Skip to main content
SpringerLink
Log in

A systematic literature review of data governance and cloud data governance

  • Original Article
  • Published:
Personal and Ubiquitous Computing Aims and scope Submit manuscript

Abstract

Data management solutions on their own are becoming very expensive and not able to cope with the reality of everlasting data complexity. Businesses have grown more sophisticated in their use of data, which drives new demands that require different ways to handle this data. Forward-thinking organizations believe that the only way to solve the data problem will be the implementation of an effective data governance. Attempts in governing data failed before, as they were driven by IT, and affected by rigid processes and fragmented activities carried out on system by system basis. Up to very recently governance is mostly informal with very ambiguous and generic regulations, in siloes around specific enterprise repositories, lacking structure and the wider support of the organization. Despite its highly recognized importance, the area of data governance is still under developed and under researched. Since data governance is still under researched, there is need to advance research in data governance in order to deepen practice. Currently, what exist are mostly descriptive literature reviews in the area of data governance. In this paper, a systematic literature review (SLR), which offers a structured, methodical, and rigorous approach to the understanding of the state-of-the-art of research in data governance. The objective of the study is to provide a credible intellectual guide for upcoming researchers in data governance to help them identify areas in data governance research where they can make the most impact. The systematic literature review covered published contributions from both academia and industry. The presented SLR searches and examines most relevant published work since year 2000 to-date for data governance for non-cloud, and for cloud computing since 2007. Only 52 studies met the inclusion criteria, which are critically reviewed.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7

Similar content being viewed by others

References

  1. Nfuka E, Rusu L (2010) Critical Success Factors for Effective IT Governance in the Public Sector Organizations in a Developing Country: The case of Tanzania, in Proceedings of the European Conference on Information Systems; Pretoria, South Africa

  2. Salami OL, Johl SK, Ibrahim MY (2014) Holistic approach to corporate governance: A conceptual frame- work. Glob Bus Manag Res 6(3):2002–2006

  3. Weber K, Otto B, Osterle H (2009) One size does not fit all — a contingency approach to data governance. ACM J Data Inf Qual 1(1):4:1–4:27

    Google Scholar 

  4. Begg C, Caira T (2012) Exploring the SME quandary: data governance in practise in the small to medium-sized enterprise sector. Electron J Inf Syst Eval 15(1):3–13

    Google Scholar 

  5. Buffenoir E, Bourdon I (2013) Managing extended organizations and data governance. In Digital Enterprise Design and Management 2013. Springer, Berlin, Heidelberg, pp. 135–145

    Google Scholar 

  6. Niemi E (2011) Designing a Data Governance Framework. [online] Aalto University School of Economics, p.14. Available at: https://pdfs.semanticscholar.org/5825/6cd2df2ba298d6707ef088b7d76ecb68f0a9.pdf [Accessed 10 Aug. 2016]

  7. Wende K (2007) A Model for Data Governance – Organising Accountabilities for Data Quality Management. In Proceedings of the 18th Australasian Conference on Information Systems, Toowoomba (Australia), 2007–12-06, pp. 417–425

  8. The Data Governance Institute (2015) Definitions of Data Governance. [Online]. Available: https://www.datagovernance.com/adg_data_governance_definition/. [Accessed: 16-Feb-2015]

  9. Mell P, Grance T (2011) The NIST definition of cloud computing recommendations of the National Institute of Standards and Technology. Nist Spec Publ 145:7

    Google Scholar 

  10. Almarabeh T, Majdalawi YK, Mohammad H (2016) Cloud computing of E-government. Commun Netw 8(01):1

    Google Scholar 

  11. Kshetri N (2010) Cloud computing in developing economies. Computer 43(10):47–55

    Google Scholar 

  12. Grance T, Patt-Corner R, Voas JB, Badger J (2012) Cloud Computing Synopsis and Recommendations. NIST Special Publication, 800–146

