Building the Digital Operating System for Union Governance
UNION SOFTWARE · Whitepaper Series | No. 3 of 12
A principled framework for what purpose-built union administrative infrastructure must contain, how it must be structured, and what makes it fundamentally different from generic software adapted for union use
Published by Union Software · unionsoftware.com · 2025
Third in the Union Software Whitepaper Series. Companion to No. 1 (The Infrastructure Gap) and No. 2 (Why Systems Lag). Intended audience: Local presidents, national and provincial staff, executive board members, and decision-makers evaluating administrative infrastructure investment.
Executive Summary
The first two whitepapers in this series described the infrastructure gap inside union offices and the structural forces that produced it. This paper addresses the constructive question: what does purpose-built administrative infrastructure for a union actually look like?
The central argument is that a union's administrative infrastructure is not a collection of separate tools — it is a single operating system for a democratic institution. That framing has specific implications for what the system must contain, how it must be structured, and how it differs from generic software adapted for union use.
The digital operating system for a union consists of six integrated layers: the structural foundation (how the union's governance architecture is modelled); the member record (the persistent identity around which all other functions organise); casework and grievance management (the operational core); communications (connected to real groups, tracked to real records); governance and meeting management (supporting democratic process rather than just capturing it); and finance and compliance (clean documentation for accountability). These layers are not independent modules — they depend on each other, and they fail in characteristic ways when that interdependence is not designed into the system.
Three design principles govern the architecture: it must be structured around union governance categories, not corporate org-chart categories; it must enforce confidentiality through role-based access control as a structural feature, not an add-on; and it must support the volunteer layer — elected officers and stewards who are not administrative professionals — with interfaces and workflows that do not require training to use effectively.
The paper concludes with a discussion of what integration means in practice — why a union's operating system must be a system rather than a suite of tools — and what the transition to purpose-built infrastructure requires from union leadership.
1. The Operating System Concept
The term "operating system" is borrowed from computing, but the concept it describes is older and more universal. An operating system is the foundational layer that makes everything else work — the layer that manages resources, enforces rules, and provides a consistent environment within which all other functions operate. Remove the operating system and the applications that depend on it stop functioning. Replace it with a different system and the applications must be rebuilt to fit.
A union's administrative infrastructure is, in this sense, an operating system for the institution. It is the layer that holds the member records, enforces access controls, tracks the status of active files, connects steward assignments to worksite structures, stores the meeting record, and makes it possible for the organisation to function coherently regardless of which particular individuals occupy its roles at any given time.
Most union offices do not have an operating system. They have a collection of applications — email, spreadsheets, shared drives, paper — that each manage a fragment of the organisation's information independently, without integration, without consistent structure, and without the institutional coherence that an operating system provides. The infrastructure gap described in the earlier papers in this series is, at its root, the absence of an operating system.
Most union offices do not have an operating system. They have a collection of applications that each manage a fragment of the organisation's information independently, without integration and without the institutional coherence that an operating system provides.
Building the digital operating system for a union is not primarily a technology question. It is a governance question — a question about what the institution needs in order to function reliably as a democratic organisation accountable to its members. The technology is the means. The governance structure is the specification.
This paper describes that specification: the six layers of the union operating system, the design principles that govern their integration, and the practical requirements that distinguish purpose-built infrastructure from adapted generic tools.
