Policies, Procedures, and Standards

Author(s)

Consultant, The Process Geek
Karen Tricomi has a 25-year history of practical business process management, business analysis, technology communications, and large-scale change management. She has consulted internationally, and is currently the owner of The Process Geek, a process management and technology communications consulting firm. The BPM Institute granted a Certification as a Business Process Management Professional in 2011.

At a recent engagement, I encountered several departments that asked me to help write their departmental policy on a particular subject. When I inquired as to the governance process for changing existing company policy, they looked at me blankly and said no, I didn’t understand – they needed a new policy, just for their department. After a little probing into the governance of their company policy (this enterprise had a single policy covering everything), and some further discussion, we ultimately settled on writing a new procedure and developing accompanying forms and workflows. I ended up helping this department rewrite their documents into the appropriate format, and working with them to better understand the hierarchy.

This got me to reflecting on how many times in my career I’ve heard confusion about policies, standards, procedures, and guidelines. Reasonable people will differ in their definitions, but here’s how I understand them to work best.

Differences and Similarities

Policies: Policies state the operating principles of a company. They provide broad guidance to the enterprise on legal and regulatory requirements, employee conduct, information security, and financial integrity, and many other topics. A company may have a single policy covering all of these areas in broad terms, or they may have separate polices for each one. A well-written company policy will provide employees with the why the company operates as it does.

Company policies are written and approved by the Board of Directors and/or C-level executives. They are mandatory for all employees and contingent staff. While exceptions may be granted, there must be an exception process in place that requires sign-off by executive management.

There is strong governance around company policies, including a policy about how and why a policy is changed. Changing a policy requires sign-off by the same body that wrote and approved the original; that is, the Board of Directors and chief executives.

Standards: These provide the rules and controls that will help enforce the policy. They are what all employees must do to adhere to company policy. Companies will have multiple standards, but – hopefully – there will be only one for a particular topic. For example, the General Accepted Accounting Practices (GAAP) standard must be adhered to by publicly traded companies, according to the Securities and Exchange Commission. It provides tried and true methods for treating various financial processes, such as depreciation, that are accepted by external oversight entities.

Technical standards bodies develop consistent specifications for technology that depends on multiple manufacturers that must work together, such as telecommunications carriers, phone manufacturers, and application developers.

Standards may be company specific, and they apply to everyone in the company. Even though they may be internally developed, they are usually based on industry best practice, such as login and password standards.

Standards often deal with the safety of employees, or the security of the company’s physical and information assets. Following company standards is mandatory. Standards, like policies, must be governed by a central body of experts in the field, or adopted from existing, external standards bodies. That means they are written, changed, and deleted by senior management only after an approval process has been followed. Like a policy, process exemptions and exceptions to a standard require a robust exception process.

Procedures: Procedures are instructions – how things get done. Good procedures are multi-level and move from a broad, cross-functional view of the process down to the detailed steps. They may be isolated to a single department, and changed by that department alone. However, changes should be done only after a thorough analysis of the impact of the change is completed. There may be unintended consequences to an upstream supplier or downstream customer, even if they are not directly involved in the process.

While procedures are not necessarily governed by a central body, review and signoff by at least middle-management is recommended. Procedures are linked to the higher-level policies and standards, so changes shouldn’t be taken lightly.

Common Elements

All of these documents have requirements in common – standards of their own that increase the probability of their being followed consistently and correctly.

Clarity

Writing in plain, clear language is essential. Use a style guide, such as the Associate Press or Chicago Manual of Style, to guide what it means to be clear. In today’s world, the fact that English is a living language is more accepted, and even grammarians concede that avoiding split infinitives is less important than saying what you mean in the simplest way possible.

Consistency

The documents discussed above are a hierarchy, with standards supporting policy, and procedures supporting standards and policies. The links between and among them should be explicitly stated and changes to one require the examination and analysis to see if changes are needed in other, related documents.

Repository

The entire set of policies, standards, and procedures should be stored in an online repository that can be accessed by all employees. Although there may be confidential information in a small percentage of documents, these need to be referenced and linked to their parent and child documents in an index. That index is not useful if it is not searchable.

Supplemental Documents

Other document types are needed to have a complete set of documented expectations. Operational metrics, general guidance, checklists, and job aids are a few examples of information that people need to produce quality deliverables in their areas. However, these are typically tailored to the circumstance and developed to suite the situation.

So, next time you’re asked to write a “departmental policy”, feel free to advise “There’s no such thing. Let’s talk about what you really need!”

Similar Resources

Understanding the Difference Between a Certificate and Certification

Understanding the Difference Between a Certificate and Certification

Author(s):

Editor & Founder, BPMInstitute.org, BAInstitute.org and DBIZInstitute.org

As professionals seek to advance their careers or pivot to new fields, understanding the variety of learning and credentialing options is essential. At BPMInstitute.org, we often encounter students wondering whether they should pursue a certificate or certification in Business Process Management (BPM). This article is designed to clarify the differences, highlight the benefits of each, and guide prospective students in making the best decision for their career goals.