  13. Gorelik E (2013) Cloud Computing Models. Composite Information Systems Laboratory (CISL)

  14. Bojanova I, Samba A (2011) Analysis of cloud computing delivery architecture models. In: IEEE Workshops of International Conference on Advanced Information Networking and Applications (WAINA), Biopolis, pp. 453–458

  15. Forell T, Milojicic D, Talwar V (2011) Cloud management: challenges and opportunities. In: IEEE International Parallel and Distributed Processing, Symposium, Shanghai, China, pp. 881–889

  16. Al-Ruithe M, Benkhelifa E, Hameed K (2016) A conceptual framework for designing data governance for cloud computing. Procedia Compu Sci 94:160–167

    Google Scholar 

  17. Ko RKL, Jagadpramana P, Mowbray M, Pearson S, Kirchberg M, Liang Q, Lee BS (2011) TrustCloud: a framework for accountability and trust in cloud computing, in: IEEE Services, Washington, DC, USA, pp. 584–588

  18. Hogan M, Liu F, Sokol A, Tong J (2011) Nist cloud computing standards roadmap. NIST Special Publication, 35

  19. Li Y, Guo L, Guo Y (2012) CACSS: Towards a Generic Cloud Storage Service. In: CLOSER 2012. SciTePress, pp. 27–36. https://doi.org/10.5220/0003910800270036

  20. Rifaie M, Alhajj R, Ridley M (2009) Data Governance Strategy: A Key Issue in Building Enterprise Data Warehouse. In Proceedings of the 11th International Conference on Information Integration and Web-based Applications & Services, Kuala Lumpur (Malaysia), 2009–12-14, pp. 587–591

  21. Neela KL, Kavitha V (2013) A survey on security issues and vulnerabilities on cloud computing. Int J Comput Sci Eng Technol 4(2):855–860

    Google Scholar 

  22. Hummel M (2014) State-of-the-art: A systematic literature review on agile information systems development. In Hawaii International Conference on System Sciences

  23. Torkar R et al (2012) Requirements traceability: a systematic literature review and industry case study. IJSEKE 22(3):1–49

    Google Scholar 

  24. de O. Luna AJH, Kruchten P, do E. Pedrosa MLG, d. Almeida Neto HR, d. Moura HP (2014) State of the art of agile governance: a systematic review. Int J Comput Sci Inf Technol 6(5):121–141

    Google Scholar 

  25. Kitchenham B, Charters S (2007) Guidelines for performing systematic literature reviews in software engineering. Engineering 2:1051

    Google Scholar 

  26. ISACA.org, “ISACA,” (2016) [Online]. Available: https://www.isaca.org/Pages/default.aspx. [Accessed: 23-Mar-2016]

  27. Master IBM, Management D (2007) Data governance for master data management. Data Manag:67–86

  28. Panian Z (2010) Some practical experiences in data governance. World Acad Sci Eng Technol Manag (62):939–946

  29. De Haes WVGS (2008) Practiices in IT governance and business/IT alignment. Inf Syst Control 2:1–6

    Google Scholar 

  30. Neff A, Schosser M, Zelt S, Uebernickel F, Brenner W (2013) Explicating performance impacts of it governance and data governance in multi-business organisations. In 24th Australasian Conference on Information Systems (ACIS) (pp. 1–11). RMIT University

  31. De Hert P, Papakonstantinou V (2013) Three scenarios for international governance of data privacy: towards an international data privacy organization, preferably a UN Agency? I/S A J Law Policy Inf Soc 9:272–324

    Google Scholar 

  32. Weber, K.; Cheong, L.; Otto, B.; Chang, V.: Organising Accountabilities for Data Quality Management – A Data Governance Case Study. In: Dinter, B.; Winter, R.; Chamoni, P.; Gronau, N.; Turowski, K. (Hrsg.): Proceedings DW2008: Synergien durch Integration und Informationslogistik, St. Gallen, Köllen Druck+Verlag, Bonn, 2008, S. 347–359

  33. Rajendran S (2013) Organizational challenges in cloud adoption and enablers of cloud transition program. Massachusetts Institute of Technology, Massachusetts

