Policy Corporate Governance Data Governance Policy
Data Governance Policy
- Aboriginal and Torres Strait Islander in Marine Science
- Courses
- Future Students
- Current Students
- Research and Teaching
- Partners and Community
- About JCU
- Reputation and Experience
- Celebrating 50 Years
- Academy
- Anthropological Laboratory for Tropical Audiovisual Research (ALTAR)
- Anton Breinl Research Centre
- Agriculture Technology and Adoption Centre (AgTAC)
- Living on Campus
- How to apply
- Advanced Analytical Centre
- Alumni
- AMHHEC
- Aquaculture Solutions
- AusAsian Mental Health Research Group
- ARCSTA
- Area 61
- Association of Australian University Secretaries
- Australian Lions Stinger Research
- Australian Tropical Herbarium
- Australian Quantum & Classical Transport Physics Group
- Boating and Diving
- JCU-CSIRO Partnership
- Employability Edge
- Clinical Psychedelic Research Lab
- Centre for Tropical Biosecurity
- Career Ready Plan
- Careers at JCU
- Careers and Employability
- Chancellery
- Centre for Tropical Bioinformatics and Molecular Biology
- CITBA
- CMT
- CASE
- College of Business, Law and Governance
- College of Healthcare Sciences
- College of Medicine and Dentistry
- College of Science and Engineering
- CPHMVS
- Centre for Disaster Solutions
- CSTFA
- Cyber Security Hub
- Cyclone Testing Station
- The Centre for Disaster Studies
- Daintree Rainforest Observatory
- Defence
- Discover Nature at JCU
- Research Division
- Services and Resources Division
- Education Division
- Elite Athletes
- eResearch
- Environmental Research Complex [ERC]
- Estate
- Fletcherview
- Foundation for Australian Literary Studies
- Gender Equity Action and Research
- General Practice and Rural Medicine
- JCU Orientation
- Give to JCU
- Governance
- Art of Academic Writing
- Art of Academic Editing
- Graduate Research School
- Graduation
- Indigenous Education and Research Centre
- Indigenous Engagement
- Indigenous Legal Needs Project
- Inherent Requirements
- IsoTropics Geochemistry Lab
- IT Services
- International Students
- Research and Innovation Services
- JCU Eduquarium
- JCU Heroes Programs
- JCU Webinars
- JCU Events
- JCU Global Experience
- JCU Ideas Lab
- JCU Job Ready
- JCU Motorsports
- JCU Prizes
- JCU Sport
- JCU Turtle Health Research
- Language and Culture Research Centre
- CEE
- LearnJCU
- Library
- Mabo Decision: 30 years on
- MARF
- Marine Geophysics Laboratory
- New students
- Off-Campus Students
- Office of the Vice Chancellor and President
- Virtual Open Day
- Orpheus
- Open Day
- Outstanding Alumni
- Parents and Partners
- Pathways to university
- Pharmacy Full Scope
- Planning for your future
- Placements
-
Policy
- Academic Governance
- Academic Management
- Engagement
-
Corporate Governance
- Academic Freedom and Freedom of Speech Policy
- Affiliation of a Residential College Policy
- Bullying, Discrimination, Harassment, and Sexual Misconduct Policy
- Business Continuity Policy
- Child Safety Policy
- Code of Conduct – University Council
- Compliance Policy
- Conduct of Council Elections Policy
- Conflicts of Interests Policy – University Council and its Committees
- Controlled and Non-Controlled Entities Policy
- Critical Incident Policy
- Data Governance Policy
- Distinguished Professor Policy
- Domestic and Family Violence Policy
- Emeritus Professor Policy
- Foreign Interference Policy
- General Practice Training Governance Policy
- Incident Management Policy
- Information Privacy Policy
- Legal Services Claims and Litigation Assistance Policy
- Organisational Structure Policy
- Records Management Policy
- Right to Information Policy
- Risk Management Policy
- Social Media Policy
- Staff Code of Conduct
- University Archives - Access
- Visiting Speaker and Event Policy
- Policy Development and Review Policy
- Quality Enhancement Framework
- Reviews of Organisational Units and Thematic Areas - Policy and Procedures
-
Estate and Facility Management
- Advertising on Campus
- Alcohol Consumption on University Property
- Approval of Works to University Buildings and Site Infrastructure
- Authorised Use of University Facilities, Premises and/or Grounds for Non-core Purposes
- Environmental Policy
- High Voltage Access Policy
- Memorial Plaques
- Noise on University Sites
- Real Estate Dealings Policy
- Security Policy
- Space Allocation and Management Policy
- Student Timetable Policy
- Tree Protection
- Vehicle Fleet Policy
- Weapons Policy
- Adaptive Workplace Policy
-
