Compliance

General Data Protection Regulation (GDPR) – How can Customers use OpenText and SAP for Timely Deletion

GDPR

In part 1 of this blog, we discussed what the General Data Protection Regulation (GDPR) means for enterprises and how data and content, which is generated and stored in the course of day-to-day business processes in SAP is subject to this regulation. Our example was the incoming vendor invoice on paper, which is scanned, attached to the SAP transaction via ArchiveLink and then securely stored on the OpenText™ Archive Center. This paper invoice may contain a contact name of the supplier, a phone number, an email address, all data that when combined together could identify an individual, such as an employee of the supplier. This personal data is protected by GDPR. Let’s recap: Collecting and processing data is legitimate as long as it serves a justified purpose, as defined by GDPR, “if data processing is needed for a contract, for example, for billing, a job application or a loan request; or if processing is required by a legal obligation …” Justfied purposes for storing and retaining personal data include laws that govern retention of content, such as tax relevant data and documents, where retaining the scanned vendor invoice or a customer bill is not only justified but an obligation. BUT: When the legitimate reason for the procession has expired, the transactional data and the attached ArchiveLink document need to be deleted. In our example above, the scanned vendor invoice needs to be retained as long as taxation laws require, but be deleted just after this retention period, which is 10 years in Germany for example. This means that enterprises are advised to set up retention rules to govern the necessary retention AND put processes in place that will delete data and attached content in a timely fashion, when it is no longer needed, or when the justified purpose for retention has expired. Retention Management for SAP® Data and Related Content Neither OpenText nor SAP can provide legal advice or guidance in this matter, but they do offer software capabilities that help customers set up policies and procedures for retention and deletion of transactional data and attached content. The products that play together here are SAP® Information Lifecycle Management (SAP ILM) and OpenText™ Enterprise Content Management solutions for SAP: OpenText™ Archiving, Document Access and Extended ECM for SAP Solutions (see OpenText Suite for SAP). SAP ILM provides records management for SAP data and can also be configured to apply the same retention schedule to the attached SAP ArchiveLink documents. However SAP ILM itself does not provide the storage for data and documents but relies on ILM aware platforms for this purpose. OpenText Archiving, Document Access and Extended ECM provide the compliant ILM aware platform for ILM data files and ArchiveLink documents. These solutions store the content, enforce the retention and holds from ILM and pass it up to the hardware level, and, at the end of the lifecycle, execute the deletion request coming from SAP ILM. SAP ILM acts here as leading application for the retention management of SAP data and attached ArchiveLink documents. So far so good, if you only look at SAP data and attached ArchiveLink documents. Enterprise Wide Records Management However, personal information in business documents does not stop at the boundaries of the SAP applications. You will also have content outside SAP, which you want to retain and manage, put under records management and execute timely deletion when the reason for retention has expired. This is where Extended ECM for SAP Solutions comes into play. Extended ECM provides DoD certified records management for SAP ArchiveLink documents as well as NON-SAP content, which can be related to SAP business objects via the ECMLink module. A customer that wants to benefit from the DoD certified records management for documents can use Extended ECM for all unstructured content inside and outside SAP, whereas SAP ILM provides the records management for SAP data. If SAP ILM is to delete data which relates to Extended ECM content that has not yet expired, both solutions can synchronize, so that business documents in Extended ECM will not be orphaned by SAP ILM. At the same time, Extended ECM represents the ILM aware storage platform for SAP data and documents. So SAP ILM together with Extended ECM for SAP Solutions can manage the retention of data and unstructured content inside and outside SAP. Where to Find More Information Learn more about OpenText’s capabilities to support GDPR requirement by reading our other blogs here and here. You can also visit our main web site and learn how OpenText EIM offers capabilities that support customers to prepare for GDPR.

Read More

Five Compliance Challenges Facing Your Organization in 2017

compliance challenges

2017 is turning out to be a tumultuous year for compliance. A combination of Brexit, a Trump presidency and the reform of EU privacy rules has put regulatory change and uncertainty back into the spotlight. Mega-size fines have returned too and compliance officers worry about personal liability more than ever. 1. The GDPR – the countdown is on If your company hasn’t familiarized itself with the General Data Protection Regulation (GDPR) yet you may already be behind. The GDPR was ratified in May 2016 and designed to bring personal data protection into the digital age. It imposes stringent requirements about how companies store and handle the personal data of EU citizens. The regulation will have far-reaching impacts – from how organizations obtain consent, use cookies on their website, to giving teeth to the right to be forgotten. Don’t think that, as this is EU legislation, that GDPR won’t affect you. It affects any organization that collects and stores personal data of EU citizens. With the GDPR becoming enforceable in May 2018, the countdown is on for organizations to prepare. The GDPR will impact more than just the Compliance team but indeed many other parts of the business. Key Steps An important first step is to have clarity of the personal data processing practices and content within your organization, including: • What personal data you process? • Where it is stored across the organization? • Who has access to it? • What consent has been provided and where it is documented? • Where it is transferred from and to (including to third parties and cross-border)? • How it is secured throughout its lifecycle? • Are there policies and processes in place to dispose of personal data? Visit OpenText GDPR to learn more about the regulation and how OpenText can help. 2. Pressure on the Compliance function not letting up Compliance officers have never had a higher profile than they do now but with great power comes great responsibility. Pressure on the compliance function has been steadily increasing and 2017 is no exception. For example, sixty-nine percent of firms surveyed in 2016 expected regulators to publish even more regulations in the coming year, with 26 percent expecting significantly more. In addition, personal liability appears to be a persistent worry. Sixty percent of survey respondents expect the personal liability of compliance officers to increase in the next 12 months, with 16 percent expecting a significant increase. In addition, with the GDPR comes the rare explicit requirement to appoint a qualified compliance role, the Data Protection Officer (DPO). Though the GDPR does not establish the precise credentials DPOs must have, it does require that they have “expert knowledge of data protection law and practices.” Key steps Compliance officers don’t need to be technology experts but need to know how to leverage governance, risk and compliance solutions to make their jobs easier. Other key steps include ensuring your policy framework is up-to-date and that staff understand and are trained their compliance responsibilities. Read the AIIM white paper and infographic: Managing Governance, Risk and Compliance with ECM and BPM. 3. A new administration means changes in regulatory priorities President Trump has been clear and consistent on his desire to reduce the amount of regulations in place. From financial services to the environment, compliance officers are bracing for the changes and what it will mean for them. Most industry experts agree that even where regulations are streamlined or reformed, there will be plenty of work for your team to do to address the vacuum left by previous regulations or to interpret the way the new regulations need to be applied. The picture may be uncertain at the moment but you can be certain that regardless, any changes means there’ll be work to do for your Compliance team. Key steps How do you prepare for the unknown? Many pundits advise wisely that it’s business as usual and not to re-draft policies and procedures just yet. Now’s a good time to evaluate your overall compliance program however. For example, if your organization does not have its regulatory information management house in order now is the time to clean up. Whether your firm is based in or works with the United States, the result of the potential changes to the regulatory landscape means that businesses will need to be adaptable in order to quickly take advantage of opportunities, mitigate risks, and stay in compliance. Learn about OpenText compliance solutions. Continue to read compliance challenges 4 and 5 on page 2.

Read More

The 3 Most Asked Questions about Fax Technology in Healthcare

healthcare

Freshly back from HIMSS 2017, I spent some time reflecting on the rich conversations that I had with tradeshow attendees. These top three questions were so consistent among the conversations that I wanted to share them, just in case you missed them at HIMSS: Q: How are healthcare organizations using fax solutions to save costs or be more efficient?  A:  Two words: Simplify and Optimize. Fax and paper continue to dominate patient information exchange, accounting for as much as 90% of all exchanges. First, it’s important to simplify their faxing by eliminating the security and compliance risk of standalone fax machines and manual faxing and replace them with a secure, digital fax solution. This eliminates unnecessary paper and the costly, time-consuming task of manual faxing. Second, healthcare organizations should optimize their faxing by integrating their digital fax solution with Electronic MR systems, MFP devices, document management systems or other healthcare applications. By integrating electronic fax with the devices and applications they use the most, healthcare providers get access to the right patient information when they need it and where they need it. Q:  What trends are you seeing with fax technology in healthcare? A:  There are 2 major trends in healthcare today:  Fax volumes are rising (yes, you heard me right) and hybrid fax deployments.  First, fax volumes are rising.  As more patients enter the health system, attributed to more people having affordable access to healthcare and the healthcare needs of the aging population, fax volumes increase, too. The second trend is the shift to hybrid fax deployments, which combine an on-premises fax server with cloud-based fax transmission. Hybrid fax deployments are becoming more and more popular because they simplify existing on-premises fax server deployments and allow healthcare organizations to leverage the cloud for just the transmission of the fax. In addition to simplifying the deployment, the on-premises fax server keeps its integrations with EMR systems, MFP devices, and other healthcare applications and there is no change to the user experience or established patient information exchange workflows. Q:  Where is fax technology headed and how is OpenText innovating in healthcare? A:  As other forms of patient information exchange develop, such as Direct messaging and other forms of electronic exchange, it’s important that fax technology evolve to coexist with these new forms of exchange because fax is so deeply rooted in healthcare. When fax coexists with other forms of exchange, it allows healthcare organizations to begin to transition to new forms of exchange at their own pace, or as importantly, at the pace of other providers in the healthcare continuum, with minimal or no change to the user experience (or better yet, make the user experience better!). For example, OpenText has recently launched an innovative healthcare solution that combines fax and Direct messaging in a single solution, allowing healthcare organization to convert an outbound fax to a Direct message whenever possible with no change to how they send a fax today. I’m already looking forward to HIMSS 2018 and the great conversations we will have then!

