# 3. Policies and processes

Documenting your policies and how you expect people to execute them is fundamental to ensuring good data governance. If you don't have them written down, you can't expect people to do what is required. Policies and processes set out the standards required and should relate to the management of data across its lifecycle, for example:

* Governance of data, including roles and responsibilities for data (project and organisational level).&#x20;
* Data acquisition and collection.&#x20;
* Storage of data, for example in which geographies, on who’s infrastructure, according to what standards?&#x20;
* Use of data. Is it appropriate and ethical? Does it comply with data protection laws?&#x20;
* Sharing of data. Who has access? Rights of employees and individuals. What should be closed, shared or open? Is there a data sharing agreement in place?&#x20;
* Archiving and deletion, for example, after how long and for what purpose might the data be unarchived?

#### **Key questions to ask here include:**

* Do you have the data management policies and processes in place to support compliance with legal, financial and environmental obligations?&#x20;
* Who is responsible for maintaining oversight of these policies and processes?&#x20;
* Are organisational mechanisms in place to address a challenge or obstacle?&#x20;
* Is the organisation behaving ethically in the way data is collected, used and shared?&#x20;
* Are clear policies and processes in place to manage data across its lifecycle?

#### Useful resources for policies and processes include:

* The ODI’s ‘[How to write a good open data policy’ podcast covers how a data strategy should fit within the wider corporate strategy, and the growing importance of collaborating with data.](https://theodi.org/article/data-strategy-why-it-matters-for-businesses-now-more-than-ever-podcast/)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://open-data-institute.gitbook.io/data-governance-playbook/play-one-implementing-data-governance-in-healthcare/how-to-implement-a-data-governance-framework-for-a-healthcare-organisation-or-project/3.-policies-and-processes.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.