BS 10008-2:2020 Evidential weight and legal admissibility of electronically stored information (ESI). Code of practice for implementation of BS 10008-1

BS 10008-2:2020

Evidential weight and legal admissibility of electronically stored information (ESI). Code of practice for implementation of BS 10008-1

Status : Current   Published : May 2020



What is BS 10008-2:2020 about?

This British Standard gives detailed guidance on information management, information security management and requirements to ensure that information is trustworthy in terms of authenticity and integrity. BS 10008-2:2020 is also arranged, based on and supplements BS 10008-1:2020 and thus will mainly be used as a guide to implementing that standard.

Who is BS 10008-2:2020 for?

It’s intended for end-user organizations that either wish to ensure that ESI created by, entered into, stored and/or transmitted within their information management systems may be used with confidence as evidence in any dispute, within or outside a court of law; or that wish to ensure that electronic identity management systems may be used with confidence as evidence in any dispute, within or outside a court of law. It will also be used by integrators and developers of information management systems that provide facilities to meet user requirements.

Specific users will be:

  • Business managers
  • Records/IT managers
  • Compliance officers
  • Legal advisors in financial institutions
  • Insurance companies
  • Local government departments

Why should you use BS 10008-2:2020?

It gives recommendations for the implementation and operation of information management systems that manage information electronically (including where the electronic information is transferred from one computer system to another) and where the issues of authenticity, integrity and availability as required for legal admissibility and evidential weight are important.

It describes the processes for use in the identification and development of policies and procedures as specified in BS 10008-1, in relation to the management of ESI.

BS 10008-2:2020 is for use with any information management system that manages information electronically, using any type of electronic storage medium including write-once-read-many (WORM) and rewritable technologies.

It’s also for use with any type of database or other electronic system. It also covers procedures and processes relevant to the following ESI authentication principles:

-        Electronic identity verification – proving the genuineness of the individual/organization that produced, transferred and/or stored the electronic document

-        Electronic signature – the application of the legal equivalent of a ‘pen and ink’ signature on a paper document

-        Electronic copyright – the application of a copyright mark to ESI

-        Linking the electronic identity and/or electronic signature and/or electronic copyright to the particular ESI (and preventing compromise to its integrity)

BS 10008-2:2020 applies to any system that stores and/or transmits information electronically. It covers aspects of the information management processes that affect the use of ESI in normal business transactions, even where legal admissibility per se is not an issue. Such aspects include the legibility, accuracy and completeness of the ESI, and the transfer of the ESI to other systems.

It also applies to electronic identity management systems and can be applied to any form of electronic identity management system, irrespective of the technology used.

NOTE 1: BS 10008-2:2020 does not cover processes used to evaluate the authenticity of ESI prior to it being imported into the system. However, it can be used to demonstrate that output from the information management system is a true record of what was imported. Compliance with this British Standard does not guarantee legal admissibility. It defines best practice.


BS 10008-2:2020 contributes to UN Sustainable Development Goal 15 on protecting, restoring and promoting sustainable use of terrestrial ecosystems including sustainably managing forests and halting biodiversity loss, because it supports the use of less paper.



What’s new about BS 10008-2:2020?

This is a new British Standard. However it is a consolidation of information and guidance that complements BS 10008-1:2020, and that was previously published in three parts as BIP 0008-1, BIP 0008-2 and BIP 0008-3. 

Standard NumberBS 10008-2:2020
TitleEvidential weight and legal admissibility of electronically stored information (ESI). Code of practice for implementation of BS 10008-1
Publication Date29 May 2020
Normative References(Required to achieve compliance to this standard)BS 10008-1, BS ISO 12651-1
Informative References(Provided for Information)BS ISO 15489-1, BS 10010, BIP 0008-1, BS ISO/IEC 27701, PD ISO/TR 18128, BS ISO 32000-1, BS EN ISO/IEC 27002, BS ISO 19005-1, BS ISO/IEC 18014, BS ISO 31000, BS ISO/IEC 20000-2, BIP 0008-2, BS ISO/IEC 27005, BS ISO 17789, BIP 0008-3, Regulation of Investigatory Powers Act 2000, Anti-terrorism, Crime and Security Act 2001, IETF RFC 8551:2019, BS EN ISO/IEC 27001, BS EN ISO 9001, BS EN ISO/IEC 27000, Data Protection Act 2018, BIP 0009, BS ISO/IEC 27038, BS ISO/IEC/IEEE 21841:2019, BS ISO/IEC/IEEE 24765:2017, ISO 12029:2010, PD 0018:2001, BS ISO 20415:2019, BS ISO 23081-1:2017, Freedom of Information Act 2000, BS ISO 12653, BS 10012, Sarbanes-Oxley Act of 2002, NIST SP 800-145:2011, Police and criminal evidence Act 1984, BS EN ISO 19011, BS ISO/IEC 21000-5, BS ISO 17788, Civil Evidence Act 1995, BS ISO/IEC 20000-1, PD ISO/IEC TS 29003, Investigatory Powers Act 2016
Draft Superseded By19/30390317 DC
DescriptorsDocuments, Management, Data security, Data processing, Legal procedures, Information exchange, Data management, Legal documents, Law, Quality assurance, Electronic storage, Verification, Data handling, Handbooks
ISBN978 0 539 05292 3
File Size6.165 MB

 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents

Worldwide Standards
We can source any standard from anywhere in the world

Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version

Develop a PAS

Develop a fast-track standardization document in 9-12 months