Read More

Regulatory Matters: Collaboration is key for Life (Sciences) in 2017 – Part Two

Regulatory

The Life Sciences sector is very innovative. The Boston Consulting Group found that almost 20% of the world’s most innovative companies came from the sector. In fact, PwC suggests that Healthcare will surpass Computing as the largest industry by R&D spend by 2018. Shining a light on the innovation paradox Yet, for all the effort, there is still a lack of new products. Last year marked a six-year low for new drug approvals by the FDA. The rise of treatment-resistant superbugs has shone a light on the fact that there hasn’t been a completely new antibiotic for over 30 years. The poor return on R&D investment explains the paradox between innovation increase and new product decrease. Deloitte found that returns on research and development investment at the top 12 pharmaceutical companies fell to just 3.7 percent in 2016 from a high of 10.1 percent in 2010. While many Life Sciences executive remain upbeat about the development of new medicines, it’s clear that two factors will drive success: achieving improved operating efficiencies internally and creating more strategic alliances externally. The Internet of Things will increase the focus on cybersecurity In 2014, the Financial Times found that cyber security for the healthcare and pharmaceutical industries worsened at a faster rate than any other sector. As the sector becomes more and more IT driven in terms of innovation, R&D and manufacturing, cyber crime has been increasing in areas such as intellectual property (IP) theft, international espionage and denial of service attacks. As the sector looks to embrace digital transformation and the Internet of Things (IoT), cyber security is likely to be top of every CIOs priority list. The trend towards preventative and outcome-centric models relies on the ability to monitor and measure the health of individual patients. Whether wearables or other intelligent medical devices, the requirement for some form of online connectivity creates a vulnerability. At a recent cyber security conference, experts showed how items such as an insulin pump can be hacked. This represents a real threat to the individual but also raises the possibility of devices such as pace makers being used to launch denial of service on other targets. Addressing cybersecurity concerns, the FDA has issued guidance to medical device manufacturers to mitigate and manage cybersecurity threats. The excitement around IoT has to be tempered with the need to deliver water-tight security. This stretches way beyond the ability to gain access to user devices. It has to encompass data in transit and the management and storage of data within the life sciences company itself. Security-by-Design – built into all OpenText solutions – will become a foundational element of every part of the IT infrastructure for healthcare and pharmaceutical companies. Achieve operational efficiencies to improve margin and time to market With the focus firmly on value-based medicine, personalized care and population health, the Life Sciences sector is experiencing new levels of convergence and collaboration. Companies have begun to transform their business operations through collaborative product development and new service development. The ‘not invented here’ model is no longer appropriate for increasingly complex and expensive product lifecycles. As Deloitte points out: “Collaborating throughout the product development lifecycle is becoming an increasingly common and effective way for biopharma and medtech companies to offset mounting R&D costs, funding shortfalls, increasing disease complexity and technology advances”. In 2017, life sciences companies are transforming their traditional, linear supply chain into a supply chain of dynamic, interconnected systems that integrate their ecosystem of partners. This new supply chain modality allows organizations to extend their value chain beyond product development into the enablement of care in an increasingly outcome-based healthcare environment. By creating a secure, open and integrated supply chain, organizations are able to reduce cost, increase quality and manage risk across the partner ecosystem. It provides the foundation to quickly and easily extend the partner network for Life Sciences. As you evaluate your business strategies and priorities over the next 12-18 months, collaboration with trusted partners like OpenText can prepare your organization for the challenges ahead. Contact me at jshujath (@opentext.com) to discuss how we can help. If you missed the first blog in this two part series, you can view it here.

Read More

General Data Protection Regulation (GDPR) – What is it and how Does it Impact Enterprise Information Management

GDPR

In May 2016, a new EU Regulation and Directive was released to govern the protection of personal data, the General Data Protection Regulation (GDPR). It will enter into force after a two year grace period in May 2018. This is just little more than one year to go and enterprises need to get active to evaluate what it means for them and how they need to prepare. As stated on the European Commission website: “The objective of this new set of rules is to give citizens back control over of their personal data, and to simplify the regulatory environment for business.” Data protection laws are nothing new in the European Union. However, the new GDPR rules presents some significant impacts and changes to current data privacy regulations. For one, what used to be a directive, is now a regulation with full force of the law, valid across all EU countries. And despite BREXIT, the UK government has confirmed that UK will implement GDPR (read the UK Information Commissioner’s blog on this topic). The other important aspect is that GDPR now imposes substantial fines upon individuals and enterprises that do not adhere to the law. Minor breaches will be fined up to 10 Million EURO, or up to 2% of the total worldwide annual turnover of the preceding financial year for a business, whichever is higher. Major breaches will be fined up to 20 Million EURO, or up to 4% of the total worldwide annual turnover of the preceding financial year for a business, whichever is higher. And it should be re-emphasized that the turnover is not just the turnover of the EU located part of the enterprise, but the worldwide turnover of the enterprise. Protecting Personal Data of EU Citizens – What does that mean? As GDPR protects the personal data of the citizens of the European Union, it imposes duties upon enterprises, that collect and manage personal data. These entities are called “Data Processors”. Data processing entities located in the EU are subject to GDPR, but also companies outside the EU that process personal data of EU citizens. So the regulation also applies to non-EU enterprises: EU GDPR requires compliance outside of the EU as well (EU GDPR applies for non-EU companies with contact points to the EU). Collecting and processing data is legitimate as long as it serves a justified purpose, as defined by GDPR, for example “if data processing is needed for a contract, for example, for billing, a job application or a loan request; or if processing is required by a legal obligation …” Such justified purposes for storing and retaining personal data are, for example, laws that govern retention of content, such as tax relevant data and documents, where retaining the scanned vendor invoice or a customer bill is not only justified but an obligation. What is the relevance of GDPR for Day-to-Day Business Processes? There is personal data processed and stored during the course of day-to-day business processes that relates to business partners, such as customers and suppliers, in the procure-to-pay processes as well as order-to-cash process. To give some concrete examples, let’s now take a look at an enterprise that uses SAP ERP to manage their processes and OpenText to attach business documents to these processes. It is of course not just about the data created and stored in the SAP database of the leading enterprise application (ERP, CRM, …), it is also about the business documents that are captured during this process. Take for example, an incoming vendor invoice on paper, which is scanned, attached to the transaction via ArchiveLink and then securely stored on the OpenText™ Archive Center. Or in the example of an order-to-cash process it an incoming sales order and delivery note to a client, which are linked to the SAP order and stored in OpenText. May 2018, GDPR will start to apply following a two-year transition period to allow the public and private sector get ready for the new rules. So how should enterprise prepare and get ready for GDPR? With regards to aspects of storing personal data for a justified purpose, enterprises need to set up policies and procedures – not only to retain content as long as they are obliged to do by law such as taxation or product liability laws, but also to delete content in a timely fashion when it is no longer needed respectively the justified purpose for retention has expired. Learn more about OpenText’s capabilities to support GDPR requirement in the SAP environment in a forthcoming blog post, and also by reading our other blog entries here  and here. You can also visit our web site and learn how OpenText EIM offers capabilities that can support customers to prepare for GDPR. Register for the Webinar by OpenText and Digital Clarity Group on GDPR You can register for this webinar “New EU Data Policies Will Transform Business Practices Across the Organization: Get Ready for the GDPR” which is being held on March 1st. In this interactive format, Digital Clarity Group’s Tim Walters and OpenText’s Janet de Guzman discuss key questions that frame the conversations that you should be having, including: New insight into GDPR provisions and customer expectations about use of their data How organizations can seize opportunities to achieve competitive advantage under the GDPR Tools for starting critical discussions with partners and internal stakeholders