| OS layer | What it contains | What breaks without it |
|---|---|---|
| Structural foundation | The union's governance architecture: locals, worksites, units, bargaining units, regions, affiliated bodies, and the constitutional relationships between them | All other layers have no organisational context. Members cannot be assigned to units. Stewards cannot be assigned to worksites. Grievances cannot be attributed to the right employer. |
| Member record | The persistent identity of each member: employer, worksite, unit, classification, shift, status, contact information, dues standing, steward assignment, and change history | Communications cannot be segmented. Steward coverage cannot be mapped. Grievance files cannot be attributed. Votes and meetings cannot be properly administered. |
| Casework & grievance management | Stage-based file tracking for grievances, discipline, and servicing cases: intake, timeline, meeting notes, employer responses, deadlines, and remedy tracking | Filing deadlines are missed. File history is lost on personnel transitions. Pattern violations go undetected. Arbitration prep is built from memory. |
| Communications | Segmented, logged outreach tied to member records: targeted by worksite, unit, shift, or committee; with delivery tracking and message archive | Time-sensitive communications miss segments of the membership. Sent messages cannot be retrieved or verified. Lists go stale. |
| Governance & meeting management | Agenda preparation, motion and vote recording, minutes production, and committee management — structured to match union meeting rules and bylaws | Meeting records are inconsistent. Motions are not linked to decisions or actions. Institutional memory of governance decisions deteriorates. |
| Finance & compliance | Expense workflows, approval chains, receipt documentation, lost time tracking, per capita reporting, and budget-to-actual summaries for trustees | Finance reporting is reactive. Expense compliance is unverifiable. Trustee reports are late or incomplete. Arrears go undetected. |
The table above is a specification, not a product description. It describes what a union operating system must contain in order to support the full range of the institution's functions. Any component that is missing creates a gap that will be filled by a workaround — and every workaround is a point of fragility that depends on individual discipline rather than structural integrity.
2. The Structural Foundation: Modelling the Union as It Actually Is
The most fundamental difference between purpose-built union infrastructure and generic software adapted for union use is how the organisation's structure is modelled. Generic software models organisations as hierarchical trees: a company at the top, departments below, employees at the bottom. The model is simple, consistent, and wrong for unions.
A union local is not a company with departments. It is a democratic institution with a constitutional structure that governs relationships between its parts in ways that have no equivalent in corporate org-chart design. A local may cover members at multiple employers under different collective agreements, with different steward structures, different grievance timelines, and different bargaining unit definitions — all within the same local, all subject to the same constitution and bylaws.
What the structural model must support
Locals and higher bodies. The system must model the relationship between a local and its affiliate — national, provincial, district council, or sectoral body — in a way that supports per capita reporting, affiliation compliance, and the communication flows between levels without collapsing the distinction between local autonomy and higher-body oversight.
Bargaining units and collective agreements. A local may have one bargaining unit or many. Each unit is defined by its collective agreement, which governs the timelines, stages, and remedies available in grievance proceedings. The structural model must support the mapping of members, stewards, and cases to specific bargaining units — because the rules that govern each case depend on which agreement applies.
Worksites, shifts, and classifications. Members exist at specific worksites, within specific shifts, in specific job classifications. Steward assignments are worksite-level, not unit-level in many locals. Communications often need to reach all members on a specific shift at a specific worksite — a segmentation that requires the structural model to hold these dimensions independently and allow combinations of them.
Committee and governance structures. Executive boards, bargaining committees, health and safety committees, education committees, and political action committees each have members, mandates, and meeting records. The structural model must support these groups without forcing them into the same category as bargaining units or worksites — they are different kinds of organisational entities with different governance characteristics.
Principle 1
A union's administrative operating system must model the organisation's structure as it actually is — with locals, affiliates, bargaining units, worksites, shifts, classifications, and governance committees all represented as distinct structural elements. Generic software that forces a union to model itself as a company with departments will produce a database that does not reflect the union's reality and will not be trusted or maintained.
3. The Member Record: The Persistent Identity at the Centre of Everything
In a properly designed union operating system, the member record is the axis around which all other functions rotate. Every grievance is filed on behalf of a member. Every steward assignment protects a member. Every communication is sent to a member. Every vote is cast by a member. Every dues transaction relates to a member. When the member record is incomplete, inconsistent, or inaccessible, every downstream function is degraded.
