Glossary term
Glossary term
Governance and Compliance
The policies, roles, standards, and controls for managing data quality, access, lineage, retention, lawful use, and accountability across the AI lifecycle. AI raises the stakes for data governance because weak lineage, quality, rights management, or access control can scale into biased, unlawful, insecure, or unreliable outcomes.
DAMA-DMBOK2 (Data Management Body of Knowledge) is the leading reference framework for data governance, used by enterprises like Citi and AstraZeneca.
EU AI Act Article 10 imposes data governance requirements specific to high-risk AI including relevance, representativeness, and bias examination.
ISO/IEC 38505-1 provides governance of data principles that integrate with ISO 42001 controls A.7 on data for AI systems.