Read More

Regulatory Matters: Collaboration is key for Life (Sciences) in 2017 – Part One

Life Sciences

Life Sciences, like life itself, is constantly evolving. The rigid, product-based environment of complementary but discrete healthcare specialists is rapidly being replaced with a fluid ecosystem where growing and global value chains and strategic alliances drive innovation and price competitiveness. Secure collaboration is key as Greg Reh, Life Sciences sector leader at Deloitte says: ” All of the pressures that life sciences companies are under, be they cost, regulatory or operational, in some way shape or form can be de-risked by adopting a much more collaborative approach to R&D, to commercialization, to manufacturing and distribution”. As increased collaboration touches every part of a Life Sciences business, there are a number of trends that will affect most companies during 2017. Prepare for uncertainty in the compliance landscape There has been a great deal written about the affect that the Trump administration will have on regulatory compliance.  Amid all the uncertainty, Life Sciences companies can’t take a ‘wait and see’ attitude. One thing we do know for certain is that new legislation and regulations will keep coming. Whether the pending regulations on medical devices in the EU  or MACRA  (the Medicare Access and CHIP Reauthorization Act) in the US, regulatory change does not stand still – not even for a new president! We also know that there is greater focus on enforcement. According to law firm, Norton Rose Fulbright, almost one third of all securities class actions in the US in 2016 were against Life Sciences companies, a figure that had risen in each of the previous three years. The company noted that 56% of claims in 2014 were for alleged misrepresentations or omissions. In response, companies have been placing focus on effective marketing content management to develop appropriate quality control on promotional and advertising materials. In addition, enforcement is becoming more stringent is areas such as TCPA and FCPA – where last year the global generic drug manufacturer Teva International agreed to pay $519 million to settle parallel civil and criminal charges. Within extended value chains, compliance becomes an increasingly collaborative process to ensure that information is available to the regulators. However, in compliance, collaboration is working both ways. Life Sciences companies need to be more collaborative as global regulators and enforcement agencies are already cooperating with each other. As global regulators and agencies share information and work together, it becomes even more important to manage compliance risk across the organization and beyond. Consumer price sensitivity continues to drive value-based pricing models According to Statista, the sales of unbranded generic drugs almost doubled between 2005 and 2015. In Japan, the government has an objective of substituting 80% of branded drugs with generics by 2020. There is increasing price sensitivity within both the buyer and regulator communities. Within many economies, the depressed fiscal environment limits the potential for healthcare spending. Governments and insurance companies want to shift payment for product sales to patient outcomes. In fact, the U.S. Centers for Medicare and Medicaid Services (CMS) wants 90% of all Medicare payments to be value-based by 2018 . This value-based pricing model places extra burdens on drug companies but also offers opportunities for the organzations to maintain the profitability within branded drugs. It provides the opportunity to look ‘beyond the pill’ to look more at the patient and what they’re doing. This requires end-to-end evidence management systems that exploit the masses of data created through managing patient outcomes to deliver value-added services around patient wellbeing, rather than simply selling more or more expensive drugs. At OpenText, we would expect most digital transformation efforts to include an element to enable the correct environment for value-based pricing, especially as operational efficiencies and time to market are improved. Part Two of this blog is available to read here.

Read More

Why Lawyers are Adopting AI Faster Than You

AI

When you think of bold, innovative users of transformational technology like artificial intelligence (AI), you naturally think: lawyers. It’s obvious, right? Risk-averse, measured, charge-by-the-hour, brick-and-mortar professionals that parse the written word (“Heretofore? No, hitherto!”) and deliver cautious, nuanced advice (“I didn’t hear your question, but regardless my answer is: It depends.”). Who better to make practical use of today’s cutting-edge AI? (“Alexa, draft an amicus brief in support of my motion in limine. Please.”) Lest the irony be missed, the legal industry is deservedly notorious for being a technological step or two—or more—behind its clients. Yet law firms and savvy corporate legal teams have been pioneering the use of artificial intelligence since the last decade. There is not a litigator of note today that hasn’t heard of Predictive Coding or Technology Assisted Review. These terms refer to the use of machine learning to mimic an attorney’s decision-making in the context of legal discovery, the process of identifying and reviewing up to millions of documents to determine which must be produced to the other side in litigation or an investigation. Predictive Coding can mean dramatically faster and more accurate document analysis and review. Why are lawyers leveraging AI for document review? Big Data: The growing amounts and kinds of data generated by workers—in office programs, cloud apps, chat systems, shared workspaces—means an ever-increasing challenge for legal and compliance officers. To them, all of this work product is potential evidence. Bigger cost: Of the more than $200B spent on litigation across the US annually, 70% is spent on discovery, and 70% of that discovery spend goes to document review. So, anything that can accelerate or reduce review means substantial savings for corporate clients. Irrelevant content: No one likes reviewing irrelevant data. (Imagine if you had to carefully read your junk email before deleting it.) Front-loading relevant content makes document review more engaging for attorneys, which improves their productivity and accuracy. The need for speed—to insight: Over 95% of civil cases settle, as the uncertainty and cost of a trial is generally to be avoided at nearly all costs. Finding the evidence that proves or disproves your liability early on is key to negotiating a favorable settlement. Think Netflix or Pandora on steroids. Predictive Coding is about finding more like this, where this is a piece of unstructured data (an e-mail, slide deck, letter, memo, etc.) and the more like are documents that are conceptually similar—even though they may not contain the same words that made this relevant in the first place. Documents that are similar in concept but use substantially different language can be equally significant for litigation and investigations. That’s why Predictive Coding goes far beyond traditional Boolean keyword search. To enable Predictive Coding, the system performs statistical analysis on the co-occurrences of all the words in each document ingested, even across millions of documents. It then creates sophisticated models around a handful of documents judged by attorneys to be relevant to the issue under review. It looks across the data set and finds more documents closely related to those models and suggests them to the attorneys for priority review. As attorneys review the suggested documents and label them relevant or irrelevant, the system gets smarter, refining the document models for even better results in the next round. With Predictive Coding, attorneys can find virtually all the relevant content in a data set by reviewing just 10-30% of it, shaving off weeks or months of tedious review and surfacing critical evidence far faster. What OpenText is doing about it: In 2016, OpenText acquired Recommind, a pioneer in advanced analytics for the legal industry for over 15 years. With unparalleled Predictive Coding and other unique capabilities, OpenText™ Discovery Suite helps enterprises discover what matters in their data—faster and more accurately. 2017 is poised to be a banner year for legal technology, as awareness and experience with Predictive Coding are approaching critical mass. Our vision is to see machine learning used to add value to every matter, on virtually every data set. After all, who better to drive technological innovation than your venerable counsel?

Read More

Westpac Bank Automates and Speeds Up Regulatory Reporting with OpenText Analytics

Westpac

When Westpac Banking Corporation was founded in 1817 in a small waterfront settlement in Australia, banking was rudimentary. Records were kept with quill pens in leather-bound ledgers: Pounds, shillings, and pence into the cashbox; pounds, shillings, and pence out.  (Until a cashier ran off with half the fledgling bank’s capital in 1821, that is.) Now, exactly 200 years after Westpac’s parent company opened its doors, it’s not only the oldest bank in Australia but the second-largest, with 13 million customers worldwide and over A$812 billion under management. Every year it does more and more business in China, Hong Kong, and other Asia-Pacific nations. The downside to this expansion is: More forms to fill out – managing the electronic and physical flow of cash across national borders is highly regulated, requiring prompt and detailed reports of transactions, delivered in different formats for each country and agency that oversees various aspects of Westpac’s business. These reports require information from multiple sources throughout the company. Until recently, pulling out and consolidating all these complex pieces of data was a manual, slow, labor-intensive process that often generated data errors, according to Craig Chu, Westpac’s CIO for Asia.  The bank knew there had to be a better way to meet its regulatory requirements – but one that wouldn’t create its own new IT burden. A successful proof of concept led to Westpac adopting an information management and reporting solution from OpenText™ Analytics. To hear Chu explain how Westpac streamlined and automated its reporting process with OpenText™ iHub and Big Data Analytics, and all the benefits his company has realized, check out this short video showcasing this success story.  (Spoiler alert: Self-service information access empowers customers and employees.) If you’d like to learn more about what the OpenText Analytics Suite could do for your organization, click here.

