Updates to ISO 16175 Processes and functional requirements for software for managing records
This international standard that provides model high-level requirements and associated guidance for software applications intended to manage digital records (including digital copies of analogue source records) has been updated. The second edition (ISO 16175-1:2020) replaces the first edition (ISO 16175-1:2010), which has been technically revised.
The main changes compared to the previous edition.
- The distinctions between dedicated records management applications and business applications have been removed. As a result, a single set of functional requirements and associated guidance is provided in a document addressing both kinds of software applications.
- The number of functional requirements is reduced and simplified to help users focus on the most important areas of software functionality.
- Text has been updated, clarified and simplified for ease of use.
We will provide further advice on this standard and its application in 2021.
Principles and functional requirements for records in electronic office environments
ISO 16175 provides internationally agreed principles and functional requirements for software used to create and manage digital information in office environments.
The standard is divided into three parts.
- Overview and statement of principles: sets out the fundamental principles for the management of records in a digital environment.
- Guidelines and functional requirements for digital records management systems: sets out the functional requirements for software systems that are designed principally to manage records.
- Guidelines and functional requirements for records in business systems: sets out the functional requirements for the management of information held in business systems.
Use of the standard in the Australian Government
We endorse the use of this standard by Australian Government agencies. This helps to maximize consistency across agencies in software used to create and manage digital information and records. The standard assists agencies to:
- review the information and records management functionality, or assess the compliance of an existing system
- identify information and records management functionality to include in a design specification when building, upgrading or acquiring new systems.
The principles and functional requirements in the standard enable agencies to better manage their business information through:
- supporting business needs by enabling greater effectiveness and efficiency of operations
- ensuring greater accountability, transparency and enhanced service delivery
- increasing general awareness of automated records management capabilities
- providing a foundation for government agencies, the National Archives and the wider information management profession to engage with the software vendor community.
We encourage software vendors to self-assess their products against this standard.
Getting the most from ISO 16175
The functional requirements set out in the standard are based on the minimum requirements for records functionality defined in the Australian and international standard for records management, AS ISO 15489.
The standard does not include the specifications for the long term preservation of digital records. These requirements should be addressed separately within a digital preservation framework.
More detailed advice on understanding how to apply the standard is provided below:
Getting the most from ISO 16175 Module 2 – Guidelines and functional requirements for records in digital records managements systems
ISO 16175 Part 2 should be read in conjunction with Part 1 of the standard, which contains an overview of the basic principles for managing records in a digital environment.
What is a digital records management system?
A digital records management system is a software application whose primary function is to manage information as records. In most agencies, these systems take the form of an electronic document and records management system (EDRMS) or an electronic records management system (ERMS). This also includes enterprise content management systems where the primary function is records management.
These systems are specifically designed to manage the capture, maintenance and disposal of records. They maintain the content, context, structure and links among records to enable their accessibility and support their value as evidence.
Not all digital records management systems are limited to the management of records in digital format. Some are specifically designed to provide for the management of physical records (such as paper-based files) or both physical and digital records.
Functional requirements for digital records management systems
ISO 16175 Part 2 sets out the requirements for digital records management systems. These requirements are:
- to create and capture the content, structure, context and format of records. This includes requirements for the identification, classification and aggregation of records.
- to maintain the authenticity and reliability of records. This includes requirements for access and security, retention and disposal, maintaining metadata, hybrid records management and support for migration and export.
- to search, retrieve and render records for access and display.
- to enable the administration of the records management system including the management of system parameters, and the capacity to back up and restore data, generate system reports and manage metadata.
Getting the most from ISO 16175 Module 3 – Guidelines and functional requirements for records in business systems
ISO 16175 Part 3 should be read in conjunction with Part 1 of the standard, which contains an overview of basic principles for managing records in a digital environment.
What is a business system?
A business system is an automated system that creates, manages or stores information about an organisation's activities. Business systems differ from electronic document and records management systems (EDRMS) or electronic records management systems (ERMS) in that their primary function is to facilitate business transactions.
Examples of common business systems include line-of-business, case management, content management, human resource management and financial management systems.
Business systems typically store large volumes of information that are frequently updated. Not all information in a business system will need to be kept. For example, data may be duplicated or the data may have been drawn together and kept elsewhere.
The process of identifying 'records' entails identifying requirements for evidence of the business being conducted, and identifying the information in the business system needed to record this evidence. A record in a business system may consist of dispersed elements in a database that, when drawn together for a transaction, provide evidence of a business activity.
Functional requirements for information management in business systems
ISO 16175 Part 3 provides an overview of the high level functional requirements for records that may be incorporated into a business system. Functional requirements are broken down into four categories, each representing a different records management concept.
These requirements are:
- to create records in context: the functionality required to create and keep records that are valid, accurate and protected from both accidental and deliberate unauthorised change.
- to manage and maintain records: the functionality required to ensure records do not lose their evidential value during management processes including classification, retention, disposal, security and access.
- to support import, export and interoperability: functionality required to exchange, import or export records both within and between systems, without the loss of content or metadata.
- to retain and dispose of records as required: the functionality required in business systems to dispose of records in a managed, systematic and auditable way.
The functional requirements will be influenced by whether records are managed within the business system or are managed externally by export to or integration with a dedicated records management system. The requirements are generic and may need to be adapted to the agency's particular business needs.
The Business System Assessment Framework will assist with determining the appropriate functionality for your agency. This Framework is based on Part 3 of ISO 16175 which provides a streamlined, risk-based approach to the assessment of information management functionality in business systems.
Where to get the standard
A copy of the standard ISO 16175 can be purchased from SAI Global.
ISO 16175 was adapted from Principles and Functional Requirements for Records in Electronic Office Environments (also known as ICA-Req) which was jointly published by the International Council on Archives (ICA) and the Australasian Digital Recordkeeping Initiative.
The three modules of ICA-req are available for reference purposes.
- Module 1 – Overview and Statement of Principles (pdf, 548KB)
- Module 2 – Guidelines and Functional Requirements for Electronic Records Management Systems (pdf, 1.7MB)
- Module 3 – Guidelines and Functional Requirements for Records in Business Systems (pdf, 2.1 MB)