Focus Areas for Data Governance: Privacy, Compliance, Security

Focus Areas

This type of program typically comes into existence because of concerns about Data Information Security controls, or compliance. Compliance, in this context, may refer to regulatory compliance, contractual compliance, or compliance with internal requirements.

Focus Areas for Data Governance: Privacy, Compliance, Security

This focus is often seen combined with a focus on policy enforcement. It’s also seen combined with a focus on Data Quality.

The program almost always results from a senior management mandate. It may be formally sponsored by Business or IT, or it may be an outgrowth of a Governance, Risk, and Compliance (GRC) program.

These programs generally begin with an enterprise scope, but often efforts are limited to specific types of data. They almost always include technologies to locate sensitive data, to protect data, and/or to manage policies or controls.

 

A charter for this type of program may hold Data Governance and Stewardship participants accountable to:

  • Help locate sensitive data across systems
  • Align governance, compliance, security, and technology frameworks and initiatives
  • Help assess risk and define data-related controls to manage risk
  • Help enforce regulatory, contractual, architectural compliance requirements
  • Support Access Management and Security requirements
  • Identify stakeholders, establish decision rights, clarify accountabilities

Read Next:

Governance and Alignment

Data Governance is a balancing act. On the one hand, you need to exert control over how groups create data, manage data, and use data. On the other hand, you need to promote appropriate levels of flexibility. You need to ensure that data-related efforts support the...
Read More

Defining Organizational Structures

There is no single “right” way to organize Data Governance and Stewardship. Some organizations have distinct Data Governance programs. Others embed Data Governance activities into Data Quality or Master Data Management programs.

Read More

Focus Areas for Data Governance

All Data Governance programs are not alike. Quite the contrary: programs can use the same framework, employ the same processes, and still appear very different. Why is this? It’s because of what the organization is trying to make decisions about or enforce rules for....
Read More

Establishing a Data Governance Office

Most organizations that begin a formal Data Governance and Stewardship effort need a support team to facilitate and coordinate activities of councils, stewards, and stakeholders. This support team may be individual contributors who have been doing this work informally...
Read More

Governance and Issue Resolution

One of the three most important jobs of a Data Governance program is to help resolve data-related issues. These may be conflicting data definitions, data usage concerns, or problems with how data is sourced, how it is integrated, how it is protected, or a myriad of...
Read More

Governance and Decision-Making

Remember our (long) definition for Data Governance? “Data Governance is a system of decision rights and accountabilities for information-related processes, executed according to agreed-upon models which describe who can take what actions with what information, and...
Read More

Starting a Data Governance Program

A successful Data Governance program does not begin with the design of the program! Before you start deciding who goes on what committee, you should be clear about your program’s value statement. You should have developed a roadmap to share with stakeholders. Those...
Read More

Focus Areas for Data Governance: Policy, Standards, Strategy

This type of program typically comes into existence because some group within the organization needs support from a cross-functional leadership body. For example, companies moving from silo development to enterprise systems may find their application development teams...
Read More

Choosing Governance Models

It’s important to define the organizational structure of your Data Governance program. But before you can do that you have to define your governance model at a higher level. You need to consider what types of decisions your governance bodies will be called upon to...
Read More

Focus Areas for Data Governance: Management Alignment

This type of program typically comes into existence when managers find it difficult to make “routine” data-related management decisions because of their potential effect on operations or compliance efforts.Managers may realize they need to come together to make...
Read More