Data Roles and Responsibilities
A data governance policy describes the security controls that will be applied to protect data at each stage of its data life cycle.
# Data Roles
- Data Owner
- Responsible for labeling the asset and ensuring it is protected with appropriate controls. The owner also typically selects a Data Steward and Data Custodian and directs their actions and sets the budget and resource allocation for sufficient controls.
- Data Steward
- Responsible for ensuring data quality
- Data Custodian
- Responsible for managing the system on which the data is stored
- Data Privacy Officer
- DPO
- responsible for oversight of any Personally Identifiable Information assets managed by the company
- Data Controller
- Usually organizational role
- Entity responsible for determining why and how data is stored, collected, and used
- Ensures these purposes and means are lawful
- Data Processor
- Usually organizational role
- Responsible for following the instructions of a data controller with regard to collection or processing