UTA Legal Documents

IT-PO-06 Data Governance Policy

I. Title

Data Governance Policy 

II. Policy

A. Purpose

  1. This policy outlines principles and responsibilities for managing The University of Texas at Arlington (UTA or University) data to ensure accuracy, security, and appropriate governance in support of academic, administrative, and research activities.
  2. It applies to all University staff, faculty, students, contractors, and third-party partners who access, manage, or share University data.
  3. University Data refers to all information held on behalf of the University or created in support of University business (e.g., academic records, student services, institutional operations).
  4. Exclusion: Data related to ongoing and completed research is specifically excluded from this policy.

B. Policy Principles

  • Access Control: Access is role-based and must be authorized by Data Owners.
  • Accountability: All data is assigned a Data Owner responsible for quality, compliance, and access.
  • Data Classification: Data is classified based on sensitivity and legal requirements such as FERPA or GDPR.
  • Data Privacy and Ethics: Collection and use must align with laws, policies, and institutional values.
  • Data Quality: Data must be maintained for accuracy, consistency, and reliability.
  • Data Sharing and Use: Sharing is subject to legal review and appropriate data sharing agreements.
  • Metadata and Documentation: Assets are documented to promote transparency and reuse.
  • Retention and Archiving: Data is retained according to University records retention policies and legal requirements.

C. Roles and Responsibilities

  1. Operational Roles: Includes Data Owners and Data Stewards responsible for handling data quality, access, and compliance.
  2. Data Management Officer: The Chief Analytics and Data Officer is designated to establish the governance program, identify assets, and oversee management processes.

D. Policy Enforcement and Compliance

Violations may result in disciplinary action under University codes of conduct or state/federal regulations. Users must report misuse or suspected breaches to the Chief Analytics and Data Officer or Chief Information Security Officer.

III. Definitions

  • Data: Information held on behalf of or created in support of University business (academic, administrative, etc.).
  • Data Owner: Represents a business function/department; has overarching accountability for data quality, security, and compliance.
  • Data Steward: Handles operational, day-to-day management tasks like maintaining data quality and resolving issues.

IV. Relevant Federal and State Statutes

  • Tex. Gov. Code § 2054.137: Designated Data Management Officer 
  • Tex. Gov. Code § 2054.138: Security Controls for State Agency Data 

V. Relevant UT System Policies, Procedures and Forms

  • UT System Policy UTS 165: Information Resources Use and Security 

VI. Who Should Know

All University staff, faculty, students, contractors, and third-party partners who access, manage, or share University data.

VII. UTA Office(s) Responsible for Policy

  • Responsible Officer: CFO & Vice President for Business & Finance 
  • Sponsoring Department: University Analytics 

VIII. Dates Approved or Amended

October 7, 2025 

IX. Contact Information

  • General Inquiries: universityanalytics@uta.edu 
  • Policy Errors/Changes: policysite@uta.edu 

Posted

in

by

Ashzaeen Khan

Tags: