is accountable for Information Governance.
- Roles: People may have several different roles at the same time, depending on the context. A police officer would just be regarded as a parent in a school system. The Information Governance Processes should be capable of verifying that access to information Assets is only given to appropriate roles.
- Culture: Historically, Information Governance has concentrated on Impact Level Assessment and data protection. Information sharing between agencies is not fully trusted and a Risk-averse culture has a default option not to share. With increasing political demand for many more multi-agency services, reversing this culture may yet take many years. The new mantra of shared services needs shared information in a trusted environment.
- Education: Information Governance in the widest sense is not high on political or social agenda. There are pockets of good practice in identity management and data protection but not a high skill base for information analysis and maximising the value of data.
To quote a couple of excellent research reports from the Audit Commission, “Is there something I should know?” showed how poor quality of data and analysis processes in public sector organisations can badly impact decision making:
- “Members say they receive lengthy reports but still do not have the relevant information they need. Senior officers are frustrated that powerful data are unexploited.
- Less than 5 per cent of councils have excellent data quality and many acknowledge that their data quality problems are fundamental in nature.
- Almost 80 per cent of councils say a lack of in-depth analysis is a major problem.”
“Nothing but the Truth” was critical of the skills of People, for example:
“The special Joint Area Review of the London Borough of Haringey in November 2008 found that ‘the standard of record keeping on case files across all agencies is inconsistent and often poor… Police and health service files are often poorly organised and individual cases are difficult to follow. Health services files include hand-written notes which are sometimes illegible and do not identify the author. The standard of record- keeping in the health records of looked-after children and young people is poor and some entries are inaccurate’ (Ref. 13). Work by the Commission for Social Care Inspection into the quality of care practice with people experiencing abuse found something similar.“
Some People may be very pleased that such independent scrutiny is disappearing from the local government sector. Good quality information is critical to the success of both bottom-up and top-down methods of governance. Big Society needs even better access to information stores.
Different parts of the total Information Governance environment require different skills and different People. Hence it must be a team effort, bringing together service practitioners, managers, lawyers, administrators, computing staff, information analysts and security experts – to say nothing of the input from citizens who are data subjects. Furthermore there is the Information Governance surrounding intelligence, intellectual property and classified data; there are specialists in all these fields.
Quarkside hopes that a simple framework like 7DIG can expose some basic princples that will help understanding of a complex subject area. Information Assets will be the next to be published.
- 7DIG Domains
Quarkside 