    Google Scholar 

  34. Prinzo BR, Group TP (2012) Developing a Strategy for your Data Governance Initiative, pp. 15–17

  35. Catteddu D, D. and Hogben, G. (2009) The European Network and Information Security Agency ( ENISA ) is an EU agency created to advance this work takes place in the context of ENISA ’ s emerging and future risk programme. C ONTACT DETAILS : this report has been edited by. Computing 72:2009–2013

  36. Fleissner BB, Jasti K, Ales J, Thomas R(2014) The Importance of Data Governance in Healthcare, pp. 1–11

  37. Thomas G (2009) How to use the DGI data governance framework to configure your program. Retrieved from https://www.datagovernance.com/. Accesssed 22 Sep. 2017

  38. Hunter L (2015) Tools for Cloud Accountability: A4Cloud Tutorial, Retrieved from https://www.a4cloud.eu/node/362

  39. Groß S, Schill A (2012) Towards user centric data governance and control in the cloud. In Open Problems in Network Security. Springer, Berlin, Heidelberg, pp. 132–144

    Google Scholar 

  40. Statement P, Public T, Officer R (2009) Institutional Data Governance Policy, pp. 1–12

  41. Fu X, Wojak A, Neagu D, Ridley M, Travis K (2011) Data governance in predictive toxicology: a review. J Cheminf 3:24

    Google Scholar 

  42. Prasetyo HN, Surendro K (2015) Designing a data governance model based on soft system methodology (SSM) in organization. J Theor Appl Inf Technol 78(1):46

    Google Scholar 

  43. Buffenoir E, Bourdon I (2012) Reconciling complex organizations and data management: the Panopticon paradigm. arXiv preprint arXiv:1210.6800

  44. Otto B (2011) A morphology of the organisation of data governance. In: 19th European Conference on Information Systems, Helsinki, Finland

  45. Badrakhan BB (2010) Drive toward data governance. Ewweb 13:35–38

    Google Scholar 

  46. Felici M, Koulouris T, Pearson S (2013) Accountability for data governance in cloud ecosystems. In Cloud Computing Technology and Science (CloudCom), 2013 IEEE 5th International Conference on (Vol. 2, pp. 327–332). IEEE

  47. Yale, Wendy (2011) Is data governance in cloud computing still a mirage or do we have a vision we can trust, vol. 42.1

  48. Guillory K (2008) The 4 Reasons Data Governance Fails, Retrieved from https:// www.noah-consulting.com. Accesssed 22 Sep. 2017

  49. the H. I. and M. S. S. (HIMSS) (2015) A ROADMAP TO EFFECTIVE DATA GOVERNANCE : How to Navigate Five Common Obstacles, HIMSS Clinical & Business Intelligence Committee

  50. Mustimuhw Information Solutions Inc. (2015) Data Governance Framework: Framework and Associated Tools, Retrieved from https://static1.squarespace.com. Accesssed 22 Sep. 2017

  51. Rausch N, Corporation SSS, Alexander M (2013) SAS Global Forum 2013 Data Management Best Practices in SAS ® Data Management for Big Data SAS Global Forum 2013 Data Management

  52. Russom P (2008) Data Governance strateGies. Bus Intell J 13(2):13–15

    Google Scholar 

  53. Gow B (2006) CASE STUDY : Data Governance & Compliance for Financial Services

  54. Australian Institute of Health and Welfare (2014) AIHW data governance framework 2014 (AIHW)

  55. Loshin D (2010) Operationalizing Data Governance through Data Policy Management, Retrieved from https://www.knowledge-integrity.com. Accesssed 22 Sep. 2017

  56. Adler S (2007) The IBM data governance council maturity model: building a roadmap for effective data governance. IBM Corporation, Somers

    Google Scholar 

  57. D. G. Office (2013) The State of New Jersey Data Governance Framework Strategic Plan

  58. Kunzinger F, Corporation H, Haines P, Consulting N, Schneider S, Solutions V, (2010) Delivering a Data Governance Strategy that Meets Business Objectives

