Privacy and Security Stakeholders and the Information Governance Reference Model: Information Governance Best Practices

As part of the Educational partnership between Ipro and eDiscovery Today that was announced recently, I’m excited to say that I will be writing a new weekly blog post for Ipro’s blog, to supplement the excellent educational content that Jim Gill and the Ipro team regularly provide!  Just like I do on eDiscovery Today, I will write educational posts about a variety of topics related to eDiscovery, cybersecurity and data privacy.

Today’s weekly blog post for Ipro’s blog continues a new six(!) part series started last month on considering the five stakeholder groups of EDRM’s Information Governance Reference Model (IGRM). The past three weeks, I’ve reviewed Legal stakeholders, Records and information management (RIM) stakeholders and Information Technology (IT) stakeholders.

This week, I continue the series by focusing on the Privacy and Security stakeholders.  Let’s face it, the importance of privacy & security in organizations has “shifted into hyper drive” in recent years.  “Privacy & Security stakeholders are responsible for identifying and managing risks associated with personal and/or confidential information”, which is why EDRM announced the release of version 3.0 of the IGRM in 2012 that established this additional stakeholder group, several years before the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) were enacted.


Also, just a reminder that, on Tuesday, October 20th, Onna will conduct the webinar Mergers & Acquisitions: How to Handle your Data at 2pm ET (1pm CT, 11am PT).  This 1:1 chat with Lisa Ripley (Director of eDiscovery & Information Governance with Oracle who has led her organization through ten plus years of mergers and acquisitions) will explore the intricacies of data merging, how to prepare for mergers and acquisitions, the stakeholders that need to be involved, and strategies to help establish consistent policies to simplify the entire process.

So, what are the primary objectives and recommendations for Privacy and Security stakeholders?  You can find out on Ipro’s blog here.  Don’t worry, it’s just one extra click!  And, of course, I’ll still be continuing to write plenty of posts on eDiscovery Today as well!

So, what do you think?  Does your organization have a fully developed InfoGov program involving all five stakeholder groups?   Please share any comments you might have or if you’d like to know more about a particular topic.

Disclaimer: The views represented herein are exclusively the views of the authors and speakers themselves, and do not necessarily represent the views held by my employer, my partners or my clients. eDiscovery Today is made available solely for educational purposes to provide general information about general eDiscovery principles and not to provide specific legal advice applicable to any particular circumstance. eDiscovery Today should not be used as a substitute for competent legal advice from a lawyer you have retained and who has agreed to represent you.

eDiscovery Assistant

Leave a Reply