Read More

A Duty to Safeguard Client Content

safeguard client content

We’ve all read the headlines. Security breaches continue to shock us for their magnitude and reach—from reports on hacking of Democratic National Convention (DNC) email servers during the 2016 presidential election; to the reported theft of more than 1 billion Yahoo account holders in December. The impact of a breach can be significant. And, not just for the clients—whose loss of personal information can make them vulnerable to financial loss—but also for the organizations who have failed to safeguard that information. A Measured, Disciplined Approach Digital security is complex and requires a multi-pronged approach. One part of this approach is provided by Enterprise Content Management (ECM), which many consider a “must have”—a foundational technology to safeguard sensitive digital content, while ensuring it remains readily accessible for day-to-day operations. At the core of every ECM solution is a Document Management repository—providing a secure home and a structured approach for saving, managing, and governing digital content. Content in the repository is protected by system-wide security and varying levels of more granular security. The ability to securely access content anytime, anywhere by mobile devices is key, as is the ability to check out and securely share content externally in the cloud. User Adoption is Essential Solutions for securing content are only as good those who use them—and many choose not to. Hyperion Research tells us that in the average ECM-enabled legal organization, for example, only 70 percent of users actually use the system. The rest store content however and wherever they like—on desktops, in file shares, in unsanctioned, poorly secured cloud file-sharing repositories. Ethical Reasons to Safeguard Client Content Everyone gravitates to what is easy; to the path of least resistance. In the end, however, the decision to safeguard client content can be considered an ethical or moral one. Lawyers, in particular—regardless of whether they are employed by law firms, in government, or in legal departments of organizations across varying industries—have a professional duty to safeguard client content or “property”. The American Bar Association, for example, requires that lawyers safeguard client property in their possession by holding it separate from their own property to prevent co-mingling (ABA, section 1.15). It is generally accepted that files and documents belong to the client, not the firm. In addition, lawyers must maintain client property in a way that is not only secure, but also readily available and retrievable over time. Complying with Regulatory Requirements ECM solutions are purpose-built to meet these fiduciary requirements, as well as applicable regulatory requirements—and not just for legal, but for firms in many industries. If employees don’t effectively maintain client information they may compromise ethical obligations to safeguard client property and also increase their firm’s exposure to compliance risk. In the end, those firms will have a tough time demonstrating compliance with HIPAA. They’ll have difficulty securing documents in compliance with ISO 27001, Sarbanes-Oxley (SOX), and countless other regulations. Client information is a valuable commodity and a growing target for theft. Hacking techniques are constantly evolving. Regulations are growing to protect that information. We all have an obligation to ensure the safe, secure management of client information, and with ECM solutions like eDOCS, securing content is not only possible, but easier than ever. More information is available here.

Read More

Telco Accessibility 101: What’s Now Covered by U.S. Legislation

telco accessibility

In a word, everything. Name a telecommunications product or service and chances are it has a legal requirement to comply with federal accessibility laws. Let’s see… Mobile connectivity services for smartphones, tablets, and computers? Check Smartphones, tablets, and computers? Check Internet services (e.g., cable, satellite)? Check Television services (e.g., cable, satellite, broadcast)? Check Televisions, radios, DVD/Blu-ray players, DVRs, and on-demand video devices? Check Email, texting, and other text-based communication? Check VoIP communications and online video conferencing? Check Fixed-line phone services? Check Fixed-line telephones, modems, answering machines, and fax machines? Check Two tin cans attached by a string? Check All of these products and services are covered by U.S. accessibility legislation (except the cans and string). What laws are we talking about here? Mainly Section 255 of the Telecommunications Act of 1996, for products and services that existed before 1996, and the Twenty-­First Century Communications and Video Accessibility Act (CVAA) of 2010, which picked up where Section 255 left off, defining accessibility regulations for broadband-enabled advanced communications services. Web accessibility legislation, while not telco-specific, is also relevant. The Americans with Disabilities Act (ADA) doesn’t explicitly define commercial websites as “places of public accommodation” (because the ADA predates the Internet), but the courts have increasingly interpreted the law this way. Therefore, as “places of public accommodation,” company websites—and all associated content –must be accessible to people with disabilities. For more insight on this, try searching on “Netflix ADA Title III” or reading this article. (By the way, a web-focused update of the ADA is in the offing.) Last but not least, we come to Section 508 of the Rehabilitation Act, which spells out accessibility guidelines for businesses wanting to sell electronic and information technology (EIT) to the federal government. If your company doesn’t do that, then Section 508 doesn’t apply to you. What this means for businesses Not unreasonably, telecommunications companies must ensure that their products and services comply with accessibility regulations and are also usable by people with disabilities. This usability requirement means that telecom service providers must offer contracts, bills, and customer support communications in accessible formats. For product manufacturers, usability means providing customers with a full range of relevant learning resources in accessible formats: installation guides, user manuals, and product support communications. To comply with the legislation, telecommunications companies must find and implement cost-effective technology solutions that will allow them to deliver accessible customer-facing content. Organizations that fail to meet federal accessibility standards could leave themselves open to consumer complaints, lawsuits, and, possibly, stiff FCC fines. Meeting the document challenge with accessible PDF Telecommunications companies looking for ways to comply with federal regulations should consider a solution that can transform their existing document output of contracts, bills, manuals, and customer support communications into accessible PDF format. Why PDF? PDF is already the de facto electronic document standard for high-volume customer communications such as service contracts and monthly bills because it’s portable and provides an unchanging snapshot, a necessity for any kind of recordkeeping. But what about HTML? Why not use that? While HTML is ideal for delivering dynamic web and mobile content such as on-demand, customizable summaries of customer account data, it doesn’t produce discrete, time-locked documents. Plus, HTML doesn’t support archiving or portability, meaning HTML files are not “official” documents that can be stored and distributed as fixed entities. Document content is low-hanging fruit Document inaccessibility is not a problem that organizations need to live with because it can be solved immediately — and economically — with OpenText’s Automated Output Accessibility Solution, the only enterprise PDF accessibility solution on the market for high-volume, template-driven documents. This unique software solution enables telecommunications companies to quickly transform service contracts, monthly bills, product guides, and other electronic documents into WCAG 2.0 Level AA-compliant accessible PDFs. Whatever the data source, our performance numbers are measured in milliseconds so customers will receive their content right when they ask for it. OpenText has successfully deployed this solution at government agencies, as well as large commercial organizations, giving them the experience and expertise required to deliver accessible documents within a short time frame, with minimal disruption of day-to-day business. Fast, reliable, compliant, and affordable, our automated solution can help you serve customers and meet your compliance obligations. Learn more about the OpenText™Automated Output Accessibility solution.

Read More

OpenText Live Webinar Series – Upcoming Schedule

OpenText Live Webinar Series

We are fast approaching the holiday season with the New Year peeking just around the corner, but before you get swept up into the hustle and bustle of this “most wonderful time of the year,” we at OpenText™ Live invite you to check out a few webinars that we have lined up for November and December. With the latest release of OpenText™ Release 16 Enhancement Pack 1 (EP1), our Experience Suite has undergone major changes with the additions of powerful Customer Communications and Experience Management solutions such as TeamSite, Exstream, MediaBin, Qfiniti, Explore and more! These enhancements mark the revolution of customer communications in the digital world, and we want to give you an exclusive first hand look into what these solutions can offer your business. November 15: OpenText™ ECM Content Migration (11:00AM EDT) Need help migrating ECM content? OpenText partner FME demonstrates best practices in this webinar. We’ll show you: – Migration and upgrade best practice pathways to OpenText™ Content Suite 16 – Cost savings with migration-center for your content migration – A short live demo Register here November 29: Convert Correspondence into Engagements with OpenText™ Communications Center (11:00AM EDT) Learn more about OpenText Communications Center and its enhanced interactivity with other OpenText product suites including Content Suite, Process Suite, Business Network and Analytics. Turn engagement into insight. Register here December 1: What’s New in OpenText™ Digital Asset Management? (11:00AM EDT) What’s new for OpenText Digital Asset Management (DAM) and the Enhancement Pack 1 (EP1) release? If you’re using Media Management or MediaBin, you’ll want to check out this session to find out what our Product Management team has in store. Learn about the latest features and product strategy. Register here December 6: The Latest Innovations in Exstream 9.5 and Delivery Manager 3.0 (11:00AM EDT) Join us for an overview of Exstream 9.5 which was announced late September and Delivery Manager announced in October. Product experts will be showing live demonstrations. Register here December 8: Syntergy Content Sentry: The Next Generation of Data Loss Prevention (11:00AM EDT) OpenText partner Syntergy will demonstrate a new Data Loss Prevention (DLP) solution for OpenText™ Content Server. The capabilities of this powerful solution allow it to learn what constitutes normal activity for users and what alerts or triggers automated policy reactions when suspicious activity is detected. Register here  December 13: How the Contact Center is Driving the Customer Experience (11:00AM EDT) Attend this session to learn more about OpenText™ Qfiniti and how Workforce Optimization (WFO) solutions are monitoring the customer experience through call recording, coaching employees, measuring the Voice of the Customer (VoC), and leveraging powerful analytics to make every interaction the best it can be. Register here December 15: OpenText™ CEM Strategy Update for WCM Products (11:00AM EDT) We’re creating a powerful new Website Content Management platform, and we want you to learn all about it. With the release of Enhancement Pack 1 (EP1), the WCM platform welcomes OpenText™ TeamSite to the mix, rounding out an effective customer communications program that surpasses the industry standard. Register here The OpenText Live team is committed to delivering content that keeps you updated on the latest OpenText product releases, trends and demands within the digital world as well as demos that exemplify the best solutions features for your business. Communicate directly with the experts and receive the technological know-how for implementing and managing your OpenText products. All of our webinars are recorded and available to registered customers at My Support. Visit our website for more information or sign up to receive weekly invitations to our webinars.