What the member record must contain
A complete member record is not simply a name and contact information. For a union operating system, the member record is a structured file that holds:
- Employment data: employer, worksite, bargaining unit, classification, shift, employment status, and hire date
- Contact information: personal phone and email separate from employer-provided contact, with a log of contact method preferences and updates
- Dues and standing: current dues status, arrears history, and good-standing record — because standing affects voting rights, eligibility for office, and participation in key processes
- Steward assignment: which steward is responsible for this member, linked to the steward's own member record and updated when assignments change
- Case history: any grievances, discipline files, or servicing matters associated with this member — accessible to authorised personnel and linked to the case management layer
- Change log: a documented history of every update to the record — who changed what, when, and why — because unions are challenged on their member lists and must be able to account for every change
Why the member record cannot be a side document
In many locals, member records exist in a form that is functionally disconnected from operational activity. The membership spreadsheet is updated when someone remembers to update it. The steward assignment roster exists separately from the grievance tracker. The communications list is maintained in a different system from the dues record. These disconnections mean that the member record does not reflect operational reality — and operational activity cannot draw on the member record for context.
A properly integrated union operating system solves this by making the member record the structural anchor. When a grievance is filed, it is filed from the member's record — the worksite, unit, steward, and employer are populated automatically. When a steward is assigned, the assignment updates every member record at that worksite. When a communication is sent, the send log is attached to the relevant member records. The member record is not a database to be maintained separately — it is the living record of the union's relationship with each person it represents.
The member record is a democratic accountability document
Union constitutions and bylaws create specific obligations around membership records: who is in good standing, who is eligible to vote, who qualifies for particular rights and protections. When these records are inaccurate or inaccessible, the union's ability to fulfil its democratic obligations is directly compromised. A member wrongly excluded from a vote, a candidate incorrectly declared ineligible, or an eligibility challenge that cannot be answered from the record — these are not administrative inconveniences. They are governance failures with real consequences for democratic legitimacy.
4. Casework and Grievance Management: The Operational Core
If the structural foundation and member record are the architecture of the union operating system, the casework and grievance management layer is its daily operational engine. It is where the union's core function — representing members in disputes with employers — is administered. And it is where the consequences of inadequate infrastructure are most directly felt by members.
Stage-based, plain-language case tracking
Grievance case management must be organised around the stages that staff and officers actually use — not around abstract case management categories imported from legal or insurance software. The stages are: Intake, Informal, Filed, Step 1, Step 2, Step 3 (where applicable), Arbitration Prep, Hearing Scheduled, Settlement Reached, Remedy Pending, Closed. These are the words people use in union offices. A system that uses different words requires constant translation and will not be trusted.
At each stage, the system should hold what is needed for that stage: the intake form captures the grievor, worksite, unit, issue type, relevant collective agreement articles, and initial facts. Step meetings generate a meeting record with attendees, union position, employer response, and next steps. Arbitration prep holds disclosure requests, witness notes, and chronology. Remedy tracking confirms that what was agreed has actually been done.
Deadline management as a structural feature
Filing timelines are not reminders — they are legal requirements. A grievance not filed within the prescribed timeline is a grievance that cannot be advanced, regardless of its merits. Discipline not responded to within the agreement's timeline may be deemed accepted. An arbitration not confirmed by the required date may be waived.
A union operating system must treat deadline management as a structural feature, not an optional add-on. When a grievance moves to a new stage, the next deadline is automatically calculated from the collective agreement's timeline and surfaced to the responsible staff member. Overdue items are flagged before they become critical, not after the deadline has passed. The system is the backstop that catches what individual attention misses.
Pattern and group grievance support
Many of the most significant grievances are not individual — they are patterns. The supervisor who consistently bypasses overtime distribution. The worksite where scheduling violations happen regularly. The employer practice that affects classification assignments across a unit. These patterns are only visible when individual files can be viewed in aggregate — and they are only actionable when related files can be linked and managed as a connected set.
