< The Management of Records

Annex B: Standards and guidance supporting the Code
The Management of Records

Part 1 of the Code

1    British Standards (BSI)

Relevant Standards issued by the British Standards Institution include:

BS ISO 15489-1, Information and documentation – Records management – Part 1: General

BS ISO/IEC 27001: 2005, Information technology. Security techniques. Information security management systems. Requirements

BS ISO/IEC 27002: 2005, Information technology. Security techniques. Information security management systems. Code of Practice

BS 10008 Evidential weight and legal admissibility of electronic information – Specification

BS 8470:2006, Secure destruction of confidential material. Code of practice

BS 4783, Storage, transportation and maintenance of media for use in data processing and information storage

2    Standards and guidance produced by The National Archives for the management of public sector records

The Chief Executive of The National Archives, as head of profession for the knowledge and information function across Government, sets standards for the management of records in all formats, covering their entire life cycle. The standards are supported by guidance and toolkits. Advice for government departments can also be applied by other parts of the public sector. They are available on The National Archives website – see


In addition, a standard on metadata for records management is available through Govtalk – see


3    Sector-specific guidance

Guidance is available for specific sectors as follows:

Central government

In addition to standards and guidance issued by The National Archives referred to above, protected records22 are subject to data handling guidance issued by the Cabinet Office – see


Local government

The Records Management Society has issued guidelines on disposal and information audits for local government – see


The Local Government Association and Welsh Local Government Association have issued data handling guidance for protected records – see


Further and higher education

JISC (Joint Information Systems Committee) Infonet has produced an information management Infokit – see



The Records Management Society has issued a records management toolkit for schools – see


The police

The Home Secretary has issued a code of practice on the management of police information – see


It is supported by guidance produced by the National Centre of Policing Excellence on behalf of the Association of Chief Police Officers – see



The National Health Service

The Department of Health has issued a code of practice for the NHS – see


22   The scope of the term ‘protected records’ is explained within the document.

Part 2 of the Code

4    Transfer of records to the National Archives or a place of deposit

The National Archives has published guidance on determining whether records should be transferred to The National Archives or a place of deposit for public records – see the Acquisition and Disposition Strategy and supporting guidance at




For guidance on the preparation of records for transfer to the National Archives, including cataloguing, see




For guidance on the transfer of records to places of deposit see


5    Transfer of records to the Public Record Office of Northern Ireland

The Public Record Office of Northern Ireland has published guidance on transferring records – see


6    Determining whether exemptions apply

Guidance on FOI exemptions has been issued by the Information Commissioner’s Office, the regulator of both the Act and the EIR – see


Guidance has also been issued by the Ministry of Justice – see


Guidance on EIR exceptions has been issued by the Department of the Environment, Food and Rural Affairs – see


Guidance has also been issued by The National Archives:
Access to Public Records – see


Redaction: guidelines for the editing of exempt information from paper and electronic documents prior to release – see


< The Management of Records