Read More

Fighting Fraud Through Better ECM

Fighting Fraud

Headlines these days often point to data security cases such as the breach at Yahoo!, affecting millions of users. But in the financial services industry, including insurance, it’s not just about data theft. It’s about fraud. As we continue to drive implementations of InfoArchive, there is a very positive use case emerging that I think is worth blogging about – fraud detection. In particular, the ability to search many content types to perform forensics and analysis. This can turn up insider employees siphoning funds, or external parties manipulating processes for financial gain. Either way, the ability to digitize content and leverage it to protect yourself seems an essential skill in our digitally-transforming economy. How can you get started? Here are three suggestions:  1 – Capturing Content Take a look at your current methods for capturing content as it comes into your organization. Are applications filled out online? Is there a bot on your web site asking for information? Are you using webcams and video, or online voice collaboration? Don’t forget to consider how and where smart phones or devices can be leveraged for first point of capture. Understanding how your stakeholders naturally communicate with your enterprise may turn up new types of content formats. Assessing these for today’s use, then projecting where you expect interactions to grow – say, more voice-collected information – can solidify your requirements. This can help your architects better align recognition, extraction, and classification technologies to fit your fraud detection use case. 2 – Retaining Content One of many reasons I love the idea of extreme archiving is that the right content is always there when you need it. Nothing is worse than detecting some type of financial fraud, and finding you have no pools of content or history to investigate it and recover damages. Regulatory compliance will require you retain content long-term, so might as well leverage the same effort for multiple benefits and use cases. Start by designing a content retention component into your content management strategy. Consider disaster recovery needs and compliance requirements, and the content formats you discovered in step one above. 3 – Searching Content Perhaps one of the most important considerations for the use case of fraud detection is search and query capabilities. It’s one thing to be smart about what content you can find and save, and quite another to search it quickly when something serious happens. (Just ask Bangladeshi bank officials, who realized only too late they had transferred billions of dollars to hackers). Consider where your investigators may be physically located, and what types of devices they may use to query your content. Of course, run through multiple scenarios to ensure the right combination of content format, syntax, language and other search nuances are available to aid in their investigation. Fortunately the financial services sector is already investing in fraud prevention methods. Considering OpenText as part of your fraud detection strategy can deliver a solid ROI on content management solutions, while reusing the capture, retention and search tools you need anyway for managing regulatory compliance. How are you leveraging OpenText for business benefits such as fraud detection? Share your feedback below.

Read More

Announcing…The First Cloud Fax Solution Built Specifically for Healthcare

cloud fax

Faxing remains one of the top methods of patient information exchange in healthcare. Despite this dominance, healthcare providers continue to use fax solutions – most notably fax machines – that are a security risk, inefficient and disruptive to workflows, and especially aren’t designed for the unique needs of the healthcare industry. Today, OpenText announced the launch of OpenText™ Fax2Mail for Healthcare, the first cloud fax solution built specifically for the US healthcare industry. This new solution, which combines the reliability of OpenText cloud faxing with an easy-to-use, intuitive portal powered by Kno2TM, brings patient information exchange and clinical workflows together in a single solution. Improving patient information exchange, starting with cloud faxing First and foremost, isn’t it time to get rid of fax machines? The first step is to get providers to move away from paper-and-toner faxing to a digital form with cloud fax. The compliance risks, inefficiency and productivity loss with paper-based, manual faxing are well understood, yet the use of standalone fax machines continues to prevail. Cloud faxing with OpenText Fax2Mail is an easy way to start to transform how patient information is exchanged.  Fax2Mail enables the secure and encrypted electronic exchange of clinical documents, reducing compliance risk associated with paper-based faxing. Fax2Mail eliminates all on-site infrastructure, providing the easiest form of faxing available, allowing you to focus on patient care. More than “just another cloud fax solution” With the introduction of OpenText Fax2Mail for Healthcare, faxing, Direct messaging and other forms of electronic exchange are combined together in a fully compliant, interoperable patient document exchange platform, ultimately, improving patient care.  The new solution includes powerful tools that mirror existing manual workflows and streamlines them, eliminating paper-based and manual patient information exchange to digitize and simplify the document trail and expedite access to patient information. Designed for administrators and clinicians, OpenText Fax2Mail for Healthcare delivers the right patient information to the right provider at the right time. Combing all forms of patient information exchange while digitizing workflows makes this a cloud fax solution like none other in the industry. OpenText Fax2Mail for Healthcare is an easy-to-use, interoperable platform that: Reduces the burden of paper-based and manual healthcare workflows and enables digital transformation in the healthcare industry Combines all forms of information exchange and manages healthcare workflows in a single location with built-in integration to external systems, such as EMRs Enables fully electronic, interoperable, digital patient information exchange to connect with other healthcare providers using any form of common exchange such as fax, Direct messages and electronic document exchange Eliminates fax machines and fax-related onsite infrastructure, software fees, telecom charges and capital costs Learn more about OpenText Fax2Mail for Healthcare.

Read More

Secure Information Exchange – Forgotten in your Digital Transformation Strategy?

secure information exchange

Regardless of the widget your organization makes or service it provides, at the very core of every organization is the information that fuels its decisions and ultimately, its success. And that information exchange between an ecosystem of connected customers, suppliers, and business partners must be secure With information as the currency of the digital economy, organizations don’t succeed just based on size, scale, access to resources, or geographic presence—it’s the degree to which they can take advantage of information to innovate and grow. It’s critical that organizations connect business processes across their ecosystem, and secure the information flows that support those processes. Not only is this essential for business continuity, it’s a must for efficiency and productivity in a hyper-competitive digital economy. As more and more organizations adopt a digital transformation strategy, a key component to remember is the transformation of how information is securely exchanged. Digitization must include tools for secure information exchange that support operational gains while improving agility, employee productivity, and higher levels of compliance to reduce risk. While many organizations have sophisticated systems in place to exchange raw data, large files, and many forms of content, there is one technology that continues to persist in every corner of the world: fax. Despite being a 150+ year old technology (yes, it’s true!), faxing has remained a steadfast communication method that provides a direct and secure path for exchanging information. Organizations which do not have a digital transformation strategy that includes a secure information exchange component stand the risk of inefficiency, higher costs, slower gains and lower productivity, as well as security and compliance risks. As an integral part of secure information exchange solutions, electronic fax servers and services are designed to integrate with back-end systems to facilitate the secure exchange of content to and from those applications. Some considerations when choosing an electronic fax solution include determining the needs of the business, process or workflows and evaluating vendor capabilities that fit your needs. While most electronic fax solutions are alike in their core functionality (sending/receiving from email, centralized fax management, tracking and reporting), be sure to choose a vendor that your organization can truly consider a trusted partner, vested in your success as much as you are. Not all vendors are alike, in both capabilities and vision. Seek vendors with advanced, proven functionality, and those which are able to demonstrate a vision that supports your goals and aligns with your digital transformation journey. Ideally, seek a vendor that has capabilities that include but are broader than secure information exchange solutions:  a vendor that can ultimately help you transform your organization to support a fully integrated Enterprise Information Management (EIM) platform to help you on your journey to digital transformation and create a better way to work. Base your secure information exchange strategy on digital, enterprise-grade fax solutions. Then build a robust communication ecosystem that is integrated and automated to reduce risk, enable compliance, and accelerated time to revenue. Whether you choose an on-premises, cloud-based, or hybrid model, secure information exchange can transform your business.

