apogee sponsor the one council award at the luton excellence awards apogee
Apogee Sponsor the One Council Award at the Luton Excellence Awards
28 July 2017
NHS staff moving through a busy hospital
Apogee Desktop Services Deliver 2,500 Pre-configured Computers to NHS
3 August 2017

Developing data and records management policies for GDPR Compliance

Records and information management (RIM) is the systematic control of all records, regardless of media, from their creation or receipt, through their processing, distribution, organisation, storage, and retrieval to their disposition.


Information flows through organisations in the form of paper and electronic records, such as word processing documents, spreadsheets, e-mail, graphical images, and voice or data transmissions. Information can be stored on a variety of storage media, such as microfilm, microfiche, diskette, optical disk, CD-ROM, videotape, and paper.

Apogee can help to develop an RIM policy that not only works towards the strict GDPR requirements around data management and protection, but also:

  1. Provides greater assurance of legal compliance to minimise liability and discovery impacts.

  2. Improves customer service with higher quality of service and faster retrieval of documents.

  3. Improves staff productivity with effective records management systems.

  4. Reduces storage costs through elimination of unnecessary and duplicate documents.

  5. Ensures safety of vital organisational records.

  6. Establishes an efficient, cost-effective records retention and disposal system.

Organisations have many different ways in which data is stored and used, so this tactic will require careful consideration in each case to create a customised plan, but one that is based on simple, repeatable standard practice.

The components of an effective RIM program that may be activated by the records manager include:

  1. Records retention program

  2. Vital records program

  3. Inactive records management program

  4. Electronic records management program

  5. Records management handbook/record liaisons training

  6. Micrographics (microfilming) program

  7. Forms management program (corporate communications)

  8. Active records management program

  9. Copy and reprography program (purchasing)

Organisations can work towards GDPR compliance by establishing practices that fulfil their data and RIM policies. By separating PPI from business data at source and capturing, storing, segmenting, using, destroying and auditing all data in a compliant manner, heavy financials penalties of up to 4% of annual global turnover, or €20 Million (whichever is greater) can be avoided.

To discover how Apogee can help your organisation develop a strategy for GDPR compliance before the 25th May 2018 when the new regulation will come into force, contact us using the form below.


Latest insights

18 September 2023

How document automation can deliver great efficiencies whilst improving your customer experience

Providing a successful customer experience relies on your internal operations running as efficiently as possible – which is why it’s vital to ensure your document handling processes are quick and accurate, while also requiring minimal employee resource.
12 September 2023

Five ways small legal firms are building their reputations for 2024

Many smaller legal practices are discovering new ways to build strong reputations for diligence, efficiency, and reliability with their clients. Which begs the question: how can your firm elevate the client experience?

Keep up to date with all the latest in Managed Print services.