News & Events
Stay on top of the changing information governance landscape with expertly written blogs and industry-driven webinars by Zasio experts. Our case studies show how we’ve served every industry from pharmaceutical to utilities.
Connecticut Becomes the Fifth State to Enact Comprehensive Consumer Data Privacy Legislation
State-enacted comprehensive consumer data privacy legislation is becoming more common across the United States. Connecticut is now the fifth state to enact such legislation, joining California, Colorado, Utah, and Virginia. Public Act No. 22-15—The “Act Concerning Personal Data Privacy and Online Monitoring” (also referred to as the “Connecticut Data Privacy Act” or “CTDPA”)—will go into effect in July 2023. With a year to go before the law is implemented, it is important for consumers and businesses to understand their rights and responsibilities under the CTDPA, and to prepare accordingly.
The CTDPA shares a number of similarities with other comprehensive...
Let’s Try This Again – Sending Personal Data Across the Pond under Privacy Shield 2.0
On Friday, March 25th, the United States and European Commission issued a joint statement announcing their agreement in principle on a Trans-Atlantic Data Privacy Framework (the “Framework”). If finalized, the new framework would allow cross-border transfers of personal data from Europe to the United States.
This agreement is the culmination of over a year of negotiations between the U.S. and E.U. It comes after the previous trans-Atlantic data flow framework known as “Privacy Shield”—which was an arrangement allowing companies to share EU personal data to the U.S.—was invalidated by the European Court of Justice in July 2020 for lack of adequate privacy protections....
Utah Becomes Newest State to Adopt Consumer Privacy Law
On March 24, 2022, the Utah Consumer Privacy Act (UCPA) was signed into law by Governor Spencer J. Cox, making Utah the fourth state, behind California, Virginia, and Colorado, to pass comprehensive consumer privacy legislation.
The UCPA’s Applicability
The UCPA applies to entities that:
- conduct business in Utah or produce products and services that target Utah residents;
- have an annual revenue of $25 million or more; and
- either controls or processes the personal data of at least 100,000 Utah residents or derives 50% of its revenue from the sale of personal data and controls or processes the data of over 25,000 Utah...
Meet Our Team! Rick Surber, Licensed Attorney / Senior Consultant
Tell us about your role at Zasio.
As a Senior Consultant at Zasio, I have the privilege of working with clients to improve their IG/RIM programs. My most requested role involves simplifying or creating records retention schedules and other RIM policies/procedures. I’m also lucky to co-lead two amazingly hard-working and talented teams at Zasio: the Research team and Consulting team.
What excites you about Zasio’s products and services?
I like that Zasio’s solutions can help...
Poking Holes in Big Buckets — The Impacts of Data Privacy and Security on Simplified Retention Schedules
Big buckets have been the trend in recent years, but if they are too big and designed without a sound strategy, unnecessary risks are created for your organization. While everyone wants a simple retention schedule, ignoring necessary exceptions leads to over-retention of records that effectively counteract the benefits of simplicity. The two areas impacting big bucket design the most are privacy and security.
In this webinar with ARMA International, Zasio experts Rick Surber, Sr. Analyst and Licensed Attorney, and Warren Bean, Sr. Sales Engineer and Product Development Manager, explore privacy and security—highlighting how a little targeted granularity goes a long...
Part 3: It’s a Marathon, Not a Sprint – Successfully Implementing Your Simplified RRS
It’s a common mistake in records and information management (RIM) to put all your focus on creating your records retention schedule (RRS) and neglect what comes next: implementation. Lax planning, poor preparation, and a lack of oversight will frustrate even the best efforts in creating an RRS and expose your organization to unnecessary risks. Don’t fall into this trap! Your ‘perfect’ RRS is meaningless if it is not thoughtfully and consistently implemented across your organization.
In Part 1 and Part 2 of this series, we discussed some of the key challenges and best practices for information collection and creating a simplified RRS....
Part 2: Keep it Simple, Duh. – Developing a Simplified RRS
Long gone are the days of intricate departmental records retention schedules—often very long, with duplicative record categories scattered across multiple business areas. Today, a simplified functional (or Big Bucket) records retention schedule (RRS) is the way to go and is now considered industry best practice. A 2018 multi-sectoral survey of practitioners confirmed that a simplified Big Bucket RRS significantly reduces the size of retention schedules and is easier to implement and maintain.
After completing the Information Collection phase described in Part 1 of this series, you will ideally have information surrounding all of your organization’s operational processes and good...
Part 1: One Size Doesn’t Fit All – Customizing Your RRS Through Information Collection
A records retention schedule (RRS) is truly the linchpin of a sound and legally defensible records management program. Each RRS must be designed to provide a balance between robust coverage of business operations on the one hand, and simplicity of use and administration on the other. A bottom-up approach that incorporates input from businesses and stakeholders at all levels in achieving this balance can further encourage adoption and foster a culture of adherence within the organization.
This three-part series will walk readers through several best practices surrounding RRS development and maintenance. Part 1 is an overview of best practices for...
Trendsetting in California: Updated Record Retention Requirements for Employers
California updated its Government Code as of January 1, 2022. California Government Code Section 12946 increased the retention period for records related to personnel and job applicants to four years. Previously, the minimum retention period for these records was 2 years. The law currently reads:
It shall be an unlawful practice for employers, labor organizations, and employment agencies subject to the provisions of this part to fail to maintain and preserve any and all applications, personnel, membership, or employment referral records and files for a minimum period of four years after the records and files are initially created or received,...
Records and Information Management (RIM) Implications of Legal Holds and Litigation
Litigation is stressful! Its adversarial, complex, and mistakes can lead to bad outcomes, including penalties and increased costs for your organization. As a Records Management Professional, what can you do to prepare?
This joint presentation with the ARMA Triangle and ARMA Madison Chapters aims to introduce some RIM steps and considerations that will make the prospect of litigation a bit less stressful. Zasio consultants Jennifer Chadband and Richard Surber will share insights on RIM implications for discovery and litigation holds, including engaging key players and planning ahead for success.
...
ZConnect
Stay up-to-date with Zasio
News and events
Product releases and updates
Conference and event announcements
Quick Links
Corporate Office
401 W. Front St.
Suite 305
Boise, ID 83702
(800) 513-1000
connect@zasio.com
A pioneer in information governance, we continue to expand our technology and consulting services to help businesses of all sizes maintain the highest records management and retention standards.