The benefits of SharePoint as a content management system and information portal tool are indisputable. With great search functionality and user definable portal pages SharePoint is now the leading Content Management solution chosen by most IT departments.
But what if your business demands strict document controls protocols, not just because it’s good practice but life depends on it? Unfortunately there is generally a poor appreciation by IT departments of the importance of document control in mission critical business.
It’s not about throwing the baby out with the bath water nor settling for the risk of non-compliance. It’s choosing the best of breed for each purpose
Although FastTrack is available standalone we also offer to an integrated Risk Based Quality System:
The SharePoint Threat
Although SharePoint does have basic document control features and workflows, where life or operations depend on accurate up-to-date documentation at the coalface, the loose approach of SharePoint can prove disastrous. Delays in updating documents due to senior management involvement, hold ups in revision/approval processes, lack of awareness of effects/interrelationships between documents and processes, aversion to the ubiquitous search requirements and lack of troubleshooting assistance, turn SharePoint into a deceptive threat of non-compliance with all its ramifications.
Best of Both Worlds
Early in our extensive experience working with the mission critical fields of Defence, infectious diseases control, hospitals, mining, and biosecurity border control, we identified the need to value-add to SharePoint not just compete with it. We therefore looked to fill the document control deficiencies of SharePoint by adding a formal document control framework onto the front-end of SharePoint. This left a user-friendly portal for delivering content to the general population, while protected the organisation’s regulatory compliance by providing a comprehensive document control framework.
With FastTrack we decided to manage the development and revision of documents under a strict document control regime but then publishes them through to SharePoint for use. Here are the key deficiencies we identified in using SharePoint for Document Control in strict regulatory compliant environments, and what we have done to compensate.
Separating edit and approval rights
Combined with keeping separate draft and published documents, this allows updating of document by those at the coalface while enforcing a formal revisions and approval process prior to publication. This releases senior management from onerous editing duties to just verifying changes and clicking approval, thereby streamline the change and performance proficiency.
Cross referencing documents to legislation and regulatory clauses
In heavy regulated fields understanding and demonstrating regulatory compliance is critical to an organisation being able to even operate. Through the vagaries of small changes over time, non-compliance can creep in inadvertently if not managed.
Visual mapping of document interrelationships
In addition to explaining regulatory compliance, visual mapping also engenders understanding in staff of both the place in the process and their effect on other areas. Useful in audit and when obsoleting documents it also easily demonstrates to external auditors/assessor the full capability of your compliance management system.
Traffic Lighting of sticking point in revision cycle
An inevitable part of document revisions is that changes get bogged down in the revision process due to key people being away or busy. Whether the change rectifies a failing in the process, or improves efficiency, the delay can prove costly in more ways than one. Peer awareness generated by highlighting those cases with traffic lights leads to faster resolution.
Auto reminders and escalation of overdue/outstanding reviews and approvals
We are all torn by demands on our time. Reminders and escalation of those items that fall between the cracks, including hyperlinks to complete the task, expedite hold-ups and improve close out times.
Auto hyperlinking of document references within document content
Documentation is a bureaucratic waste of time if not usable for its intended purpose. Operational staff invariably need to refer to related information within their current train of thought while reading a document which is not consistent with having to exit and search for the related information. Automating the linking within documents improves operational usage as documents match the way they work.
Publishing in PDF format while editing in Word/Excel format
Achieving the obvious benefits of making documents available as PDF is commonly done at the expense of ease of modifying content. By keeping source document in desktop formats allows for ease of updating by those at the coalface without the need of licensing a pdf tool to the whole organisation.
Enforcement of a consistent revision marking program
Reading the whole document when a change is made is not only time consuming but acts as deterrent to senior reviewers. By automatically enforcing the practice, senior reviewers can by confident that no surreptitious changes have been included.
Inserting current version and issue date identification into document content
Consistency and confidence by automating document control practices is what allows delegation and wider distribution of managing documents which is not only more efficient and productive but develops greater staff involvement and thereby greater buy-in to the management systems.
Generating, scheduling and tracking Training requirements for revisions
In safety critical operations, changes in process can threaten life and limb, so it’s common for changes to require staff training prior to release. FastTrack’s capability of generating training requirements for selected documents streamlines the process thereby expediting releases.
Managing targeted lists of relevant document per role/dept/topic
Talk to operational staff and you’ll find the need for ubiquitous searches to find critical information in times of stress, is a major issue. The workaround is for individuals to set up their own subscriptions which is not very productive, if done at all. Why not have the system identify and maintain them for staff based on their role/dept/topic?
Integrating documents with internal audits and corrective actions
Due diligence demands that in addition to making policies, practices and procedures available to staff, you also ensure their adherence and application. Linking document, audit, corrective action, regulations, and obligations all together demonstrates active due diligence.
Maintaining comprehensive audit logs of actions affecting each document
Knowing who made what changes when, to document metadata as well as content, is a key requirement of mission critical document control. Changes to ownership, distribution, and access control all need to be kept for the life of a document as future legal actions may require that knowledge in years to come.
Linking Lessons Learnt to documents and workflow steps
Lessons learn being readily available for handling people or circumstances, as well as FAQs and hints, all add to improving productivity and operational staff acceptance of management systems. Ignoring informal information practices leads to the development of a parallel universe that undermines buy-in to formal management systems.
In the end it’s not about throwing the baby out with the bath water nor settling for risk of non-compliance. It’s about choosing the best of breed for each purpose.
Related articles you may be interested in:
- Integrating ISO 9001:2015 with ISO 17025
- PDCA is NOT Best Practice
- How to Implement Risk Based Audits & Inspections
- Non-Compliance Problems Cost 3X More Than a Strong Compliance Program
- 21 Best Practices in Workflow Management
|Quality Systems Management Data Sheet
How Fast Track provides truly value-adding compliance
|FastTrack Product Guide
Technical specifications, pricing, and more.