Focus Areas for Data Governance: Privacy, Compliance, Security

Focus Areas

This type of program typically comes into existence because of concerns about Data Information Security controls, or compliance. Compliance, in this context, may refer to regulatory compliance, contractual compliance, or compliance with internal requirements.

Focus Areas for Data Governance: Privacy, Compliance, Security

This focus is often seen combined with a focus on policy enforcement. It’s also seen combined with a focus on Data Quality.

The program almost always results from a senior management mandate. It may be formally sponsored by Business or IT, or it may be an outgrowth of a Governance, Risk, and Compliance (GRC) program.

These programs generally begin with an enterprise scope, but often efforts are limited to specific types of data. They almost always include technologies to locate sensitive data, to protect data, and/or to manage policies or controls.

 

A charter for this type of program may hold Data Governance and Stewardship participants accountable to:

  • Help locate sensitive data across systems
  • Align governance, compliance, security, and technology frameworks and initiatives
  • Help assess risk and define data-related controls to manage risk
  • Help enforce regulatory, contractual, architectural compliance requirements
  • Support Access Management and Security requirements
  • Identify stakeholders, establish decision rights, clarify accountabilities

Read Next:

Engaging Stewards and Stakeholders

It seems like there are two types of Data Governance and Stewardship programs: Thriving ones, with highly-engaged stakeholders, and Ones whose futures are in question, since stakeholders and stewards are only sporadically involved or give only weak support to the...
Read More

Starting a Data Governance Program

A successful Data Governance program does not begin with the design of the program! Before you start deciding who goes on what committee, you should be clear about your program’s value statement. You should have developed a roadmap to share with stakeholders. Those...
Read More

Setting Governance Roles and Responsibilities

Who does what in a Data Governance program? First, a group of individuals (or a hierarchy of groups) representing a cross-section of stakeholder groups makes a set of rules in the form of policies, standards, requirements, guidelines, or data definitions. (Or, they...
Read More

Focus Areas for Data Governance: Data Quality

This type of program typically comes into existence because of issues around the quality, integrity, or usability of data. It may be sponsored by a Data Quality group or a business team that needs better quality data. (For example: Data Acquisition or  Mergers &...
Read More

Governance and Decision-Making

Remember our (long) definition for Data Governance? “Data Governance is a system of decision rights and accountabilities for information-related processes, executed according to agreed-upon models which describe who can take what actions with what information, and...
Read More

Funding Models: Funding Data Governance

The DGI Data Governance Framework addresses funding two ways: Obtaining funding and support is a phase in the Data Governance Life Cycle Funding is part of one of the components of the framework. What type of funding is needed? Data Governance programs need to...
Read More

Governance and Alignment

Data Governance is a balancing act. On the one hand, you need to exert control over how groups create data, manage data, and use data. On the other hand, you need to promote appropriate levels of flexibility. You need to ensure that data-related efforts support the...
Read More

Focus Areas for Data Governance: Data Warehouses and Business Intelligence (BI)

This type of program typically comes into existence in conjunction with a specific data warehouse, data mart, or BI tool. These types of efforts require tough data-related decisions, so organizations often implement governance to help make initial decisions, to...
Read More

Data Governance Program Phases

As you perform the activities needed to gain support and funding, remember that your program may plan to address multiple focus areas. Each new effort should be introduced using the seven steps of the life cycle. Even specific governance-led projects, such as creating a set of data standards, will want to follow the Data Governance Life Cycle steps.

Read More

Working with Data Stewards

Approaches to Assigning Data Ownership and Stewardship Organizations can take multiple approaches to assigning Data Owners and Data Stewards for enterprise data. In doing so, they need to consider several factors and answer the following questions.Question #1:  Should...
Read More