Focus Areas for Data Governance: Privacy, Compliance, Security

Focus Areas

This type of program typically comes into existence because of concerns about Data Information Security controls, or compliance. Compliance, in this context, may refer to regulatory compliance, contractual compliance, or compliance with internal requirements.

Focus Areas for Data Governance: Privacy, Compliance, Security

This focus is often seen combined with a focus on policy enforcement. It’s also seen combined with a focus on Data Quality.

The program almost always results from a senior management mandate. It may be formally sponsored by Business or IT, or it may be an outgrowth of a Governance, Risk, and Compliance (GRC) program.

These programs generally begin with an enterprise scope, but often efforts are limited to specific types of data. They almost always include technologies to locate sensitive data, to protect data, and/or to manage policies or controls.

 

A charter for this type of program may hold Data Governance and Stewardship participants accountable to:

  • Help locate sensitive data across systems
  • Align governance, compliance, security, and technology frameworks and initiatives
  • Help assess risk and define data-related controls to manage risk
  • Help enforce regulatory, contractual, architectural compliance requirements
  • Support Access Management and Security requirements
  • Identify stakeholders, establish decision rights, clarify accountabilities

Read Next:

Engaging Stewards and Stakeholders

It seems like there are two types of Data Governance and Stewardship programs: Thriving ones, with highly-engaged stakeholders, and Ones whose futures are in question, since stakeholders and stewards are only sporadically involved or give only weak support to the...
Read More

Focus Areas for Data Governance: Architecture, Integration

This type of program typically comes into existence in conjunction with a major system acquisition, development effort, or update that requires new levels of cross-functional decision-making and accountabilities.What other types of groups and initiatives might want...
Read More

Defining Organizational Structures

There is no single “right” way to organize Data Governance and Stewardship. Some organizations have distinct Data Governance programs. Others embed Data Governance activities into Data Quality or Master Data Management programs.

Read More

Governance and Alignment

Data Governance is a balancing act. On the one hand, you need to exert control over how groups create data, manage data, and use data. On the other hand, you need to promote appropriate levels of flexibility. You need to ensure that data-related efforts support the...
Read More

Defining Data Governance

How you define your program will influence your ability to manage it — to keep all participants on focus, in sync, and striving toward the same goals.

Read More

Assigning Data Ownership

One of the tenets of Data Governance is that enterprise data doesn’t “belong” to individuals. It is an asset that belongs to the enterprise. Still, it needs to be managed…

Read More

Implementing Change Management

Most organizations have string change management – or at least change control – mechanisms for technology. They usually have change management for software applications. They have change management for websites. And yet, many organizations do not practice structured...
Read More

Goals and Principles for Data Governance

What do you want Data Governance to accomplish?  Regardless of the focus of your program, chances are you hope to accomplish the following universal goals for Data Governance programs: Goal – Enable better decision-making Goal – Reduce operational friction Goal –...
Read More

Focus Areas for Data Governance: Management Alignment

This type of program typically comes into existence when managers find it difficult to make “routine” data-related management decisions because of their potential effect on operations or compliance efforts.Managers may realize they need to come together to make...
Read More

Governance Communications

At a Data Governance Conference in Orlando, Florida (USA), a group of managers of successful Data Governance programs reached a startling consensus: They agreed that Data Governance is actually somewhere between 80 and 95% communications!How can this be? They said...
Read More