  59. Mary B, Mccarthy P, Hill S (2011) Cloud adoption points to IT risk and data governance challenges. Directorship 7:209–211

    Google Scholar 

  60. Cloud Security Alliance (2012) Cloud Data Governance Research Sponsorship

  61. Salido Javier (2010) Data Governance for Privacy, Confidentiality and Compliance: A Holistic Approach, ISACA J 6

  62. Salido J (2010) A Guide to Data Governance for Privacy, Confidentiality, and Compliance. Microsoft Trust Comput 35

  63. Solutions C (2013) Data governance in the cloud,” Retrieved from https://www.cloudindustryforum.org. Accesssed 22 Sep. 2017

  64. Allen CHeider ALyman KA et al (2014) Data governance and data sharing agreements for community-wide health information exchange: lessons from the beacon communities. EGEMS (Washington, DC) 2(1):1057

    Google Scholar 

  65. Nunn SL (2009) Driving compliance through data governance. J AHIMA 80(3):50–51

    Google Scholar 

  66. Korhonen JJ, Melleri I, Hiekkanen K, Helenius M (2013) Designing data governance structure: an organizational perspective. GSTF J Comput 2(4):11

    Google Scholar 

  67. Ladley J (2012) Data governance: how to Design, deploy, and sustain an effective program. Newnes, Boston

    Google Scholar 

  68. Seiner RS (2014) Non-invasive data governance: the path of least resistance and greatest success. Technics Publications, Basking Ridge

    Google Scholar 

  69. Bhansali N (Ed.) (2013) Data Governance: Creating Value from Information Assets. CRC Press

  70. Sarsfield S (2009) Data governance imperative. cambridgeshaire: IT Governance Publishing

  71. BR, Reeves MG (2013) Developing a data governance model in health care

  72. Pennanen I (2014) Data governance: intelligent way of managing data

  73. Ndamase Z (2014) The impact of data governance on corporate performance: the case of a petroleum company (Doctoral dissertation, University of Cape Town)

  74. Poor M (2011) Applying aspects of data governance from the private sector to public higher education. Mount Wachusett Community College

  75. Nwabude C, Begg C, McRobbie G (2014) Data governance in small businesses-why small business framework should be different. Int Proc Econ Dev Res 82:101

    Google Scholar 

  76. Fruehauf J, Al-Khalifa F, Coniker J (2015) Using the Bolman and deals four frames in developing data governance strategy. Issues Inf Syst 16(2):161–167

    Google Scholar 

  77. Hallikas J (2015) Data Governance and Automated Marketing–A Case Study of Expected Benefits of Organizing Data Governance in an ICT Company

  78. Alhassan I, Sammon D, Daly M (2016) Data governance activities: an analysis of the literature. J Decis Syst 25(S1):64–75

    Google Scholar 

  79. Koltay T (2016) Data governance, data literacy and the management of data quality. IFLA J 42(4):303–312

    Google Scholar 

  80. Olaitan O, Herselman M, Wayi N (2016) Taxonomy of literature to justify data governance as a pre-requisite for information governance. Proc. 28th Annu. Conf. South. African Inst. Manag. Sci., pp. 586–605

  81. Nielsen OB (2017) A Comprehensive Review of Data Governance Literature. In IRIS

  82. Lee SU, Zhu L, Jeffery R (2017) Data Governance for Platform Ecosystems: Critical Factors and the State of Practice. arXiv preprint arXiv:1705.03509

  83. Kamioka T, Luo X, Tapanainen T (2016) An Empirical Investigation of Data Governance: the Role of Accountabilities. In PACIS, p. 29

  84. Wende K (2007) Data Governance-Defining Accountabilities for Data Quality Management

  85. Weber K, Otto B, Österle H (2009) One size does not fit all---a contingency approach to data governance. J Data Inf Qual 1(1):4

