Who has ultimate responsibility for all data within their business domain?
Data governance is a cross-functional framework that governs the process of data creation, maintenance and the purging of data. Many people incorrectly believe that no extra effort is needed to put governance in place if they already have rules for data maintenance in place. However, just having a rule set for data maintenance is not sufficient. In order to have an effective data governance framework you need: Show
Data Governance ChallengesLegacy Data SystemsMany organizations have old data systems, which are inflexible and difficult to manage, and hinder the free flow of data throughout the enterprise. This makes it difficult to share, organize, and update information. Data that is isolated in separate silos, stale, or poorly organized, can make it difficult to establish data governance activities such as tracking data records, categorizing data, and applying detailed security models. Related content: read our guide to data migration strategy Data VisibilityData governance requires businesses to achieve data transparency. It must be clear which types of data exist in the organization, where it is stored, who can access it, and how it is used. However, legacy systems often obscure the answers to these questions. Data management processes must be implemented to establish strategies and methods for accessing, consolidating, storing, transmitting and preparing data for analysis. Unsecure DataAs the quantity and variety of internal and external data sources grows, so does the likelihood of data breaches. Like data management, data security depends on traceability. IT teams need to be able to track the source, location and users of the data, how it is used, when it is no longer useful and processes used to delete it. Data governance establishes rules and procedures to prevent potential leakage of sensitive business and customer data, and prevent data abuse. However, traditional data platforms create isolated information silos that are difficult to visualize and trace. Without an integrated data store, invisible, untraceable data results in security risks. Lack of Control Over DataMany businesses are required to comply with regulations such as GDPR (General Data Protection Regulation), California Consumer Privacy Act (CCPA), Health Insurance Portability and Accountability Act (HIPAA), and industry standards like PCI DSS. All these regulations require organizations to have a data governance structure that describes data traceability from source to retirement, provide logs recording data access and how, where and when the data is used. Governance enables businesses to control their data and prevent misuse of sensitive information. It does this in a way that can be audited and demonstrated to an external compliance body. Data Governance Goals
Data Governance StrategyA data governance strategy informs the content of an organization’s data governance framework. It requires you to define, for each set of organizational data:
Data Governance Framework
Data Governance Organizational ModelThere is no right or wrong model, it is more into what size is you organization, what is the current structure etc... Decentralized ModelBusiness units control and manage their data independently to best serve their individual department purpose Pros:
Cons:
Federated ModelSingle point of control at the enterprise level while business units are in charge for local decisions Pros:
Cons:
Centralized ModelSingle point of control and decision making with business units having little or no responsibility Pros:
Cons:
What is a Data Governance Policy and Why is it Important?Data governance policies are guidelines that you can use to ensure your data and assets are used properly and managed consistently. These guidelines typically include policies related to privacy, security, access, and quality. Guidelines also cover the roles and responsibilities of those implementing policies and compliance measures. The purpose of these policies are to ensure that organizations are able to maintain and secure high-quality data. Governance policies form the base of your larger governance strategy and enable you to clearly define how governance is carried out. Below are non-exhaustive policy list to be considered:
Data Governance RolesData governance operations are performed by a range of organizational members, including IT staff, data management professionals, business executives, and end users. There is no strict standard for who should fill data governance roles but there are standard roles that organizations implement. Chief Data OfficerChief data officers are typically senior executives that oversee your governance program. This role is responsible for acting as a program advocate, working to secure staffing, funding, and approval for the project, and monitoring program progress. Data Governance CouncilThe data governance committee is an oversight committee that approves and directs the actions of the governance team and manager. This committee is typically composed of data owners and business executives. They take the recommendations of the data governance professionals and ensure that processes and strategies align with business goals. This committee is also responsible for resolving disputes between business units related to data or governance. Data OwnersHas single point of accountability for their respective data domain. They are accountable to ensure that their data domain is properly defined, used, and monitored thin semi-monthly roughout organization across the data lifecycle. They play a leadership role in championing data management efforts within their business areas. Data StewardsServe as an oversight role within their respective domains. They are the main point of contact for business data owners to resolve issues and execute on data management initiatives. They are subject matter experts of their business domain. Data CustodiansServes as a subject matter expert in information management, specializing in a specific data system / application assigned to them. They are responsible for executing data related initiatives and decisions associated to data domains from a technical aspect. 4-Step Data Governance ModelManaging data governance principles effectively requires creating a business function, similar to human resources or research and development. This function needs to be well defined and should include the following process steps:
Data Governance Maturity ModelEvaluating the maturity of your governance strategies can help you identify areas of improvement. When evaluating your practices, consider the following levels. Who has responsibility for all data within their business domain?The Data Owner is responsible for the data within a specific data domain. A data owner has to ensure that the information within that domain is managed properly across different systems and business activities.
Who is responsible for data management in a company?The IT department is typically responsible for implementing a data management system. This is usually overseen by a CDO or the lead on the project. However, a company may also choose to outsource the data management implementation process.
Who is responsible for data content and business rules within an organization?Two functional titles commonly used for these roles are data steward and data custodian. Data Stewards are commonly responsible for data content, context, and associated business rules. Data custodians are responsible for the safe custody, transport, storage of the data and implementation of business rules.
Who owns the data in data governance?One of the tenets of Data Governance is that enterprise data doesn't “belong” to individuals. It is an asset that belongs to the enterprise.
|