Financial Management
- Appendices
-
Assets (FMPM 200 - FMPM 399)
- FMPM 200 Overview - Assets & Cash Management
- FMPM 210 Cash
- FMPM 220 Policy - Bank Accounts
- FMPM 230 - Petty Cash Advances
- FMPM 300 Investments
- FMPM 320 Plant and Equipment
- Financial FMPM 322 - Acquisitions of Plant and Equipment
- FMPM 260 Other Advances
- FMPM 330 Non-Capital Assets
- FMPM 280 Official Stores
- FMPM 290 Prepayments
- FMPM 323 - Disposal of Property, Plant and Equipment Procedure
- FMPM 324 Stocktake
- FMPM 350 Intangible Assets
- FMPM 270-2 Accounts Receivable - Student Debtors - Penalties
- FMPM 240 Travel Advances (Students)
- FMPM 330 Non-Capital Assets
- FMPM 270-1 Accounts Receivable
- FMPM 250 - Policy Salary Advances
- Equity (FMPM 500 - FMPM 599)
- Expenses (FMPM 700 - FMPM799)
- Financial Management and Control (FMPM 800 - FMPM 899)
- Further Applications (FMPM 900 - FMPM 999)
- Introduction (FMPM 100 - FMPM 199)
- Liabilities (FMPM 400 - FMPM 499)
- Revenue (FMPM 600 - FMPM 699)
-
Human Resources
- Awards for Excellence Policy
- Bullying, Discrimination, Harassment, and Sexual Misconduct Policy
- Community and Indigenous Language Allowance
- Competency Pay for Tradespersons Policy
- Conflict of Interest Policy
- Early Retirement Policy
- Equal Employment Opportunity
- Honorary Appointments Policy
- Human Resources Policy Glossary
- Market Loading Policy
- Overpayment of Wages Policy
- Performance, Development and Recognition Policy
- Recruitment, Selection and Appointment Policy
- Relocation Assistance Policy
- Remote Working Policy
- Salary Packaging Program Policy
- Special Studies Program Policy
- Supported Wage System (SWS) Policy
- Mandatory Training Policy
- Digital Infrastructure
-
International and Admissions
- Attendance Monitoring Policy - English Language and Foundation Programs
- Enrolment Requirements for International Student Visa-Holders Policy
- Management of Off-Campus Operations, Ventures and Partnerships
- Transfer of International Student Visa Holders to Other Educational Institutions
- US Federal Student Aid-SAP & Return to Title IV Policy
- Admissions Policy
-
Learning and Teaching
- Blended Learning Policy
- Charter of Responsibilities for Academic Quality and Governance
- Coursework Academic Integrity Policy
- English Language and Numeracy Policy
- Graduate Attributes
- Graduate Certificate of Education (Academic Practice) Internal Sponsorship Policy
- Learning Teaching and Assessment Policy
- Policy Glossary
- Review of a Student’s Suitability to Continue a Course Involving Placement
- Student Digital Experience Policy
- Student Evaluation of Subjects and Teaching Policy
- Student Retention Policy
- Research Education
- Research Management
-
Student Matters
- Academic Progression Policy
- Administration of Commonwealth Scholarships Policy
- Attendance Monitoring Policy - English Language and Foundation Programs
- Award Finalisation and Graduation Policy
- Bullying, Discrimination, Harassment, and Sexual Misconduct Policy
- Copyright Policy and Procedure
- Coursework Enrolment Policy
- Coursework Scholarships, Grants and Prizes Policy
- Library Use Policy
- Student Code of Conduct
- Student Complaints Policy
- Student Disability Policy
- Student Fee Payments and Refunds Policy
- Student Review and Appeals Policy (effective from 01/01/2023)
- Student Special Circumstances Policy
- Transfer of International Student Visa Holders to Other Educational Institutions
- Student Results Policy
- Support for Students Policy (Interim)
- Work Health and Safety
- Policy search
- PAHL
- Publications
- Professional Experience Placement
- Queensland Research Centre for Peripheral Vascular Disease
- Rapid Assessment Unit
- RDIM
- Researcher Development Portal
- Roderick Centre for Australian Literature and Creative Writing
- Safety and Wellbeing
- Scholarships
- Contextual Science for Tropical Coastal Ecosystems
- Staff
- State of the Tropics
- Strategic Procurement
- Student Equity and Wellbeing
- Student profiles
- SWIRLnet
- TARL
- TESS
- TREAD
- TropEco for Staff and Students
- TQ Maths Hub
- TUDLab
- Unicare Centre and Unicampus Kids
- UAV
- VAVS Home
- Work Health and Safety
- WHOCC for Vector-borne & NTDs
- Media
- Copyright and Terms of Use
- Australian Institute of Tropical Health & Medicine
- Pay review
Print FriendlyIntent
The purpose of this policy is to provide an overarching approach and common understanding to ensure the University’s data is appropriately managed and governed.
