About UW–Madison’s Institutional Data Policy
Issued Sept. 1, 2020 and effective Jan. 1, 2021, the Institutional Data Policy establishes minimum requirements for the management and stewardship of institutional data resources. The policy defines roles and responsibilities for managing data, plans for data identification, documentation, classification, as well as rules for storage and access to protected information in accordance with applicable laws and regulations.
The collection, secure storage, access, and appropriate use of the growing quantity and variety of data poses many challenges. The policy ensures proper care and maximum leverage potential for the entire life cycle of all institutional data. With an emphasis on quality, access, security, and decision-making, the policy ensures the data can be leveraged as an enterprise asset.
The policy reflects a review and assessment of peer institutions’ institutional data policies, as well as alignment with the DAMA (international data management organization) framework. It was the result and was the result of more than six months of work by the Institutional Data Policy Subcommittee including consultation and review by a broad set of campus stakeholders.
The Institutional Data Policy Implementation Statement outlines the timeline and details of the phased implementation of the policy.
More information including specific procedures and standards for each of the policy’s elements will be made available on a rolling basis.
Institutional Data Policy Implementation Statement
The new Institutional Data Policy seeks to establish consistent and effective university-wide governance and management of institutional data, which has long been decentralized and uncoordinated across systems, functional areas, and campus organizations.
Due to the size and structure of our university and the breadth of the institutional data environment, it will take significant time and effort to bring existing systems, applications, and institutional data products into compliance with the policy. Timely compliance is made even more difficult due to the COVID-19 pandemic, which has resulted in a shift of priorities and an uncertain budget outlook.
With these challenges in mind, the Institutional Data Policy will be implemented in phases. Although the policy has been issued, it will not take effect until January 1, 2021. The gap between issuance and effective dates provides time for communicating the policy to those impacted and for planning.
As of January 1, 2021, the policy will immediately apply to new systems implementation and integration work, new application and institutional data product development, and new institutional data use cases. For existing systems, applications, institutional data products, and institutional data use cases, good faith efforts must be made to achieve compliance within one year of the effective date.
Where compliance is unfeasible or impractical within one year of the effective date of the policy due to technical, budgetary, or other constraints, a request for an exception must be made in accordance with the policy.
Compliance with some aspects of the policy will be impossible prior to issuance of procedures and standards that will provide more detail and specific requirements and processes to effectuate policy statements. In those cases, additional implementation time may be incorporated into those procedures and standards.
Note: Policy statements 1, 5, 7, 10, 11, and 12 were determined to not require an accompanying procedure or standard in order for implementation to be possible, and compliance with those statements is required in accordance with the policy’s implementation timeline. Policy statements 2, 3, 4, 6, 8, and 9 were identified as requiring supporting procedures or standards, and compliance with those policy statements will not be required until their respecting procedures or standards are issued. Please see below chart for status updates.
View the Institutional Data Policy Implementation Statement as a PDF.
Procedures and Standards
Procedures and standards provide additional detail and specific requirements and processes to effectuate policy statements. The procedures and standards will be made available as they are developed and approved. Please check back for updated status information and additional procedures and standards not yet in progress.
Procedures and Standards Status Chart
|Policy Statement Supporting
||Data Issue Management Procedure
||Completed and issued
||Data Documentation Standard
||Data Authorization Standard
||Data Quality Standard
||Data Systems Planning Standard
||Data Integrations Standard