A union operating system must support the identification of pattern grievances and the management of group files. This means: the ability to tag individual grievances with a common issue or worksite marker; the ability to view all active files sharing that marker; and the ability to manage a group grievance as a single file with multiple grievors. Without this, pattern enforcement depends on individual memory — and patterns that span officer transitions are rarely caught.
Principle 2
The casework and grievance management layer is the operational core of the union operating system. It must be stage-based in union language, treat deadline management as a structural enforcement feature rather than an optional reminder, and support pattern and group grievance identification. A system that does not do all three of these things will require the same manual compensating practices — and carry the same operational risks — as the email-and-spreadsheet approach it replaces.
5. Communications: Tied to Real Groups, Tracked to Real Records
Union communications are not a mailing list function. They are a segmented, time-sensitive, legally significant operational function that determines whether members receive the information they are entitled to, when they need it, in a form they can act on. Meeting notice requirements are constitutional. Bargaining update obligations are political. Ratification vote logistics are legally sensitive. Strike vote communications carry specific legal requirements in most jurisdictions.
The communications layer of a union operating system must be designed around this reality — not around a generic email marketing model.
Segmentation tied to structure, not to manually maintained lists
The most important design requirement for union communications is that segmentation is derived from the structural model, not from separately maintained lists. When a staff rep needs to communicate with all members at a specific worksite, that list should be generated from the member records at that worksite — not from a mailing list that someone maintained in a separate spreadsheet and may or may not be current.
The same principle applies to every natural segment a union needs to communicate with: all members in a bargaining unit, members on a specific shift, stewards at a given set of worksites, members of a bargaining committee, members in arrears, members missing personal contact information. Each of these segments is defined by the structural model and the member record. When the communications layer draws directly from those sources, the lists are always current. When it does not, the lists decay.
Message logging as part of the institutional record
Every communication the union sends to its members is part of the institutional record. When a member questions what they were told about a ratification vote, the union must be able to answer. When a dispute arises about whether a meeting notice was sent with adequate time, the record must be retrievable. When a new officer needs to understand the communication history around a particular issue, the archive must exist.
A union operating system stores every sent communication — the message content, the recipient list, the send date, and the delivery log — as part of the institutional record, linked to the relevant member records and accessible to authorised officers. This is not an analytics function. It is a governance accountability function.
Principle 3
The communications layer of a union operating system must draw its recipient lists directly from the structural model and member records — not from separately maintained lists that decay independently. And it must store every sent communication as part of the institutional record, accessible to authorised officers, and linked to the member records it affected. Communications that are not logged do not exist from a governance perspective.
6. Governance and Meeting Management: Supporting Democratic Process
Union meetings are not generic meetings. Executive board meetings, membership meetings, special general meetings, and conventions all operate under rules — constitutional rules, bylaw provisions, and parliamentary procedure — that govern what can be decided, how decisions are recorded, and what documentation must exist for those decisions to be valid. The governance layer of a union operating system must be designed to support this structured democratic process, not merely to capture it after the fact.
Meeting preparation as a system function
The most time-consuming pre-meeting work in most union offices is assembling the information needed for the meeting: the grievance status report, the financial summary, the list of pending motions, the correspondence that requires board action. In offices without purpose-built infrastructure, this assembly is a manual task that takes hours and produces results of variable quality.
A union operating system makes meeting preparation a system function. The executive board receives a grievance status report generated directly from the case management layer — current as of the moment the report is pulled. The financial summary is drawn from the finance layer. The pending business list is drawn from the governance layer's record of outstanding motions. The chair has an agenda that reflects the actual state of the local's affairs, not a reconstruction from scattered notes.
Motions and decisions as structured records
A motion that is not properly recorded is a decision that can be challenged. In a democratic institution governed by rules of order, the minutes are not just a summary of the meeting — they are the legal record of what was decided and on what basis. A motion that carried, the names of mover and seconder, the vote count, and any conditions attached to the decision must all be part of a retrievable, consistent record.
