Governance

Overview

At Indiana University, data management governance begins with the Board of Trustees and spans all levels of the institution. The Board of Trustees owns all information at the highest level, except information excluded by Intellectual Property policies. Various other administrators help manage data by creating management policies and implementing different levels of access authorization. These key administrators are referred to as Data Stewards and Data Managers.

Diagram showing the data management governance structure

Leadership

Board of Trustees

The Board of Trustees is Indiana University’s governing board, legal owner, and final authority. For the purposes of information security and privacy governance, the Board is the owner of all information, except information excluded from university ownership as set forth in the Indiana University Policy on Intellectual Property.

Executive management

Includes those individuals assigned executive management responsibilities, typically with the titles of President, Vice President, and Chancellor, and including Academic Deans.

University Data Management Council

The purpose of the UDMC is to provide university-wide strategic planning, governance and oversight for Indiana University’s institutional data. Data governance is a quality control discipline that encompasses the classification, collection, storage, access, use, sharing, maintenance, integrity, privacy and security of institutional information.  As such the Council will strive to ensure that institutional data governance efforts support the university’s missions and strategic plans, address the entire information lifecycle, and adopt and implement safeguards that appropriately balance risk assessment with the need for university employees to access and use data for the efficient and effective execution of their duties.  

Refer to the charter to learn more about the role of the University Data Management Council (UDMC) or to see a list of the permanent members at IU.

Stewards, managers, & custodians

Business function management

Includes those individuals assigned business management responsibilities for a unit or service.

Data Stewards

For the purposes of information security and privacy governance, Data Steward describes an individual with a role title related to representing information -- usually for a specific information type, business sector, or business function for university-wide information governance purposes.  Individually, each Data Steward has management and policy-making responsibilities for their specific data subject areas and as part of the virtual institutional data base.

Data Managers

Data managers are assigned responsibilities to receive, evaluate, and authorize or deny requests for access to systems, applications, and/or databases containing institutional information in electronic or in paper form.

Data Custodians

Includes those individuals identified as a manager of systems containing institutional information: In the student information domain, Data Custodians may be delegated access approval responsibility by the Data Steward and Data Manager of their area.

Related third party

Includes organizations, contractors, vendors, or consultants that interact with institutional information as part of an established relationship to perform services on behalf of IU.

Related policies

Information technologists

IT Management

Includes those individuals assigned technology management/director responsibilities for a unit or service.

IT Professional

Includes those individuals assigned responsibilities for developing and implementing technology infrastructure, systems, and applications to support functional needs upon direction from IT Management.

Related policies

User

Refers to an individual who interacts with institutional information.

Related policies