Presentation on theme: "Four Strategies Toward Filling the Governance Toolkit at Memorial University."— Presentation transcript:
Four Strategies Toward Filling the Governance Toolkit at Memorial University.
Data governance How do you start? How do you do it effectively? How do you get buy in?
Backyard Cleanup Community Cleanup
DATA CLASSIFICATION DATA MASKING Cleaning up our own backyard
C&C data classification policy A guideline A framework A shared language A unit-specific standard
Responsible roles We all have a part to play. Data Owner Governs the administrative data. Data Steward Classifies and manages administrative data for a given business data domain. Data Custodian Safeguards administrative data Data User Uses data responsibly.
Related policies ATIPPA – NL Privacy Act PHIA - NL Health Record Privacy Act PIPEDA - Canadian Privacy Act EDS – Electronic Data Security Memorial University Policy
C&C data classification kick-off event Tuesday May
Here are the classes. LET’S KNOW THEM.
Keep it safe. KEEP IT SECURE.
HOW IS C&C USING ITS DATA CLASSIFICATION POLICY? Real examples. From our staff.
The elevator speeches Bill Downey, PMO Michael Windsor, Service Desk Don Bryant, TSG C&C Data Classification Kick-off
The band from left to right: David Pierce, John Martin, Melanie Burgess, Barbara Dawson, Heather Rhodes, Stephen Hennessey, Matthew Hare
our information in four classifications protection for all when we classify it is time to specify the purpose of data Haikus
Measures of success 130 staff > 93 staff attended kick-off > 100 mugs handed out 7 units classifying data
Meta-data – known sensitive data (SIN, DOB) Actual-data – potential sensitive data Discovery