The governance layer must support the recording of motions as structured data — not as free-text notes that require manual interpretation to extract the decision. When the minutes say "motion carried," the system should hold: what the motion was, who moved it, who seconded it, what the vote was, and what actions it generated. That record is then available to any future officer who needs to understand the basis for a current policy or practice.
Committee management integrated with governance
Union committees — bargaining, health and safety, education, political action, and others — have their own membership, their own meeting records, and their own reporting obligations to the executive board. The governance layer must hold these committees as structural entities within the operating system, with member rosters drawn from the member record layer, meeting records that follow the same structure as board meetings, and reporting that flows naturally into the board's governance record.
Principle 4
The governance layer of a union operating system must support democratic process as a structural feature — not just capture it as a documentation afterthought. Meeting preparation should be a system function, not a manual assembly task. Motions and decisions should be structured records, not free-text minutes. Committee management should be integrated with the broader governance record. A system that only records what happened does not support the institution's democratic obligations — it creates a paper trail without the institutional coherence that makes that trail meaningful.
7. Access Control: Confidentiality as Architecture
No aspect of union administrative infrastructure is more consequential — or more consistently underdesigned in generic adaptations — than access control. Union casework involves some of the most sensitive information that exists in a workplace: harassment complaints, medical documentation, disciplinary records, legal strategy, internal conflict, and strike planning. The question of who can see what is not a user preferences question. It is a governance obligation with legal and ethical dimensions.
Role-based permissions as the structural default
A union operating system must enforce role-based access control as its structural default — meaning that access is determined by role, not by individual configuration of each user's settings. When a new steward is added to the system, their access is automatically scoped to their worksite's files and their worksite's members. When a staff rep is added, they see what staff reps see. When a trustee is added, they see what trustees see. The access control model is part of the system's architecture, not something that must be manually configured for each new user.
The role-access framework
The following matrix illustrates the access model for a union operating system. This is a baseline framework — specific locals may need to adjust it for their constitutional structure and operational practices.
| Role | Grievance files | Membership records | Finance records | Governance / minutes | Organizing data | Communications |
|---|---|---|---|---|---|---|
| Administrator | Full | Full | Full | Full | Full | Full |
| President | Full | Full | Read only | Full | Full | Full |
| Secretary-Treasurer | Full | Full | Full | Read only | None | Limited |
| Recording Secretary | Full | Full | None | Full | None | Full |
| Servicing Rep / Business Agent | Full | Full | None | Read only | None | Full |
| Organizer | Limited | Campaign only | None | None | Full | Campaign only |
| Chief Steward | Full | Worksite only | None | Read only | None | Worksite only |
| Steward | Own worksite | Worksite only | None | None | None | None |
| Committee Member | None | None | None | Committee | None | Committee |
| Trustee / Exec Board (read-only) | Read only | Read only | Read only | Read only | None | None |
The matrix above reflects a principle that is fundamental to union operations: not everyone should see everything. A steward handling a case at one worksite should not be able to access files from another. A committee member should not be able to view harassment investigation files. A trustee reviewing financial records should not require access to individual grievance files. These restrictions are not bureaucratic — they are the conditions under which members can trust that sensitive information about them will be handled with appropriate discretion.
File-level restrictions for the most sensitive matters
Role-based access is the structural default, but some files require restrictions beyond their role category. A harassment investigation file may need to be restricted to the staff rep handling it and the president — not visible to all staff with "servicing rep" access. A legal opinion about a potential arbitration may need to be restricted to the officers and legal counsel — not visible to the full executive board. A file involving an internal conflict between two members may need to be handled with visibility limited to specific individuals.
A union operating system must support file-level restrictions as a distinct feature — the ability to say, for a specific file, that only these named individuals can view it, regardless of their general role permissions. This is not a niche requirement. It is a routine operational need in any active union office handling the full range of casework.
