Adopts ISO/TR 15801:2009 to provide guidance on the implementation and operation of document management systems that can be considered to store electronic information is a trustworthy and reliable manner.
Table of contents
Header
About this publication
Preface
Introduction
1 Scope
2 Terms and definitions
3 Document management policy
3.1 General
3.2 Document Management Policy Document
3.2.1 Contents
3.2.2 Information covered
3.2.3 Storage media
3.2.4 Data file formats and compression
3.2.5 Standards related to document management
3.2.6 Retention and disposal schedules
3.2.7 Document management responsibilities
3.2.8 Compliance with policy
4 Duty of care
4.1 General
4.1.1 Trusted system
4.1.2 Controls
4.1.3 Segregation of roles
4.2 Information security management
4.2.1 Information Security Policy
4.2.2 Risk assessment
4.2.3 Information security framework
4.3 Business continuity planning
4.4 Consultations
5 Procedures and processes
5.1 General
5.2 Procedures Manual
5.2.1 Documentation
5.2.2 Content
5.2.3 Compliance with procedures
5.2.4 Updating and reviews
5.3 Information capture
5.3.1 General
5.3.2 Information loss
5.3.3 Creation and importing
5.3.4 Metadata
5.4 Document image capture
5.4.1 General
5.4.2 Preparation of paper documents
5.4.3 Document batching
5.4.4 Photocopying
5.4.5 Scanning processes
5.4.6 Quality control
5.4.6.1 Sample set
5.4.6.2 Evaluating image quality
5.4.6.3 Checking scanner performance
5.4.7 Rescanning
5.4.8 Image processing
5.5 Data capture
5.5.1 New data
5.5.2 Conversion and migration
5.6 Indexing
5.6.1 General
5.6.2 Manual indexing
5.6.3 Automatic indexing
5.6.4 Index storage
5.6.5 Index amendments
5.6.6 Index accuracy
5.7 Authenticated output procedures
5.8 File transmission
5.8.1 Intra-system data file transfer
5.8.1.1 General
5.8.1.2 Local area network transmission
5.8.2 External transmission of files
5.9 Document retention
5.10 Information preservation
5.11 Information destruction
5.12 Backup and system recovery
5.13 System maintenance
5.13.1 General
5.13.2 Scanning systems
5.14 Security and protection
5.14.1 Security procedures
5.14.2 Encryption keys
5.15 Use of contracted services
5.15.1 General
5.15.2 Procedural considerations
5.15.3 Transportation of paper documents
5.15.4 Use of trusted third party
5.16 Workflow
5.17 Date and time stamps
5.18 Version control
5.18.1 Information
5.18.2 Documentation
5.18.3 Procedures and processes
5.19 Maintenance of documentation
6 Enabling technologies
6.1 General
6.2 System Description Manual
6.3 Storage media and sub-system considerations
6.4 Access levels
6.5 System integrity checks
6.5.1 General
6.5.2 Digital and electronic signatures (including biometric signatures)