    Google Scholar 

  86. Adelman S (2008) Without a data governance strategy. DM Rev 18:32

    Google Scholar 

  87. Enterprise Data Management Data Governance Plan, (2007)

  88. Moseley B (2008) Keeys to data governance success. inf Syst Control J 3(2):2–4

    Google Scholar 

  89. Thomas G (2006) The DGI data governance framework. Data Gov. Institute, Orlando, p 20

    Google Scholar 

  90. Ibm (2007) The IBM data governance blueprint : Leveraging best practices and proven technologies

  91. Soares S, S (2010) The IBM data governance unified process: driving business value with IBM software and best practices, p. 153

  92. Cheong LK, Chang V (2007) The need for data governance: a case study. ACIS 2007 Proceedings, 100

  93. Power D, Street W (2013) Sponsored by all the ingredients for success : data governance, data quality and master data management. Hub Solut Des 2043(781):1–20

    Google Scholar 

  94. Traulsen S, Tröbs M, AG, UB, Tucherpark A, Ganghoferstrasse, C. (2011) Implementing Data Governance within a Financial Institution. Jahrestagung der Gesellschaft für Informatik

  95. Cheong L, Chang V (2007) The Need for Data Governance: A Case Study, ACIS 2007 Proc., no

  96. Kim SH, Lee IY (2015) Study on user authority management for safe data protection in cloud computing environments. Symmetry 7(1):269–283

    Google Scholar 

  97. Woldu L (2013) Cloud Governance Model and Security for Cloud Service Providers

  98. Saidah AS, Abdelbaki N (2014) A New Cloud Computing Governance Framework. In CLOSER, pp. 671–678

  99. Eckerson W (2011) Creating an Enterprise Data, Tech Target, no. June, pp. 1–39

  100. Alkhater N, Wills G, Walters R (2014) Factors influencing an organisation's intention to adopt cloud computing in Saudi Arabia. In Cloud Computing Technology and Science (CloudCom), 2014 IEEE 6th International Conference on. IEEE, pp. 1040–1044

  101. Gorelik E (2013) Cloud computing models (Doctoral dissertation, Massachusetts Institute of Technology)

  102. Tountopoulos V, Felici M, Pannetrat A, Catteddu D, Pearson S (2014) Interoperability Analysis of Accountable Data Governance in the Cloud. In Cyber Security and Privacy Forum. Springer, Cham, pp. 77–88

    Google Scholar 

  103. Rimal BP, Jukan A, Katsaros D, Goeleven Y (2011) Architectural requirements for cloud computing systems: an enterprise cloud approach. J Grid Comput 9(1):3–26

    Google Scholar 

  104. Madhuri C (2013) Cloud information accountability frameworks for data sharing \nin cloud. IOSR J Comput Eng 13:93–96

    Google Scholar 

  105. Pearson S, Tountopoulos V, Catteddu D, Südholt M, Molva R, Reich C, …, Leenes R (2012). Accountability for cloud and other future internet services. In Cloud Computing Technology and Science (CloudCom), 2012 IEEE 4th International Conference on. IEEE, pp. 629–632

  106. Cloud Security Alliance (2015) Cloud Data Governance Working Group, [Online]. Available: https://cloudsecurityalliance.org/group/cloud-datagovernance/. [Accessed: 12-Jun-2015]

  107. Alexandria V (2014) Despite Data Governance Efforts, Eighty-Nine Percent of Federal IT Professionals Are Apprehensive About Migrating IT Services to the Cloud, [Online]. Available: https://www.businesswire.com/news/home/20140909005167/en/Data-Governance-Efforts-Eighty-Nine-Percent-Federal-Professionals#.VeV27Jrovcc. [Accessed: 12-Jul-2015]

  108. Boniface M, Nasser B, Papay J, Phillips S, Servin A, Zlatev Z, Yang KX, Katsaros G, Konstanteli K, Kousiouris G, Menychtas A, Kyriazis D, Gogouvitis S (2010) Platform-as-a-Service Architecture for Real-time\ nQuality of Service Management in Clouds