Scope
This policy applies to institutional data of James Cook University as defined in this policy, and to all staff, students, affiliates and others provided access to University data. It includes data in all formats (paper, digital or audio-visual) whether registered files, working papers, electronic documents, emails, online transactions, data held in databases or on tape or disks, maps, plans, photographs, sound and video recordings, or microforms. It includes current institutional data, and institutional data created in the past.
Definitions
Data refers to Institutional Data.
Data access defines the ability to access, change or delete data elements housed in an electronic repository such as a database. The authorisation to access data, and functions that can be undertaken, may vary according to a person’s role. For example, administrators may have the ability to remove, edit and add data, authorised users may have the ability to read data, while other users may have no access to the data.
Data element is the fundamental data structure in a data processing system, or any unit of data that has a precise meaning or precise semantics (for example Student ID, Staff ID, Name, Address, Date of Birth).
Data governance is a process and structure for formally defining and managing information as a resource. It is a business activity that determines and prioritises the benefits data brings to the university (including financial, reputational and other benefits) as well as mitigating the business risk of poor data practices and quality. Data governance relies on the right people involved at the right time, having access to and using the right data to make the decisions.
Data quality refers to the state of completeness, validity, consistency, timeliness and accuracy that makes data appropriate for a specific use. It is a perception or an assessment of information's fitness to serve its purpose in a given context. Data quality is affected by the way data is entered, stored and managed.
Information1is data that;
- has been organised and exposes relationships,
- has been processed in a way that makes it easier to measure, visualise and analyse for a specific purpose, and
- is sometimes referred to as derived data.
Institutional data covers all data captured within the University. There are different types of data, and university data generally consists of both ‘corporate data’ and ‘research data’.
Corporate data are data created, collected, received, maintained or transmitted for the purposes of supporting administrative functions across the university, and includes data in all formats (i.e hardcopy, digital or audio visual). Corporate data can include (but is not limited to);
- data related to planning, managing, operating, controlling, internal or external accountability or auditing of the University,
- data created, received, maintained, or transmitted as a result of educational or clinical activities, including student feedback surveys,
- administrative data generated by research activities (ie fund or grant applications, ethics applications and supporting documents, GRS enrolment documentation etc.),
- data generally referenced or required for use by more than one organisational unit (ie Human Resource, Finance, Colleges etc.)
- data included in a University academic or administrative report,
- data that the University is legally or contractually obliged to hold,
- data that is generated by a system or an individual, and
- metadata
Research data is any data that has been collected, generated or created during an academic research project, and has no recognised human intellectual contribution. It may be raw, cleaned, or processed (via machine), and may be held in any format or media.
Metadata is essentially data about data. It is used to describe characteristics such as content, quality, format, location and contact information of physical or digital data. Metadata ensures data can be discoverable, citable, reusable and accessible in the long term.
Organisational Group: An Organisational Group is a reportable group within the University, these can include Colleges, Directorates, Centres (e.g. Indigenous Education and Research Centre) and Research Institutes. The University’s financial controls and reporting occur at Organisational Group level. For administration purposes the Organisational Group is captured by the first 3 digits of the Organisation Code (e.g. 222 – College of Arts, Society and Education).
Sensitive data2 is any data that identifies individuals or personal information of an individual, and carries a risk of causing discrimination, harm or unwanted attention.
Sensitive information is personal information relating to an individual's:
- racial or ethnic origin, including country of birth;
- political opinions;
- membership of a political association;
- religious beliefs or affiliations;
- philosophical beliefs;
- membership of a professional or trade association;
- membership of a trade union;
- sexual orientation or practices;
- criminal record;
- child related employment screening reports;
- financial situation; and
- employee’s record (subject to exemptions)
Sensitive information also includes information relating to:
- health;
- genetics; and
- biometrics.
