Information and Records Management Policy

Responsibility for policy: University Librarian
Approving authority: Vice-Chancellor
Last reviewed: May 2025
Next review date: May 2030

Print version

Application

  1. This policy applies to all staff of the University of Waikato.

Scope

  1. This policy applies to all information and records held by the University which fall under the Public Records Act 2005, regardless of format or storage medium.

Purpose

  1. The purpose of this policy is to:
    1. set out a framework of principles for ensuring that information and records held by the University are consistently maintained and managed in accordance with legislative requirements, and
    2. establish responsibilities and accountabilities for staff with respect to information and records management.

Related documents

  1. The following documents set out further information relevant to this policy:

Related legislation

  1. This policy takes account of the following legislation:

Staff may also be required to comply with other legislation relevant to particular business activities when managing information and records.

Definitions

  1. In this policy:

    archive means a record that has been identified as having long-term value for New Zealand because, in line with the Public Sector Archival Selection Statement, it:

    1. provides evidence of New Zealand public sector authority, functions and activities
    2. provides evidence of the Crown’s fulfilment of or failure to fulfil te Tiriti o Waitangi the Treaty of Waikato principles, and/or
    3. contributes to individual and community knowledge, identity and memory.

    authoritative record means the official University copy of the record that is created and maintained as required under the Public Records Act 2005; the authoritative record is held by the relevant creator or business owner

    record means information, whether in its original form or otherwise, including (without limitation) a document, a signature, a seal, text, images, sound, speech, or data created, received and maintained by, or on behalf of, the University of Waikato in the conduct of its affairs, which may be compiled, recorded, or stored, as the case may be:

    1. in written form on any material
    2. on film, negative, tape, or other medium so as to be capable of being reproduced, or
    3. by means of any recording device or process, computer, or other electronic device or process.

    record excludes:

    • learning, assessment and research materials generated by students, including raw data, analysed data, working notes and publications
    • teaching and research materials generated by staff, including raw data, analysed data, working notes and publications.

    staff means all University of Waikato employees, whether permanent, fixed term or temporary, and includes contractors, secondees, interns and others who form part of the University’s workforce from time to time or perform some if its activities or functions, and all persons granted access to University information and records, whether through a partnership, contract or other arrangement

    University means the University of Waikato and any entities in which it has an ownership stake of 50% or more.

Principles

  1. All staff must adhere to the University's Information and Records Management Procedures which take account of the following principles:
    1. Staff must create records to document substantive activities and administrative and business transactions involving the University.
    2. University information and records management processes must comply with all relevant legislation.
    3. Information and records created or received as part of university business are the property of the University of Waikato, regardless of physical location, source or medium.
    4. Information and records created by independent contractors on behalf of the University are the property of the University of Waikato unless there is an explicit agreement between the parties specifying any exclusion.
    5. The full and unalterable form of a record must be stored and managed in the appropriate electronic or hard copy records system with appropriate contextual information.
    6. Information and records that have been defined as confidential must be protected from unauthorised access, use and disclosure.
    7. All information and records must be secured against unauthorised access, modification, theft and vandalism to ensure they remain trustworthy, accurate, complete, unaltered and accessible.
    8. Information and records must be retained and properly preserved in an accessible format and in accordance with the Disposal Authority for New Zealand Universities (DA702) and Archives New Zealand's Information and Records Management Standard.
    9. Disposal of information and records must be authorised, documented and managed in accordance with security and environmental requirements.
    10. Information and records identified as having long-term value as archives under the Disposal Authority for New Zealand Universities (DA702) must be managed in ways that support their ongoing preservation and usability.
    11. Archives must be classified as either open or restricted access.

Responsibilities

  1. The Vice-Chancellor has general responsibility for compliance with the Public Records Act 2005 and has delegated this responsibility to the University Librarian.
  2. The University Librarian is responsible for:
    1. establishing the University's Information and Records Management Procedures
    2. implementing the University's Information and Records Management Procedures
    3. developing information and record management training programmes and ensuring that all relevant staff receive appropriate training
    4. developing and implementing monitoring and auditing processes for information and records management systems to ensure compliance, security and efficiency
    5. ensuring that restrictions on access to any information and records are applied as classified
    6. appraising information and records items for historical or archival value in accordance with the University's Information and Records Management Procedures.
  3. Pro Vice-Chancellors, Deputy Vice-Chancellors and equivalent are responsible for ensuring records management practices within their areas of responsibility comply with this policy, including the University's Information and Records Management Procedures.
  4. The Council Secretary is responsible for ensuring that Council processes comply with this policy.
  5. Line managers are responsible for:
    1. ensuring that their staff comply with this policy including the University's Information and Records Management Procedures
    2. assigning information and records management responsibilities in their area of responsibility
    3. ensuring that appropriate information and records are created and maintained for their areas of responsibility
    4. ensuring that their staff have adequate training in the systems they use to manage information and records
    5. ensuring that no records are destroyed, altered, sold or transferred without the appropriate authorisation under the University's Information and Records Management Procedures.
  6. Job managers for independent contractors are responsible for ensuring that independent contractors comply with the University's Record Management Procedures in relation to the contracted work.

Responsibility for monitoring compliance

  1. The University Librarian is responsible for monitoring compliance with this policy, by way of an annual report to the Vice-Chancellor.
  2. Breaches of this policy must be reported to the Vice-Chancellor, and may result in disciplinary action under the Staff Code of Conduct.