  109. Fernandes DA, Soares LF, Gomes JV, Freire MM, Inácio PR (2014) Security issues in cloud environments: a survey. Int J Inf Secur 13(2):113–170

    Google Scholar 

  110. Khajeh-Hosseini A, Sommerville I, Sriram I (2010) Research challenges for enterprise cloud computing. arXiv preprint arXiv:1001.3257

  111. Yeboah-Boateng EO, Essandoh KA (2014) Factors influencing the adoption of cloud computing by small and medium enterprises in developing economies. Int J Emerg Sci Eng 2(4):13–20

    Google Scholar 

  112. Tebaa M, Hajji SE (2014) Secure cloud computing through homomorphic encryption. arXiv preprint arXiv:1409.0829

  113. Ahuja SP, Mani S (2012) Availability of services in the era of cloud computing. Netw Commun Technol 1(1):2

    Google Scholar 

  114. Wang W, Li Z, Owens R, Bhargava B (2009). Secure and efficient access to outsourced data. In Proceedings of the 2009 ACM workshop on Cloud computing security. Acm, pp. 55–66

  115. Khanghahi N, Ravanmehr R (2013) Cloud computing performance evaluation: issues and challenges. Computer 5(1):29–41

    Google Scholar 

  116. Bjarnason S (2011) Demystifying cloud security. Def Softw Eng 4(2):16–21

    Google Scholar 

  117. M. Vael (2010) CC - Cloud Computing Cloud Computing • Introduction • Security • Governance • Risks • Compliance • Recommendations • References Cloud Computing, pp. 1–20

  118. Shah N, Chauhan S (2014) Survey Paper on Security Issues While Data Migration in Cloud Computing. 1(7):134–136

  119. Alam M, Shakil KA (2015) Recent developments in cloud based systems: state of art. arXiv preprint arXiv:1501.01323

  120. Dogo EM, Salami A, Salman S (2013) Feasibility analysis of critical factors affecting cloud computing in Nigeria. Int J Cloud Comput Serv Sci 2(4):276

    Google Scholar 

  121. Maaref S (2012) Cloud computing in Africa-Situation and perspectives. Telecommun. Dev. Sect.-ITU, 70

  122. MCIT, (2014) Report: Saudi Arabia studies arrangements and controls required for provision of cloud computing services. [Online]. Available: https://www.mcit.gov.sa/En/MediaCenter/Pages/News/News-24112014_779.aspx. [Accessed: 05-Aug-2015]

  123. N. Networks and Computing, N. (2014) ITU-T

  124. Low C, Chen Y, Wu M (2011) Understanding the determinants of cloud computing adoption. Ind Manag Data Syst 111(7):1006–1023

    Google Scholar 

  125. Sein MK, Henfridsson O, Rossi M, (2011) REsearch ESsay a Ction DEsign REsearch 1 35(1):37–56

  126. Bulla CM, Bhojannavar SS, Danawade VM (2013) Cloud computing: Research activities and challenges. Int J Emerg Trends Technol Comput Sci 2(5):206–214

    Google Scholar 

  127. Cochran M, Witman PD (2011) Governance and service level agreement issues in a cloud computing environment. J Inf Technol Manag 22(2):41–55

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Staffordshire University, Stoke-on-Trent, UK

    Majid Al-Ruithe, Elhadj Benkhelifa & Khawar Hameed

  2. Cloud Computing and Applications Research Lab, Stoke-on-Trent, UK

    Majid Al-Ruithe, Elhadj Benkhelifa & Khawar Hameed

Authors
  1. Majid Al-Ruithe
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Elhadj Benkhelifa
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Khawar Hameed
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Majid Al-Ruithe.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Al-Ruithe, M., Benkhelifa, E. & Hameed, K. A systematic literature review of data governance and cloud data governance. Pers Ubiquit Comput 23, 839–859 (2019). https://doi.org/10.1007/s00779-017-1104-3

Download citation

  • Received:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s00779-017-1104-3

Keywords

Search

Navigation