Principle 5
Access control is architecture, not settings. A union operating system must enforce role-based permissions as its structural default, with file-level restriction capability for sensitive matters. The principle is not complexity for its own sake — it is the minimum necessary to ensure that union members can trust the institution with sensitive information about them, and that the institution can demonstrate appropriate stewardship of that information when challenged.
8. Integration: Why the System Must Be a System
Each of the six layers described in this paper has value on its own. A good grievance tracking system is better than a spreadsheet. A structured member database is better than an employer-provided list supplemented by a personal contact file. A proper meeting management tool is better than Word documents stored in a shared drive.
But the full value of the union operating system is not the sum of its parts. It is the integration between the parts — the connections that make each layer more useful because the others exist.
What integration means in practice
Grievances draw on member records automatically. When a steward files a new grievance, the grievor's worksite, unit, classification, employer, and steward assignment populate from the member record. The collective agreement that governs the file is identified from the unit's structural model. The responsible staff rep is assigned from the worksite's service structure. None of this requires manual entry — it is a consequence of integration.
Communications draw on structural segments dynamically. When the office needs to notify all members at a particular worksite of an upcoming meeting, the recipient list is generated from the current member records at that worksite — reflecting any hires, terminations, or transfers since the last communication. The message is logged against each member's record automatically. The communications history is always current because it is derived from live data, not a separately maintained list.
Meeting reports draw on live operational data. The grievance status report for the executive board is not a manually assembled summary — it is a view of the case management layer that has been filtered and formatted for governance reporting. The financial summary is the same view that the Secretary-Treasurer sees in the finance layer, presented at the right level of aggregation for the board. Meeting preparation takes minutes, not hours, because the data is already structured.
Personnel transitions do not disrupt operations. When a staff rep leaves, every file they were responsible for is visible to the incoming person with complete history intact. When a steward changes roles, their assignments update in the member records and the chief steward sees immediately which worksites need coverage. When a new officer takes over, the governance record — every motion, every decision, every committee report from their predecessor's term — is available without reconstruction.
The full value of the union operating system is not the sum of its parts. It is the integration between the parts — the connections that make each layer more useful because the others exist. A grievance system that does not know who the grievor is, or a communications tool that does not know who the members are, is not an operating system. It is a tool.
Why a suite of tools is not a system
Many attempts to improve union administrative infrastructure have resulted in the adoption of multiple separate tools — a grievance tracker here, a membership database there, a communications platform for outreach — without integration between them. This approach addresses individual pain points without addressing the structural condition that produces them.
A suite of unconnected tools reproduces the same fundamental problem as email and spreadsheets: information lives in multiple places, consistency depends on manual maintenance, and institutional coherence depends on individual discipline rather than structural design. The tools may be better individually, but the system is not better — because there is still no system.
Principle 6
The union operating system is a system, not a suite of tools. Integration — between the structural foundation, the member record, casework management, communications, governance, and finance — is what produces the institutional coherence that no collection of independent applications can provide. The test of whether a union has an operating system is not whether it uses good individual tools. It is whether those tools share a common structural model, a common member record, and a common institutional memory that persists regardless of which individuals currently hold which roles.
9. The Transition: What Moving to Purpose-Built Infrastructure Requires
Understanding what purpose-built union infrastructure must contain is a prerequisite for making good decisions about acquiring it. But the acquisition decision is not the hard part. The hard part is the transition — moving from a fragmented patchwork of tools to an integrated operating system without disrupting the operational continuity that members depend on.
Start with what hurts most
The most sustainable transitions begin with the function that is causing the most operational pain — typically grievance and casework management, where the consequences of inadequate infrastructure are directly felt by members and staff. A local that starts by getting its case management layer right, and builds the other layers from there, is more likely to achieve durable adoption than one that attempts a comprehensive implementation from day one.
This is not a compromise of the integrated vision — it is a recognition that adoption is the prerequisite for value. A system that is fully implemented but not used is worse than a system that is partially implemented but trusted. The local that starts with grievance management, builds confidence in the system, and then extends it to member records and communications will have a more functional operating system after two years than the local that tried to do everything at once and retreated to email when the implementation became overwhelming.
