ABAC (Attribute-Based Access Control)
ABAC decides access by evaluating attributes of the person, the resource, the action, and the context against a policy, instead of by member...
Read definitionData ownership means that a person or team is formally responsible for a dataset: its definition, quality, access rules, lifecycle, and priorities. The owner may not do every task, but they make the decisions.
Data ownership means that a person or team is formally responsible for a dataset or data domain. The owner is accountable for definition, quality expectations, access rules, lifecycle, and improvement priorities.
The owner does not have to do every task by hand. They are the decision-maker and escalation point. If customer status is unclear, if access is disputed, or if two systems disagree, the data owner decides what the organisation means and what should happen next.
Without ownership, data becomes everyone's problem and nobody's responsibility. Duplicate customers stay unresolved. Product categories drift. Finance and sales disagree about revenue. No dashboard tool can fix that by itself.
The two roles are related, but they answer different questions.
Data owner
The owner is accountable and decides. This is usually a business role: sales owns customer and pipeline data, finance owns financial data, operations owns inventory or delivery data. The owner approves definitions, access, priorities, and acceptable quality levels.
Data steward
The steward maintains and follows up. A steward documents definitions, checks quality, handles questions, merges duplicates, updates glossary entries, and escalates issues to the owner when a decision is needed.
In an SME, the same person may be both owner and steward. That is fine. The distinction matters when decision authority and day-to-day maintenance are split.
Data mesh makes ownership a central principle. In Zhamak Dehghani's data mesh model, analytical data is owned by business domains rather than pushed into one central data team.
Sales owns sales data products. Logistics owns delivery data products. Finance owns financial data products. Each domain publishes data with definitions, quality expectations, discoverability, and contracts for consumers.
The reason is practical: the people closest to the business process usually understand the data best. A central platform team can provide tooling and standards, but it should not become the only team responsible for every definition in the company.
Data ownership in governance is about responsibility. It says who decides, maintains, approves, and answers for a dataset.
Legal ownership is a different question. Depending on the data, rights may come from contracts, intellectual property, database rights, confidentiality, sector rules, or privacy law. In the EU, personal data is governed by GDPR. Individuals have rights over their personal data, such as access, rectification, erasure, restriction, portability, and objection. A company may be the controller for processing, but that does not mean a sales manager legally owns the customer's personal data like a physical asset.
Keep those two meanings separate. For daily analytics work, you usually need governance ownership: who owns the customer table, who approves the definition, and who responds when quality fails.
A typical SME has customer data in three places: CRM, accounting, and ecommerce. Sales updates contact details. Finance creates invoices. The webshop creates a new customer record at checkout.
Ask who owns the customer table and the room often goes quiet.
That silence becomes expensive. Which record wins when the same customer appears twice? Is a branch a separate customer or part of the parent company? Is an inactive customer someone with no order in twelve months, twenty-four months, or never? Who may export the customer list?
These are ownership questions. If nobody has the mandate to decide, data quality slowly decays.
Start with critical domains. Customer, product, supplier, employee, finance, and operational KPIs usually come first.
Name a business owner. Pick someone with authority over the process, not just the system administrator.
Write the scope. Define which datasets and fields the owner covers.
Give decision rights. The owner must be able to approve definitions, access, quality targets, and prioritised fixes.
Assign stewardship. Someone needs time to maintain metadata, monitor quality, and follow up issues.
Make it visible. Put owners in the data catalog, dashboard documentation, and incident process.
Owner in name only
If the owner has no mandate or time, nothing changes. Ownership needs decision rights.
IT as default owner
IT may own the database, but the business owns the meaning. A database administrator should not decide what an active customer is.
Too broad ownership
One person cannot meaningfully own all data. Split by domain or data product.
No stewardship capacity
Owners decide, but someone still has to document, test, monitor, and clean up.
No escalation path
When two departments disagree, the owner or governance forum must be able to make a final call.
ABAC decides access by evaluating attributes of the person, the resource, the action, and the context against a policy, instead of by member...
Read definitionAnomaly detection automatically flags data points, events, or patterns that do not fit normal behaviour. It can catch odd invoices, machine ...
Read definitionAnonymisation makes data no longer reasonably linkable to a person. Pseudonymisation replaces identifiers with codes but keeps a route back ...
Read definitionAn approval workflow routes a request to the people who must sign off before it takes effect. A purchase, an expense, a data change, or an a...
Read definitionAn audit trail is an immutable, time-ordered record of who did what, when, and to which record. You use it to reconstruct events after a dis...
Read definition
A step by step guide on how you can create an event log for process mining.
Test data ideas fast with pretotyping. Learn how to validate concepts in days, avoid over-engineering, and build what truly adds value.