Taking the Cost and Risk Out of the Inbox: Why the Unchecked Growth of Electronically Stored Information Is Unsustainable Because e-mail just keeps on coming, one dreams of stemming the flow. Despite its unparalleled corporate value — facilitating business across geographies and time zones in ways once simply impossible — the mismanagement of e-mail has created overwhelming problems and unsustainable practices in companies of all sizes. Still, we cannot function without it. The massive volume of electronically stored information, including e-mail, creates increasingly complex and daunting challenges. Organizations invariably come to terms with a disheartening reality: Unfortunately, when most companies begin to evaluate their legal situation, they realize they’ve wound up on the horns of an e-discovery dilemma. Companies must secure and retain information or face fines and sanctions associated with the destruction of electronic evidence. Saving too much information, however, drives up costs. This is why many companies eventually endeavor to dispose of unnecessary electronic information — that is, to determine what content should or must be kept — and aggressively purge everything else. It becomes a balancing act of risk tolerance: What do we believe we can responsibly dispose of, and how do we ensure the rest is kept appropriately? Not All Email is Created Equal Failure to Provide Electronically Stored Information: Many organizations interpret this guidance to mean that they may dispose of unimportant information, so long as they have done so in a documented and systematic manner. Legal provisions like these allow us to feel confident in practices that routinely purge such transitory e-mail messages. However, in order to implement such practices responsibly, companies are expected to:
Many companies generally adopt a framework that identifies three major “categories” of e-mail: transitory, intended records, and business value.
Many companies typically establish general guidelines around how each category is managed:
If You Don’t Have Time to Do it Right, Will You Have Time to Do it Over? To resolve their problems, IT departments have commonly invested in and implemented conventional e-mail archiving technologies — those that extract messages from the mail environment and store them in a more suitable place, while providing users with ongoing access to their messages. Organizations often find themselves re-evaluating the investment after several years’ time, with many discovering that terabytes upon terabytes of content have been accumulated arbitrarily and that they are uncertain if the information has any business relevance. When such technologies were initially implemented, companies sidled up to a strategy that mandated the deletion of messages after they had been kept for a static number of years. What seems like a good idea to IT is, of course, not always in the best interest of the corporate legal department or the firm. With large-scale litigation in the headlines every week, and mismanaged e-mail the centerpiece of electronic evidence, lawyers realize that it is neither responsible nor defensible to delete information merely because it has reached a certain age. Organizations can really only delete e-mail when it is clearly demonstrable what business relevance that information holds, and that its disposal is performed in good faith and in accordance with policy. This is why companies find themselves in a precarious and pressing situation: An inability to ever delete any information leaves the organization floundering in a mire of unchecked content growth. The challenge is no longer simply curbing the cost of storing e-mail, but instead, minimizing the risk associated with keeping it. Identify the Right Approach to E-mail Retention The Chronological or Role-Based Approach Both approaches share the same fault — the e-mail retention policy is not based on the content of the actual messages. In other words, e-mail is being saved simply because it is e-mail. Companies who adopt such practices typically find that employees do not think in terms of a simple time-based retention; instead, people in their daily jobs, such as a decision or they think in terms of what messages actually represent. So, not surprisingly, most users will simply place everything into the folder with the longest retention since that is the safest and easiest decision. Similarly, basing e-mail retention solely on a user’s role within the company is flawed because users often have many different roles. This creates dotted lines that complicate not just their reporting structure, but also the information with which they work. The Content-Based Approach Some organizations pursue a strategy characterized by users making overt decisions to identify the e-mail messages that should be kept, meaning messages are transparently captured into a managed environment and retained in accordance with policy. Other organizations investigate possible options for an intelligent system to evaluate content and make a determination on behalf of the user. It is plausible that an intelligent engine could, perhaps, identify and capture some intended record messages, because such e-mail messages might have a contract attached to them, and an intelligent system could compare the contract to a “sample contract” that had been used to train the system. Or outgoing e-mail messages might have a client or matter number inserted into the subject line, which the system could examine to trigger classification. Consider that e-mail is notoriously contextual and often deliberately vague. What has business value to people in their daily jobs, such as a decision or approval, could contain just a few words, making it very difficult for an automated system to identify as useful to keep. Furthermore, if our policy is to purge transitory e-mail in an aggressive manner, but the system fails to mark business value content for retention, we’ll ultimately end up disposing of messages that were important to both users and to the business. And of course, as a consequence, most users will take their own measures to ensure this doesn’t happen again — circumventing the system altogether! The most common argument that a user-involved approach is doomed to failure is that employees will never take the time. Such a stance more or less ignores the blatantly obvious. After all, each of us has felt the frustration of trying to find an important e-mail message and can relate to the time and effort spent sifting through thousands of irrelevant messages. As employees, we both envision and crave a world where we manage our information better. What we lack is not the inclination (in our personal lives it’s second nature to describe and tag our content on websites like Flickr), but the mechanisms to make it easy and that don’t require us to change the way we work. E-Mail is Costly – But it Doesn’t Have to Cost You Everything
That said, the one approach that can be graded conclusively insufficient is to simply do nothing — to establish no corporate policy and simply leave it entirely to whim and circumstance what is retained and what is destroyed. Today, an organization unwittingly adopting this approach might find themselves in good, but dwindling, company — a surprising and alarming percentage of organizations still have no measured and decisive approach to e-mail management. But as lawsuits garner media attention, and poor practices draw the ire of trial judges, companies can no longer afford to ignore the problem. About the Author |
