Policy Matters

Administered by the Blog Committee, Policy Matters posts are written by members on a variety of topics. From think pieces to how-to's, editorials to news round-ups, there is something for every policy administrator. Interested in contributing a post? Let us know by emailing admin@acupa.org.

Top tags: policy policy development Policy Administration Jessica Teets policy process collaboration Deborah Bartlett pandemic accessibility COVID-19 Jennifer Gallagher Gina Kennedy writing ACUPA data equity IT Productivity remote work How-to Lisa Biagas news resources Sara Gigeroff students AI change compliance culture free speech

Where have all the policies gone?

Posted By Gina Kennedy, NOSM University, Monday, March 13, 2023

An Untapped Potential

In the past few years, crisis, cultural shifts, and financial woes have led to a rise of complexity in maintaining our policy systems within our institutions. Meeting all the regulations can be challenging, as they are constantly changing. In addition, institutions are feeling the pressure from regulators, internal staff and faculty, and the community at large to maintain the regulations. Challenges faced yesterday are not the challenges we will face tomorrow or next year. Do you have the confidence that your policies could stand up to regulatory scrutiny? Does this mean that we need to become even more resilient and inventive – is there any untapped potential out there?

As policy leaders we have learned that we need systems and processes to get things done. But is that enough? Even the most skilled person today is challenged with the immense workload of continuous changes and updates required for policy management. Even the way we distribute, collect, account for and present changes has undergone enormous change. It is not just a check list and process – we need to manage risk, ensure data security and privacy while balancing access and inclusiveness and external influences – it all seems daunting, and to top it all off, failing to comply with the ever-evolving regulations can lead to costly fines and lawsuits.

We are looking virtually everywhere for indicators of change, racing with time to have key policies, procedures and training completed to be compliant. Today, no one is standing waiting for the next change to come down the hall, which makes it even more important that we work with synergy across the institution.

We must support and arm ourselves with the tools, processes and technology that facilitate clear communication. We need to define the review and reflection process of our policies, cultivate open discussion and dialogue all while engaging with other departments and units about the need for change, seek an understanding of the barriers for everyone and then provide the necessary follow up to make the needed changes for lasting growth and compliance.

In September, I wrote “Don’t wait for a crisis to create an efficient policy management system.” That ‘safety net’ is one great way to engage a team to ensure compliance, a tool that builds structure – whether you are a small scale operation or a larger scaled institution, a system and a plan is critical. A plan gives both leaders and others a path forward and provides the principles needed to navigate change. In December 2022, Michele Gross (University of Minnesota) wrote “The First Element: Meeting at the Intersection of Policy and Compliance” - outlining the first of seven elements of a compliance program and the importance of the system to frame our compliance at our institutions. For those who may not be aware, the seven elements of a legally effective compliance program are:

Policies & Procedures
Chief Compliance Officer/Compliance Committee
Education & Training
Reporting
Monitoring & Auditing
Enforcement
Responding To Issues

GRC 20/20 Research, LLC wrote “A Tsunami of Change Overwhelms Compliance,” which states that some institutions have broken processes and insufficient resources to manage compliance. I know that there is not one size fits all -- there can’t be. This is why we must continue to evolve – we should rearrange our priorities when we have too much of anything as Sara Gigeroff (University of New Brunswick) wrote in her blog What’s In Your Closet? (Feb 2023). More importantly she states that communicating, setting boundaries, purging, and revaluating are all key elements in managing our policy framework…and our closets!

There's no time like the present to simplify. Legacy systems are expensive and difficult to use. Manual processing is far too time-consuming and in a hybrid environment its not effective. I say m ake retention simple for users and administrators, so they don’t have to interact with files in a separate, siloed repository or go through cumbersome, manual processes. We must invest in this process for it to be effective. Who can remember five-sheet carbon paper? Now that was cumbersome! We have evolved since carbon paper, but some institutions are still stuck in the dark ages when it comes to making a compliance program a priority.