Read More

ECM Show and Tell at Enterprise World 2016

Enterprise World

We’re closing in on two months since we unveiled the most significant release in the history of OpenText, including, of course, a powerful new version of OpenText™ Content Suite 16. After a busy few months with the ECM product team doing the ‘CS16 show and tell’ via the OT Live webinar series, our next stop is in-the-flesh in Nashville at Enterprise World 2016. Following so closely on the heels of the Release 16 launch, this year’s event is going to have a special vibe: There’ll be less, “Let’s talk about what’s coming!” and a lot more, “Let see how to leverage what’s here!” But, of course, we aren’t the only ones participating in a little ‘show and tell’ at Enterprise World. This conference is truly a gathering of the top minds in ECM—including those of you who work with the OpenText ECM solutions every day! Here are a few things on the ‘not to be missed’ list: On the more formal side, we have a wealth of Customer Panel Breakouts this year including ECM-232, A Discussion on Upgrading to Content Suite 16; ECM-233 Real World Stories of Transforming through ECM; and ECM-226, Harnessing the Cloud to Amplify the Value of ECM. Upgrading to Release 16 and Content Suite 16 is a strategic move to fast-track your digital transformation. To set you off on the right path, the OpenText Services Experts will be on hand helping you leave the event with a concrete plan of action specific to your organization. Read Bob Schindelar’s recent blog post on making the most of the OpenText Professional Services resources on hand at the event. If there’s one thing I hear every year when we ask you about the best part of the conference, it’s the opportunity to spend face-time with your peers exchanging ideas and experiences. As with previous events, the ECM product experts will be your hosts in the Content Theater where we’ll help you experience and test drive the new features. The kicker, there’s really no better place for firing up an impromptu conversation on the topic than the Content Theater. The cross-pollination of ideas here is priceless! So, to kick off the build-up to Enterprise World and help drive home that, by attending, you are also taking a driver’s seat in defining the future of ECM, I’m going to suggest we all do a little homework to bump up our knowledge of the rapidly evolving ECM landscape. I encourage you to read a few of the most recent reports by the respected industry analysts who spend their careers scrutinizing what we all mean when we talk about how digital disruption is transforming information management. Here are a few findings from key ECM analysts’ latest reports: In 2015, Forrester split their ECM Wave into two distinct reports to better address the use cases most organizations are adopting for ECM. Supporting the ECM value of process productivity, the Forrester Wave: ECM Transactional Content Services, Q3 2015 cited OpenText for having the broadest backbone for embedding ECM in enterprise applications. In this report Forrester commented “We also like OpenText’s vision for the ‘connected workspace,’ which organizes unstructured information, folders, tasks, and milestones. This allows transactional workers to swarm a customer exception with social, collaboration, and ECM capabilities.” And on the personal productivity side of the house, the Forrester Wave: ECM Business Content Services, Q3 2015 commended OpenText for investing in secure file-sharing, synchronization, and team collaboration. Gartner sees a similar shift in the use cases for enterprise content management with transactional content management, compliance, and digital workplace scenarios taking precedence amongst their clients. In the 2015 Gartner Magic Quadrant for ECM our efforts in both process productivity and control are lauded with Gartner calling our offering “a strong option for businesses looking for solid ECM functionality to address information governance requirements,” while highlighting our strong technical partnerships with SAP®, Microsoft®, and Oracle®. And in the Gartner Critical Capabilities for Enterprise Content Management: Compliance and Records Management OpenText scored the highest of any vendor on Trusted System of Record, Regulatory Compliance, and Long-Term Digital Preservation. Other analysts also are weighing in on the role of ECM in the path to digital transformation. Ovum Decision Matrix: Selecting an Enterprise Content Management Solution, 2015–16 our ECM portfolio was called “one of the most comprehensive” with capabilities in every category of ECM. Nucleus Research ECM Technology Value Matrix 2015: Liked our “wide range of functionality with tight integration, making the transfer of information between different products or applications much smoother.” Info Tech Content and Email Archiving Vendor Landscape states that OpenText has the “most comprehensive solution in the landscape due largely to the traditional content management strengths of the vendor” and particularly called out our “wide set of deployment and management settings to deal with complex data sovereignty and compliance issues.” Does that get you in the mood for a trip to the music city? Don’t worry about packing those cowboy boots, we know it’s kind of hot in July so come see us in the Content Theater and we’ll dress you up right for the week. We’re all excited to talk more with you about the new roster of OpenText Content Suite solutions so remember to pack light, register to attend Enterprise World and we’ll see you in a few weeks!

Read More

Regulatory Information Management – Where are you on the Journey?

Regulatory Information Management

Life Sciences companies are under pressure to reduce the costs of regulatory operations and speed up health agency approval to accelerate time to market. However, this is no easy task! Each organization is in a unique place on the Regulatory Information Management (RIM) continuum – some need to put a foundational content management system in place, others are trying to unify processes with affiliates or shrink their dependency on spreadsheets and yet, others are trying to rationalize myriad and duplicative systems to streamline processes and drive down costs. Fortunately, I have a bevy of regulatory experts ready to share their knowledge and experience to help you meet your RIM goals regardless of where your company falls on the continuum. Regulatory Information Management is Complex! First, the regulatory landscape is complex and always changing so just keeping up with regulatory requirements across global markets is challenging. Second, organizations are often in varying degrees of maturity when it comes to regulatory processes. Some organizations do not have a content management system in place to help manage all their controlled documentation including how documents are created, reviewed, approved, trained on, distributed for use, revised and retired. On the other end of the spectrum, some companies manage multiple content management systems and are striving to rationalize them in a way that streamlines operations and reduces costs yet ensures information accessibility and compliance. For most companies, regulatory processes span a myriad of disjointed systems and processes. Operational complexity reigns and accessibility and usability are problematic. Due to these challenges, regulatory organizations struggle to efficiently submit to regulatory agencies. They struggle to know which of their products are registered in specific markets. Sponsors often lack visibility into the exact contents of submissions within each country or region. And keeping track of agency interactions brings yet another collection of systems and applications into the mix. Changes clearly need to happen to achieve the goal of accelerating time to market when it comes to RIM.  Life Sciences organizations must improve efficiency and productivity, as well as, data quality, accuracy and compliance. Where Do I Start? If your company is one that doesn’t currently have a content management system in place, let’s look at two fundamental capabilities outlined by Gens and Associates in their Drug Information Association (DIA) presentation, “Measuring and Achieving World Class RIM”, that companies must do very efficiently when pursuing an effective (and world class) RIM strategy. R&D Document Management: Organizations must have a streamlined process for the creation, review and management of submission documentation. By leveraging industry-standard dictionaries, taxonomies and object models combined with a template-based authoring process and collaborative review process, the speed, accuracy and completeness of submission-ready documentation can be improved. Documentum Research and Development  helps ensure the efficient creation of accurate and complete submission documentation. Health Authority Interactions (Q&A, correspondence): On-going communications with Health Authorities continue throughout the drug lifecycle. Organizations need easy access to regulatory submissions and the associated regulatory correspondence to enable a complete view of regulatory activity. Submission Store and View simplifies the search and retrieval of archived submissions and their associated correspondence, while improving security and compliance. The solution links regulatory correspondence and communications to submission files, enabling a full view of regulatory activity within a scalable, secure Documentum repository. If your organization falls into the second camp where you are trying to rationalize multiple and often duplicative systems, let’s look at another key consideration – the need for a single source of truth for regulated content. While most Life Sciences organizations operate in silos; content follows the lifecycle of the drug. Therefore, having a single authoritative source across all functional areas breaks down information silos and enables documents in one domain to be used by key stakeholders in another. This approach minimizes discrepancies and uncontrolled copies, ensuring that information is accurate, timely and accessible. Organizations can respond faster to product changes, compliance concerns or health authority requests. How Can I Ensure Success? Regardless of where you are in terms of your Regulatory Information Management initiatives, there is certainly lots to figure out. RIM is not easy but it’s essential to driving more efficient regulatory processes and accelerating time to market. Where does your company fall on the RIM continuum? What challenges are your experiencing that we can help you with? Do you have some best practices to share based on your own success? Read more on Life Sciences and how we are helping here.

