Is internal audit.
One of the things that keeps organisations (particularly government organisations) investing in records is the threat that the organisations process will be subject to a legal or administrative review.
So how do organisations test their ability to respond to these types of reviews effectively?
Generally they wait until they’re the subject of such a review, and then make heroic efforts to find everything they need.
But why is that?
Why isn’t internal “administrative auditing” a regular part of records management?
How do we know if we are being effective if we don’t audit?
Information Governance 