Modification History
Not applicable.
Unit Descriptor
Unit descriptor |
This unit describes the performance outcomes, skills and knowledge required to determine and establish the rules for access and use of records in an organisation, including classifications and procedures for managing access over time. No licensing, legislative, regulatory or certification requirements apply to this unit at the time of endorsement. |
Application of the Unit
Application of the unit |
This unit applies to individuals with understanding and specialist knowledge, with depth in some areas of business or records systems. The application is in relation to individuals with specialist knowledge in business or records systems. These people will generally be senior staff in a specialist recordkeeping environment with responsibility for a team, though they may also be individuals with sole responsibility for recordkeeping systems within larger enterprises. |
Licensing/Regulatory Information
Not applicable.
Pre-Requisites
Prerequisite units |
||
Employability Skills Information
Employability skills |
This unit contains employability skills. |
Elements and Performance Criteria Pre-Content
Elements describe the essential outcomes of a unit of competency. |
Performance criteria describe the performance needed to demonstrate achievement of the element. Where bold italicised text is used, further information is detailed in the required skills and knowledge section and the range statement. Assessment of performance is to be consistent with the evidence guide. |
Elements and Performance Criteria
ELEMENT |
PERFORMANCE CRITERIA |
1. Analyse access risks, rules and responsibilities |
1.1. Establish, analyse and describe the impact of the legal and regulatory framework on access to records for the unit or the entire organisation 1.2. Analyse organisational documentation and information , copies of appraisal reports and access conditions for records of comparable organisations 1.3. Review risk analyses and existing access rules for currency, and determine and document any necessary modifications 1.4. Analyse usage patterns of records in light of identified risks and existing access rules 1.5. Determine specific restrictions and other responses to regulatory obligations for records and activities 1.6. Determine responsibility for reviewing access decisions from gathered organisational documentation and information |
2. Develop access strategy, classifications and rules |
2.1. Consider factors impacting on access rights in developing an access strategy from gathered information, based on established responsibilities for access to records, and in response to identified difficulties and risks 2.2. Determine broad access classifications and reasons for access restrictions from regulatory requirements, identified risks and patterns of use of records within the jurisdiction 2.3. Compile criteria for applying access classifications to records based on gathered information and performed analyses 2.4. Develop rules for applying classifications 2.5. Circulate access classifications and draft rules to users of the business or records system for comment, identify and analyse exceptions, and modify classifications where appropriate 2.6. Determine compliance regime and jurisdictional access regime 2.7. Seek authorisation from appropriate body for access classifications and procedures |
3. Develop procedures to integrate into business or records system |
3.1. Determine access permissions and restrictions for records by applying access rules 3.2. Establish and document categories of users using analyses of access rules and records usage 3.3. Document access permissions and restrictions in relation to categories of users 3.4. Establish mechanisms to control user access applying to records and to users 3.5. Develop and document specifications for recording authorised use of records 3.6. Integrate authorised access procedures into business or records system rules and procedures, and document changes |
4. Review and amend access classifications and rules |
4.1. Develop procedures for reviewing access decisions and for responding to exceptions 4.2. Identify a hierarchy of responsibility for reviewing access decisions to comply with jurisdictional access regime 4.3. Communicate changes to access rules and procedures to all users |
Required Skills and Knowledge
REQUIRED SKILLS AND KNOWLEDGE |
This section describes the skills and knowledge required for this unit. |
Required skills |
|
Required knowledge |
|
Evidence Guide
EVIDENCE GUIDE |
|
The Evidence Guide provides advice on assessment and must be read in conjunction with the performance criteria, required skills and knowledge, range statement and the Assessment Guidelines for the Training Package. |
|
Overview of assessment |
|
Critical aspects for assessment and evidence required to demonstrate competency in this unit |
Evidence of the following is essential:
|
Context of and specific resources for assessment |
Assessment must ensure:
|
Method of assessment |
A range of assessment methods should be used to assess practical skills and knowledge. The following examples are appropriate for this unit:
|
Guidance information for assessment |
Holistic assessment with other units relevant to the industry sector, workplace and job role is recommended, for example:
|
Range Statement
RANGE STATEMENT |
|
The range statement relates to the unit of competency as a whole. It allows for different work environments and situations that may affect performance. Bold italicised wording, if used in the performance criteria, is detailed below. Essential operating conditions that may be present with training and assessment (depending on the work situation, needs of the candidate, accessibility of the item, and local industry and regional contexts) may also be included. |
|
Legal and regulatory framework may include: |
|
Organisational documentation and information may include: |
|
Factors impacting on access rights may include: |
|
Reason for access restrictions may include: |
|
Appropriate body may include: |
|
Categories of users may include: |
|
Users may include: |
|
Mechanisms to control user access may include: |
|
Unit Sector(s)
Unit sector |
Competency field
Competency field |
Knowledge Management - Recordkeeping |
Co-requisite units
Co-requisite units |
||