Note 1: For the purpose of this policy, ‘data’ refers to both ‘data’ and ‘information’.
Note 2: Sensitive data is also referred to as “special category data” in the European Union’s General Data Protection Regulation
Policy
James Cook University’s institutional data are valuable assets and must be maintained, distributed and protected as an asset. It is vital to have reliable, trusted data to make sound decisions at all levels of the organisation.
The aim of the policy is to provide a framework that ensures data is delivered through authorised systems throughout the University at an agreed standard.
The guiding principles for Data Governance at the University are:
- Institutional data are the property of James Cook University and shall be managed as a key asset.
- Institutional data are protected in a manner commensurate with the sensitivity and value of the asset.
- No one person, department, division, school or group “owns” data, even though specific units bear responsibility for certain data.
- Unnecessary duplication of institutional data is avoided.
- Quality standards for data and or metadata must be defined and monitored as outlined in the relevant data governance procedure.
- Appropriate data security measures must be adhered to at all times to assure the safety, quality and integrity of institutional data.
- For the purpose of transparency, institutional data at Organisational Group Level shall be accessible to all internal roles, unless there is a particular reason to decline access to data.
- Records stored in an electronic format must be protected by appropriate electronic safeguards and/or physical access controls that restrict access only to authorised user(s). Similarly, data in the University data repository (databases etc.) must also be stored in a manner that will restrict access only to authorised user(s).
- Personal data collected under the auspices of the Information Privacy Statement – Collection Use and Disclosure of Personal Information are considered to be institutional data.
- Metadata shall be recorded, managed and utilised as appropriate to University needs, agreed priorities and if applicable to external requirements.
- Staff will be held accountable to their data governance roles and responsibilities as outlined in the relevant data governance procedure.
- Institutional data must be appropriately maintained.
- Resolution of data priorities and data quality issues related to institutional data shall follow consistent processes as outlined in the relevant data governance procedure.
- Personal use of institutional data, including derived data, in any format and at any location, is prohibited, and may be a breach of the Information Privacy Policy and respective Codes of Conduct. The use of institutional data, to which the staff member has access, is not considered personal use if used for the purposes of academic promotions.
- The University, where possible and appropriate, supports open data and permits secondary use of data through controls such as: informed consent; data de-identification; data consolidation; and controlled access conditions.
Related policy instruments
- Data Governance Procedures (under development)
- Information Privacy Policy
- Information Privacy Statement – Collection Use and Disclosure of Personal Information
- Intellectual Property Policy and Procedure
- General Data Protection Regulation (GDPR) Procedure
- Personal Information Data Breach Procedure
- Request for Access or Amendment to Personal Information Procedure
- Records Management Policy
- Right to Information Policy
- Digital Technologies Acceptable Use Policy
- Information Communication Technology (ICT) Access and Account Management Procedure
- Cybersecurity Policy
- Cybersecurity Management Plan
- Open Scholarship Policy
- Management of Data and Information in Research Procedure
- Research Data & Information Management Framework 2020-2025
- Research Data & Information Governance Guideline
- Organisational Structure Policy
- James Cook University Code for the Responsible Conduct of Research (Research Code)
- JCU Authorship Procedure
- JCU Code of Conduct- University Council
- JCU Staff Code of Conduct
- Student Code of Conduct
- Managing and Investigating Potential Breaches of the JCU Code for the Responsible Conduct of Research Procedure
- JCU Publication & Dissemination of Research Procedure
- JCU Researcher Supervision Procedure
- JCU Disclosure of Interests and Management of Conflicts of Interest Procedure
Related documents and legislation
- Right to Information Act (Qld) 2009
- Privacy Act 1988 (Cth)
- European Union’s General Data Protection Regulation
- National Health and Medical Research Council Open Access Policy
- Australian Research Council Open Access Policy
- Queensland Government Policies:
- Records Governance Policy
- Information Access and Use Policy
- Open Data Policy
- Information Security Policy
- Metadata Management Principles
Administration
NOTE: Printed copies of this policy are uncontrolled, and currency can only be assured at the time of printing.
Approval Details
Policy Domain | Corporate Governance |
Policy Sponsor | Vice Chancellor |
Approval Authority | Council |
Date for next Major Review | 02/12/2026 |
Version | Approval date | Approved by | Implementation date | Details | Author |
22-1 | 02/12/2021 | Council | 08/02/2022 | Policy established | Director, Planning, Performance and Analytics |
Keywords | Data governance, information management |
| Contact person | Director, Planning, Performance and Analytics |