Data Governance
Last updated
Was this helpful?
Common v1.0.0
Last updated
Was this helpful?
Effective data governance is crucial for ensuring interoperability in systems. Data governance frameworks should encompass policies, standards, and procedures that facilitate the seamless exchange and integration of data across different systems. This includes defining data formats, common data elements, and interoperability standards to ensure consistent and accurate data sharing.
Data management practices should address data quality, security, and privacy concerns. Compliance with privacy laws of relevant jurisdictions, such as the or national data protection laws, is essential to safeguard individuals' privacy rights in cross-border data exchanges.
Refer to and for information security management systems and privacy framework.
Data management involves handling, organising, and processing data while respecting privacy laws. Organisations must implement appropriate measures to collect and store data lawfully, ensuring that individuals consent and providing transparent information about data usage. Data must be accurately maintained, regularly updated and securely stored to protect against unauthorised access or breaches.
When data is no longer necessary, organisations should follow proper deletion protocols, employing secure and irreversible deletion methods. Compliance with international privacy standards such as the or the ensures that data management practices align with legal requirements and uphold individuals' privacy rights.
Data storage requires organisations to implement secure systems and safeguards to protect data from unauthorised access, breaches, or loss. Encryption, access controls, and data backups help maintain data confidentiality and integrity.
Privacy laws, such as or , dictate specific requirements for data storage, including provisions for data protection, retention periods, and international data transfers. Adhering to these privacy laws and standards ensures that personal data is stored securely, minimising the risk of unauthorised access or misuse.
Data deletion involves securely and permanently removing data when it is no longer needed or requested by the data subject.
Privacy laws, such as right to erasure or 'right to be forgotten', require organisations to promptly delete personal data upon request. International standards like on information security management or on privacy framework implementation provide guidelines for secure data deletion practices. By following these standards and privacy laws, organisations can ensure that data is deleted in a manner that respects individuals' privacy rights, preventing any potential unauthorised access or unintended data retention.