Enhancing Your Team’s BPM Capabilities: The Value of External Expertise

Enhancing Your Team’s BPM Capabilities: The Value of External Expertise

Author(s):

Editor & Founder, BPMInstitute.org, BAInstitute.org and DBIZInstitute.org

Enhancing Your Team's BPM Capabilities: The Value of External Expertise In today’s dynamic business environment, managing and improving business processes is critical for any organization aiming to maintain a competitive edge. Many companies consider handling Business...

Exploring Shared Data Model and Notation (SDMN) and Its Role in BPM+

Exploring Shared Data Model and Notation (SDMN) and Its Role in BPM+

Author(s):

Editor & Founder, BPMInstitute.org, BAInstitute.org and DBIZInstitute.org

Exploring Shared Data Model and Notation (SDMN) and Its Role in BPM+ Introduction In the evolving landscape of Business Process Management (BPM), the introduction of Shared Data Model Notation (SDMN) marks a significant advancement. As businesses increasingly seek to...

Featured Certificate: BPM Specialist

Everyone starts here.

You're looking for a way to improve your process improvement skills, but you're not sure where to start.

Earning your Business Process Management Specialist (BPMS) Certificate will give you the competitive advantage you need in today's world. Our courses help you deliver faster and makes projects easier.

Your skills will include building hierarchical process models, using tools to analyze and assess process performance, defining critical process metrics, using best practice principles to redesign processes, developing process improvement project plans, building a center of excellence, and establishing process governance.

The BPMS Certificate is the perfect way to show employers that you are serious about business process management. With in-depth knowledge of process improvement and management, you'll be able to take your business career to the next level.

Learn more about the BPM Specialist Certificate

Courses

  •  

 

Certificates

  • Business Process Management Specialist
  • Earning your Business Process Management Specialist (BPMS) Certificate will provide you with a distinct competitive advantage in today’s rapidly evolving business landscape. With in-depth knowledge of process improvement and management, you’ll be able to take your business career to the next level.
  • BPM Professional Certificate
    Business Process Management Professional
  • Earning your Business Process Management Professional (BPMP) Certificate will elevate your expertise and professional standing in the field of business process management. Our BPMP Certificate is a tangible symbol of your achievement, demonstrating your in-depth knowledge of process improvement and management.

Certification

BPM Certification

  • Make the most of your hard-earned skills. Earn the respect of your peers and superiors with Business Process Management Certification from the industry's top BPM educational organization.

Courses

 

Certificates

  • Operational Excellence Specialist
  • Earning your Operational Excellence Specialist Certificate will provide you with a distinct advantage in driving organizational excellence and achieving sustainable improvements in performance.
 

 

OpEx Professional Certificate

  • Operational Excellence Professional
  • Earn your Operational Excellence Professional Certificate and gain a competitive edge in driving organizational excellence and achieving sustainable improvements in performance.

Courses

Certificate
  •  

  • Agile BPM Specialist
  • Earn your Agile BPM Specialist Certificate and gain a competitive edge in driving business process management (BPM) with agile methodologies. You’ll gain a strong understanding of how to apply agile principles and concepts to business process management initiatives.  
 

Business Architecture

 

Certificates

  • Business Architecture Specialist
  • The Business Architecture Specialist (BAIS) Certificate is proof that you’ve begun your business architecture journey by committing to the industry’s most meaningful and credible business architecture training program.

  • Business Architecture Professional
  • When you earn your Business Architecture Professional (BAIP) Certificate, you will be able to design and implement a governance structure for your organization, develop and optimize business processes, and manage business information effectively.

BA CertificationCertification

  • Make the most of your hard-earned skills. Earn the respect of your peers and superiors with Business Architecture Certification from the industry's top BPM educational organization.

Courses

 

Certificates

  • Digital Transformation Specialist
  • Earning your Digital Transformation Specialist Certificate will provide you with a distinct advantage in today’s rapidly evolving business landscape. 
 

 

  • Digital Transformation Professional
  • The Digital Transformation Professional Certificate is the first program in the industry to cover all the key pillars of Digital Transformation holistically with practical recommendations and exercises.

Courses

Certificate

  • Agile Business Analysis Specialist
  • Earning your Agile Business Analysis Specialist Certificate will provide you with a distinct advantage in the world of agile software development.

Courses

Certificate
  • DAS Certificate
  • Decision Automation Specialist
  • Earning your Decision Automation Certificate will empower you to excel in the dynamic field of automated decision-making, where data-driven insights are pivotal to driving business innovation and efficiency.