5 Steps to Creating a Strong Compliance and Data Governance Practice

Data Privacy and Regulatory factors are forcing companies to improve their management, protection, and accountability procedures as they relate to data storage and processing.

Implementing Compliance and Governance

Privacy regulations are increasingly rigorous, and organizations can’t ignore them. Leading the way are Europe’s GDPR, the United States’ Health Insurance Portability and Accountability Act (HIPAA), and the CCPA, which PwC considers to be “the beginning of America’s GDPR.”

Data governance ensures data is properly classified, accessed, protected, and used. It also involves establishing strategies and policies to ensure the data storage and processing environments comply with necessary regulatory requirements. Such policies also verify data quality and standardization to ensure the data is properly prepared to meet the needs of an organization. For example, data governance policies define access and control of personal identifiable information (PII). In the US, the types of information that fall under these specific guidelines include credit card information, Social Security numbers, names, date of birth, and other such data.

Implementing effective governance early in your data storage planning process will help you avoid potential pitfalls, such as poor access control and metadata management, unacceptable data quality, and insufficient data security.

Data governance isn’t a technology issue,  it’s an organizational commitment that involves people, processes, and tools.

There are Five Basic Steps to Formulating a Strong Data Governance Practice:

  1. Establish a core team of stakeholders and data owners to create a data governance framework. This begins with an audit to identify issues with current data management policies and areas needing improvement.
  2. Define the problems you’re hoping to solve, such as better regulatory compliance, increased data security, and improved data quality. Then determine what you need to change, such as fine tuning access rights, protecting sensitive data, or consolidating data silos.
  3. Assess what tools and skills you will need to execute the data governance program. This may include people with skills in data modeling, data cataloging, data quality, and reporting.
  4. Inventory your data to see what you have, how it’s classified, where it resides, who can access it, and how it is used.
  5. Identify capabilities and gaps. Then figure out how to fill those gaps by hiring in-house specialists or by using partner tools and services.

Cloud storage achieves effective governance by following proven data management principles, including adding context to metadata to make it easier to track where data is coming from, who touched that data, and how various data sets relate to one another; ensuring quality data is delivered across business processes; and providing a means to catalog enterprise data. 

You may also like…

A Bold New Look for RSTOR

A Bold New Look for RSTOR

Over the coming weeks and months, you’ll start to see some visual and cosmetic changes at RSTOR and I want to take a few minutes to explain what is happening and why.

Accelerating Insights to Action – Part V

Accelerating Insights to Action – Part V

Speed to insight has long been an important objective, but users are often frustrated by delays in getting from data to insights, sometimes due not to technology but rather to project issues. Challenges are only growing as data, especially streaming data, gets more voluminous, varied, and moves with greater velocity. Fortunately, cloud vendors are providing solutions and options to fit ambitious use cases as well as corresponding analytics and AI workloads.

Accelerating Insights to Action – Part IV

Accelerating Insights to Action – Part IV

For project teams to attract investment in technologies and cloud services to enable faster data and support faster analytics, it is essential to articulate carefully the benefits that would accrue to the organization.