What is BS 10008-1 about?
BS 10008-1 is the first part of the multi-series. BS 10008-1 specifies requirements for the implementation and operation of electronic information management systems, including the storage and transfer of electronically stored information (ESI).
BS 10008-1 covers: The management of the availability of ESI over time
The electronic transfer or communication of ESI; and
The linking of electronic identity to ESI
BS 10008-1 covers:
Why should you use BS 10008-1?
BS 10008-1 specifies how electronically stored information (ESI) is to be managed by an organization, in an information management system, to enable it to have strong evidential weight and be demonstrably trustworthy about its authenticity and integrity whenever during its lifecycle it needs to be used – whether for business, compliance, legal or other dispute resolution purposes.
If the electronic information management system of an organization conforms to BS 10008-1 it is assured that the evidential weight of ESI managed by the organization will be maximized by ensuring its trustworthiness and reliability. This will reduce the effort and cost involved in dispute resolution as the focus of the resolution process will be less concerned with the authenticity or integrity of disclosed ESI than would be the case if the management system did not conform to BS 10008-1. It is also assured that conformity with this BS 10008-1:2020 will minimize the risks involved with the long-term retention of ESI.
If the electronic information management system of an organization conforms to BS 10008-1 it is assured that the evidential weight of ESI managed by the organization will be maximized by ensuring its trustworthiness and reliability. This will reduce the effort and cost involved in dispute resolution as the focus of the resolution process will be less concerned with the authenticity or integrity of disclosed ESI than would be the case if the management system did not conform to BS 10008-1. It is also assured that conformity with this BS 10008-1:2020 will minimize the risks involved with the long-term retention of ESI.
What’s changed since the last update?
BS 10008-1:2020 supersedes BS 10008:2014, which is withdrawn. BS 10008-1:2020 includes some technical changes with respect to BS 10008:2014 to:
Added guidance on information related to the Internet of things, requirements related to information managed by blockchain/ distributed ledger technology.
All technical aspects of BS 10008-1:2020 have been updated, including storage in the cloud and where information is stored in objects originally created digitally.
Considers the General Data Protection Regulation (GDPR) [1] and the UK Data Protection Act 2018, Information Classification, Marking and Handling (ICMH)