The data migration question
Every transition to purpose-built infrastructure faces the same practical question: what do we do with the data we already have? The answer depends on the quality and accessibility of that data. Some locals have reasonably clean spreadsheets and email archives that can be imported with moderate effort. Others have data distributed across personal devices, paper files, and memory in ways that make systematic migration impossible.
The honest answer in most cases is that the historical data is less important than the current data. Getting the current member list right, the active grievance files current, and the steward assignments accurate is more valuable than a complete historical archive. The historical context that matters — the long-running files, the prior settlements that established practices — can often be captured through a structured hand-off process rather than a comprehensive data migration.
The volunteer layer requires investment in simplicity
A union operating system that requires extensive training will not be adopted by the volunteer layer — stewards, committee members, and elected officers who are doing this work in addition to their regular employment. The interface and workflows that stewards and officers use must be simple enough to be learned quickly and used correctly under pressure. This is not a minor design consideration — it is the primary constraint that distinguishes union-appropriate design from generic case management design.
Simplicity in design does not mean reduction in capability. It means that complex structural features are handled in the architecture — in the role-based access model, in the automatic population of grievance fields from member records, in the dynamic generation of communication lists — so that the user never encounters the complexity directly. The steward files a grievance form. The system handles the rest.
The measure of a union operating system is not its features — it is its adoption
The most sophisticated system in the world produces no value if the stewards don't use it, the staff rep reverts to email after three months, or the officers fill in fields incorrectly because the interface doesn't match how they think about their work. The measure of a purpose-built union operating system is whether it is trusted and used — consistently, by the full range of people who need to rely on it. That standard sets a higher bar than any feature list.
10. Conclusion
A union's administrative infrastructure is not a collection of tools. It is the operating system of a democratic institution — the foundational layer that makes everything else work, that holds the institution's knowledge and structure, and that makes reliable, consistent representation possible regardless of which individuals occupy its roles at any given time.
Building that operating system requires getting six layers right and ensuring they are integrated with each other: the structural foundation that models the union as it actually is; the member record that is the axis around which all other functions rotate; the casework and grievance management layer that is the operational core; the communications layer tied to real groups and tracked to real records; the governance and meeting management layer that supports democratic process as a structural feature; and the finance and compliance layer that provides the clean documentation that accountability requires.
It requires three design principles: structural alignment with union governance categories rather than corporate org-chart categories; confidentiality enforcement through role-based access control as architecture rather than setting; and simplicity of interface for the volunteer layer that makes adoption sustainable.
And it requires a transition approach that is honest about the current state, realistic about what can be achieved incrementally, and grounded in the understanding that adoption is the prerequisite for value.
The infrastructure described in this paper is not aspirational. It is available. The question facing union leadership is not whether purpose-built union infrastructure exists — it is whether the organisation will invest in it. The members who depend on reliable, consistent representation have a direct stake in that answer.
Notes and Sources
This whitepaper is the third in a twelve-part series. It draws on qualitative operational analysis of union office functions, direct engagement with union staff and officers, and review of design principles for case management, membership, and governance systems in union and comparable institutional contexts.
The OS layer table and access control matrix are frameworks derived from operational analysis of union office requirements. They represent baseline design specifications; specific implementation will vary by local size, sector, affiliation structure, and collective agreement provisions.
Companion papers: No. 1, The Infrastructure Gap Inside Modern Union Offices; No. 2, Why Union Administrative Systems Lag Behind Their Operational Complexity (Union Software, 2025).
About Union Software
Union Software builds purpose-built administrative infrastructure for labour unions. Our platform supports grievance and casework management, steward network administration, membership records, governance and meeting management, and communications — designed specifically for how union locals actually operate.
unionsoftware.com · contact@unionsoftware.com