Read More

The RFP Process and You – A Relationship Guide (Webinar)

RFP process

Do you have a love-hate relationship with the RFP (Request for Proposal) process? Does it elicit warm feelings that the acronym could also stand for “Reliable, Fair, Pleasant” process? Or is it more like “Really Freaking Painful?” The RFP process began in the Government sector as a way of ensuring fairness to suppliers – all competing vendors get the same information and deadline requirements, evaluate proposals against stated criteria, and select the “winner” in a transparent, defensible way.  Today the RFP process is used in most industry sectors, where organizations see it as a useful method to collect competing bids. However, for many procurement professionals, bid management can be time consuming and labor-intensive. Processes are often manual, paper-based and inconsistent. Large volumes of information with multiple versions must be collected, coordinated and distributed. Vendors, both known and new, need to be evaluated and multiple stakeholders must work together. Smart organizations know that the relationship with the RFP process can be fulfilling, productive and yes, even, satisfying. Below is our Relationship Guide which contains best practice advice on how to improve your bond with this sometimes misunderstood process. Enough with the spreadsheets If you are wondering why your procurement processes are slow, error-prone, and costly, it is probably because of the M-word – most RFP processes are manual. This results in inconsistent execution and vendor engagement, and potentially compliance risk. Moving your bid process online facilitates the efficient flow of work, while enabling the capture of KPIs and process metrics. Automating workflows provides decision makers and management with real-time visibility into procurement operations and enables sound strategic decisions. Difficult-to-manage emails become a thing of the past by moving all vendor and buyer interactions and communications to a single, central portal. According to global management consulting firm A.T. Kearney, the most successful procurement leaders “are fully automated – with real-time access to data.” It’s the 21st century. It is time to automate and join the digital world. Know your suppliers Large organizations often interact with hundreds or thousands of vendors and partners. Sifting through corporate memory to identify the best vendor(s) to fulfill a particular requirement can be time and effort-consuming — if not impossible. Intelligent tools are needed to keep track of suppliers’ capabilities, as well as how well they have performed in the past. Choosing the wrong vendor can have a host of impacts ranging from delayed projects and bleeding budgets, to business disruptions and public relations nightmares. A bid management solution with strong vendor management capabilities can ensure that all relevant vendors are included in the evaluation and that past vendor performance is taken into account when executing new procurements. Follow the rules Like in any relationship, there are rules. And if rules are broken sometimes someone gets hurt, usually in the form of a fine or reputational loss. In one extreme case a few years back, the Government of Canada was ordered to pay almost $30 million in lost profits to a losing bidder for intentionally favoring the incumbent. There are numerous policies that govern sourcing activities. Organizations must ensure they spend money judiciously and eliminate waste; and in the case of government, protect against abuse of public dollars. According to the US Office of Management and Budget, more than one out of every six dollars of federal government spending goes to contractors, making it essential that all sourcing result in the best value for the taxpayer. Legislation such as the US Federal Acquisition Regulation, Federal Accountability Act in Canada, and the Public Contracts Directive in Europe, mandate that business is conducted with integrity, fairness, and openness. Protect the information The RFP lifecycle generates many business records that must be managed. When processes are manual, there is no central repository for communication and collaboration between the numerous stakeholders, jeopardizing information integrity and efficiency. Choose a solution with a secure back-end system of record, enabling the indexing of documents for easy search, full audit trail of actions that have been taken, sophisticated access controls, and automated records retention and disposition. These features play a key role in demonstrating the trustworthiness of the bid process and protecting important records per regulatory requirements. Rekindle the passion In large organizations, an RFP can be worth millions of dollars to a supplier and represent a strategic effort for business, procurement and IT organizations. Business leaders want to know they are getting the best solution for their dollar, and suppliers want to compete fairly for the business. You don’t need to have a strained relationship with the RFP process. A strong bid management solution will make you look at the sourcing in a whole new way. Introducing OpenText™ RFx Center OpenText RFx Center is an application targeted at automating and improving the efficiency of bid management. Built on OpenText™ Process Suite with integrations into OpenText™ Content Server and OpenText™ Contract Center, RFx Center combines industry-leading process automation, content management, and contract functionality in a single solution. Automate RFP, RFQ, RFI, Framework, and sole source processes Enforce regulatory compliance and increase transparency though audit history and tracking of all procurement actions, documents, and artifacts Manage procurement documents in secure centralized content repository Empower business users to rapidly configure workflows and business rules with intuitive, easy to use interface – no coding required Improve efficiencies and integrity for all vendor and buyer interactions using a single, central portal – no more emailing documents Take advantage of powerful Analytics capabilities that provide deep insight into procurement performance Ensure fairness to vendors with increased internal auditability, visibility, and accountability OpenText Live Webinar featuring OpenText RFx Center – Streamling Bid Management Find out more, join us for the OpenText Live Webinar featuring OpenText RFx Center on Tuesday, May 31, 2016 at 11:00 a.m. EDT. Streamlining Bid Management with OpenText RFx Center

Read More

Next Generation OpenText Content Suite is Here…You Won’t Look at ECM the Same Way Again

Content Server

Re-thinking ECM Drives Personal and Process Productivity as well as Control It’s happened. Last month saw the release of major upgrades to the OpenText product line, including an incredible new version of OpenText™ Content Suite. Together they represent the most ambitious, extensive launch in OpenText history. Nothing has even come close to this in my eight years with the company and I have to say, it’s a pretty exciting milestone! Of course, I’m most excited about the powerful new edition of Content Suite. Its most important innovations — huge advances in functionality and usability — are inspired by a whole new way of thinking about ECM, its role in the enterprise, and the way knowledge workers interact with, and use information. What’s led to this step change? Take a look around your own office and the answers become clear. People Processes Governance The demographic make-up of our co-workers is tilting toward the digital-native generation, a cohort that’s come of age with simple, instant access to the information they want, whenever and wherever they want it. And they expect to work the same way; they’re mobile, agile, and instantly responsive. As you’ve probably experienced, most organizations are poorly equipped to meet this new approach to sharing, collaborating, and innovating. Used to be, phone calls, faxes, and eventually email provided 99% of the information flow you needed to do your job. Not any more. Digital information is flooding the enterprise in exploding volumes, from ever-diversifying sources. Data generated by everything from social media to the supply chain constitutes an organization’s most valuable asset, if they can use it properly. There’s a critical need to seamlessly integrate, aggregate, and correlate this information to extract full value from it, as well as the people and processes that create it. Unfortunately, working with huge pools of data has a dark side. Digital information’s key strength — mobility— has led to regular data breach headlines. Countless employees put employers at risk every day by transferring intellectual property to unsanctioned, ungoverned apps for easy access. In a world of increasingly complex and far-reaching security, privacy, and compliance requirements, organizations struggle to maintain control over their information with outdated tools, inadequate oversight, and labor-intensive practices.   Content Suite 16 is purpose-built to help organizations solve all these problems. It’s not just a re-launch of our ECM platform, it’s a complete re-think of the purpose and function of ECM within enterprises as they transform to become fully digital. By building on its traditional strengths as guardian, bond, and organizer of information with new usability and integration functionality, Content Suite shifts the focus of ECM toward creating an enterprise-wide information backbone that places people before technology. It can now bridge previously isolated silos and distribute information effortlessly to drive productivity and oversight in three inter-connected areas: Personal Productivity Users want to access, share, and collaborate on business content in the same seamless, simple ways they connect with each other in their private lives. Content Suite 16 creates this environment. With OpenText™ Tempo Box and OpenText™ Core, organizations can finally foster frictionless synch-and-share collaboration on both sides of the firewall in a fully governed ECM environment. Users work the way they want, on their own terms, anytime, anywhere, underpinned by an ECM safety net that manages everything from version control to auditing to application of meta-tags. Content Suite 16 also introduces a new user interface, one that provides a cohesive personal experience tailored to each individual user. Everything related to a subject can be personalized and presented in a simple format based on the user’s role and device. As an example, here’s an insurance industry use case: Through one easy-to-master interface, users can see everything they need to in relation to a claim — account information, completed claim form, feeds from the adjustor in the field, in-line communication from across the company, task lists, and more. All compiled, connected, and shared through Content Suite. Process Productivity In the digital era, we’ve digitized enterprise processes but not done a very good job of connecting them to each other. The information they produce is usually stored in a siloed repository aligned to the process. It’s usually hard to access, difficult to govern, and almost impossible for the business to use effectively. The Extended ECM capabilities of Content Suite eliminate this. They integrate ECM into the lead applications that produce this data (SAP®, Oracle®, Microsoft® and others), connecting silos to aggregate related information and present the full picture of any instance. With ECM fully embedded in the process, governance policies and classification tags can now be automatically applied right at the source. Users are spared from doing the dirty work, yet benefit from the results. Imagine a use case where a user with a decision to make doesn’t even leave the application they’re working in to access the contract, inventory reports, sales figures, and email communication related to a supplier. Think of the increased efficiency, insight, and throughput. It’s all possible now. Control Having all this newly accessible information available to be usedin innovative, far-reaching ways actually creates more risk and inefficiency if proper governance and control isn’t consistently applied at all points. Analysts have always considered information governance to be one of Content Suite’s competitive strengths and Content Suite 16 improves on that. The key is in the ability to integrate governance best practices into both personal and process information flows without impeding productivity. Personal Productivity content — the high-volume, wildly unpredictable result of day-to-day collaboration and creation — is notorious for being high-risk while resisting oversight. Content Suite 16 introduces new capabilities to transparently capture content as it’s created in applications like file synch and share, email, and SharePoint® and automatically apply retention and security policies based on machine learning. Process Productivity data — critical to continuity and records management — can now be automatically classified, tagged, and aggregated behind the scenes as soon as it’s generated. It’s inducted into the enterprise information lifecycle for effortless discovery and use by records managers, legal teams, and LOB leaders. OpenText Content Suite is the Future of ECM Content Suite redefines the role of ECM in the digital enterprise. It creates a seamless cross-enterprise information grid that provides the Personal and Process Productivity gains enterprises need within a framework of Control. Available on premise, as a subscription in the OpenText™ Cloud, or as a managed service, today it stands as the only comprehensive, fully integrated ECM suite in the industry. Take a few minutes to find out more about what we have in store for you in Content Suite 16. Start by erasing your preconceived notions and perceptions of ECM. Then, visualize what transforming to become “digital inside” means to your organization. Chances are, OpenText Content Suite’s innovative new approach to implementing, extending, and using ECM can get you where you want to be.