Who is your untapped potential – identify them and get them on board. This process, more than ever, needs support and buy-in from our leadership and other stakeholders across the institution to be successful (more hands make less work). Beware of analysis paralysis – encourage administrators to work with broad strokes. Show them how proactively setting the boundaries for document lifecycle management, rules for sharing and record management classifications can make work simpler, more consistent and save money. If it was possible to make policies ‘fun’ I would say do that too!

Other areas that untap that potential are field experts like our colleagues at ACUPA . They are an excellent way to leverage all our tools – garner support and encourage others to join in the conversations and become members.

It only takes one incident, one mistake, one error to mark an institution’s reputation and erode trust. In my opinion, our untapped potential may simply be harnessing the power of workplace collaboration and an ability to accelerate the processes to protect our most valuable information.

Tags: change collaboration crisis Gina Kennedy innovation legislation ompliance policy record keeping records records management

Share |

Permalink | Comments (2)

Where have all the policies gone?

Posted By Gina Kennedy, NOSM University, Friday, September 16, 2022
Updated: Wednesday, September 14, 2022

Don’t Wait for a Crisis to Create an Efficient Policy Management System

Policy management, by definition, is the creation, organization, approval, and dissemination of policy and procedure documents...and so much more. With our university structure developing, changing, and delivering at a faster pace, it's no wonder that chaos can ensue when there is an abundance of changes and many individuals and departments involved. Once, not so long ago, we were all in the same relative space—now we find ourselves in a virtual world with multiple campuses amid constant change.

Policy management is the art of taming the chaos, organizing the mess, and streamlining the entire process. In the university we look to the boards, senate, and leadership to set the standards for the institutions to follow and our policies articulate those visions set in everyday concrete terms.

A policy management strategy helps everyone set expectations, provides direction for institutions, and guides important decision making. Strong policy management also minimizes the potential risks and liabilities for all areas of the university or organization.

Did everyone read this policy? Where is the latest update? Who’s responsible for monitoring and enforcement? Why are there similar policies from different units? And why do these two contradict each other?

No matter how advanced your policy management is, an institution can always benefit by making it centralized and easy to access and distribute. It is more than just keeping everything in a three-ring binder. It’s the creation, approval, organization, and dissemination of all policy and procedure documents. It also refers to the modernization of your manuals and records. In today’s world records management is not a physical item in a file drawer, it’s a virtual system of living documents that adapt to the changing landscape and the ever-changing threats and risks to the institution. It must be an accessible and easy way of disseminating new or amended policies to the stakeholders, and in many cases the institution or responsible authorities need to track and collect data on who reads them, and track compliance with rules, regulations, and laws that affect our institutions.

Policy management (a unified system) in the 21st century is critical. It’s your plan for distributing information simultaneously and efficiently. More importantly, it ensures that policy communication and implementation are in sync and centralized in one location. Its important that there be a clear and visible records management system and team in place at every institution.

It only takes one incident, one mistake, one error to mark an institution’s reputation and erode trust. As my colleague Deborah Bartlett, Washington State University recently wrote in Protecting Essential Records -- Key to Surviving a Catastrophe, “It’s crucial to consider the importance of your records and how to protect them...”

Policies should not be a ‘set-and-forget’ list of rules. If 2020 has shown us anything, it’s that we need to adapt and change with the times, and our policies need to reflect those ideologies.
Think without a box, be creative (where budgets are tight), and importantly be centralized and organized. I enjoyed this quick video that the University of British Columbia's Records Management Office created when they introduced key concepts of UBC Policy 117. It’s a fun watch and gave me a sense of direction and confidence in the system: Records Management 101: Policy and Responsibility.

This doesn’t mean you need a policy for every incident or change in the business or social climate. Rather, you should set up a regular review process that includes a centralized team to ensure the policies are accurate, relevant, and effective.

Everyone learns and understands differently, which for me emphasizes the need to ensure that the system and documents are accessible, understandable, and that training is provided. The right policy management system lets you be proactive in preventing problems, as well as giving you concrete processes to resolve the situation quickly and professionally. Frustration is only amplified when individuals can’t find the policy, or the wrong policy is being used.

Don’t wait for a crisis to change policies. You need a framework that addresses our new reality, and the need for responsive change and innovation is now.

Tags: crisis Gina Kennedy record keeping records records management records protection