Read More

DoJ Delays Accessibility Rules for Document Publishers

The U.S. Department of Justice (DoJ) announced in November that it’s holding off until the 2018 fiscal year on publishing the proposed rules to make commercial websites accessible under Title III of the Americans with Disabilities Act (ADA). This announcement, published in the department’s Statement of Regulatory Priorities for Fall 2015, comes roughly four years after the DoJ first said it would issue rules for how companies and other providers of “public accommodations” have to make their websites accessible to visitors with disabilities. Even though the DoJ is delaying requirements that apply to commercial websites, covered under Title III of the ADA, it will proceed with publishing Title II amendments (applying to state and local government websites) this month, January 2016. The DoJ believes the smaller Title II project will give it valuable insights and create the necessary infrastructure for broad commercial website accessibility under Title III. Whenever the Title III changes do go into effect, any company with a website will have to carefully review its content to make sure it’s accessible to the widest possible range of readers. What is the Americans with Disabilities Act and Title III Amendment? As a refresher, the Americans with Disabilities Act (ADA) is a civil rights law that prohibits discrimination against individuals with disabilities in all areas of public life and in the activities of places of public accommodation, including jobs, schools, transportation, and all public and private places that are open to the general public. It became law in 1990. The ADA revisions are to establish requirements for making the goods, services, facilities, privileges, accommodations, or advantages offered by public accommodations via the Internet accessible to individuals with disabilities. Under the ADA Title III amendment, achieving website accessibility is defined as being compliant with Level AA guidelines of the WCAG 2.0 (Web Content Accessibility Guidelines) standard. Title III applies to websites of commercial businesses and non-profit service providers – privately operated entities that own, operate, lease, or lease to places of public accommodation, such as large corporations, restaurants, movie theaters, schools, retail stores, doctor’s offices, recreation facilities, etc. as well as commercial facilities such as factories, warehouses or office buildings. The Federal Rulemaking Process To provide some context around the delay to the Title III amendment NPRM being published, let’s review the US Federal Government rulemaking process. The federal rulemaking process is a detailed, often multi-year endeavor that is used to establish new regulations or updates to regulations with the help of public participation. Following are the key stages of the process: Advanced Notice of Proposed Rulemaking (ANPRM): Preliminary stages of rulemaking that publishes the agency’s initial analysis and provides the public with an opportunity to provide comments and participate in rule-making. Notice of Proposed Rulemaking (NPRM): Publishes actual language of proposed rule in the Federal Register, addresses comments made during the NPRM stage and solicits further comments from the public. Final Rule: Usually the proposed rule becomes the final rule with some minor adjustments. Judicial Review: This is when the courts review the rule in greater detail to address any lawsuits filed by the public and to ensure the agency has not exceeded its rulemaking authority and has followed the proper process for public comments. Effective Date: The rule generally does not become effective for some time after its publication to allow affected parties to come into compliance. The ADA Title III amendment is currently at the “ANPRM published” stage, with the comment period for the ANPRM closed. The next step is to publish the NPRM after taking into account comments received for the ANPRM, which is now expected to occur sometime in 2018. History of the ADA Title III Amendment Timelines The Title III NPRM publication date has been extended 7 times since the ANPRM was published in 2011. Original Date of NPRM Publication Changed To Update Made In January 2012 December 2012  – December 2012 December 2013  – December 2013 March 2014 Spring 2013 March 2014 April 2014 Fall 2013 April 2014 March 2015 Spring 2014 March 2015 June 2015 Fall 2014 June 2015 2018 – month TBD Fall 2015 While the NPRM publication has been delayed, there is no indication that the DoJ will stop monitoring and addressing litigation against commercial organizations for website accessibility. In fact, the DoJ continues to formulate settlement agreements and issue penalties of up to $150,000 for web and web content accessibility violations and order compensation to complainants as required. Therefore, large commercial organizations must continue to plan for and execute on implementing accessibility for websites and web content. OpenText provides a software-based automated solution for generating accessible documents in high volumes, e.g. for statements, bills, notices and more. The OpenText Automated Output Accessibility solution enables companies to generate accessible PDFs in WCAG 2.0 Level AA compliant PDF/UA format, eliminating the need for traditional costly and time-consuming manual remediation processes. Learn more about the solution and contact us today to book a demo.  

Read More

How to Play Nice with Compliance

Compliance is a little like the big, scary kid at the playground. No one wants to make direct eye contact, no one wants to get too close, and no one thinks any good can come of the situation. Unfortunately, no one considers what that big kid can do for them. Oh, poor, lonely, ostracized compliance… sigh… It’s true that you don’t want to mess around with compliance. But that doesn’t mean you can’t roll with it. After all, it’s key to any enterprise: an organization cannot operate if it does not adhere to the laws, regulations, guidelines, and standards relevant to its business. So, how can you play nice with this big, scary kid? 1. Step back and take a good look. What do you need to be aware of? Content and process are at the heart of Governance, Risk Management, and Compliance (GRC), and there are many different regulations and standards around the world. Which ones affect you? Take a look at this Regulatory Compliance & EIM Matrix. It’s a convenient, at-a-glance table of key regulations and standards from across the globe, and it also lists the associated EIM requirements. Download it to keep for quick reference! 2. Listen to what the other kids are saying. What should you pay close attention to and what do you feel confident about? According to a recent white paper from AIIM® and OpenText, Managing GRC with ECM and BPM, the top driver of Governance, Risk Management, and Compliance (GRC) for organizations is avoiding reputational risk. In fact, we found that protecting the reputation was twice as big of a driver as avoiding fines and penalties. (It always comes back to the playground.) Other highlights from the survey include the following: The most common GRC complaints: Multiple, disparate systems to manage compliance documentation Manual, inefficient GRC processes Homegrown systems and tools 40% surveyed say policy management is their biggest challenge with regulatory compliance, and only 9% are confident their policies are up-to-date. 85% believe ECM would help them meet their compliance requirements. The top 5 ECM functionalities deemed most important for GRC: RM, DM, Email Management, Audit Trails, and BPM/Workflow. Get the highlights of the survey in this infographic. For those of you particularly interested in data privacy cloud compliance, another new paper, Data Privacy in the Cloud – Guidance for the IT Professional, from 451 Research®, delves into today’s five biggest issues: The Microsoft Dublin Warrant controversy International eDiscovery and eDisclosure The US-EU Safe Harbor framework The EU General Data Protection regulation Expansion of data privacy laws around the world 3. And play fair. As Former Deputy US Attorney General Paul McNulty said, “If you think compliance is expensive, try non-compliance.” Plus, once you are compliant, you’ll have a big advantage over your competitors—it’s not just a necessary evil. And, of course, you can’t be messed with. Not with Compliance behind you.  

Read More