Data Governance and Privacy

As the volume and complexity of data continue to grow, solutions are needed to ensure regulatory compliance, protect sensitive data, improve processes, and help make data-driven decisions to achieve organizational goals.  

RTI International leverages people-centered and technology-forward solutions that provide visibility into and control over how data assets are managed throughout the data lifecycle. Our Certified Data Management Professionals have extensive experience across technology, privacy, ethics, and law to help clients effectively govern data and achieve their goals. 

Expertise Across the Spectrum of Data Governance Maturity  

RTI’s experts collaborate closely with clients to develop and enhance data governance programs across all experience levels. Whether clients are looking to create new data governance models or optimize existing frameworks, RTI can manage governance concerns from data collection through data delivery. Our solutions include the following: 

• Operating models, frameworks, and strategies
• Policies, processes, and tools
• Program support
• Data quality standards and metrics
• Regulatory environmental scans and compliance
• Metrics and reporting 

RTI embeds governance frameworks within existing data management procedures to ensure continued access to high-quality data, compliance with regulations, efficient data processing and sharing, and limited data and privacy risks. To help organizations manage new data governance models and processes, we incorporate change management strategies that empower staff through communication plans, training programs, and communities of practice.  

Data Privacy Solutions to Manage Sensitive Data  

Responsible management of personal and health information data is essential for maintaining public trust, meeting legal and ethical obligations, and safeguarding against cyber threats. RTI’s experts collaborate with clients to enhance data privacy frameworks by:

• Evaluating systems to identify risks to data subjects when collecting and processing personally identifiable information;
• Designing and implementing technology systems using privacy principles and frameworks, including NIST SP 800-53, FedRAMP, FISMA, and Privacy by Design;
• Using mitigation strategies that leverage privacy and security controls based on common frameworks, policies, and procedures.

Our data privacy experts also have experience leveraging various privacy-preserving technologies—including de-identification, differential privacy, and synthetic data—to govern access to sensitive data. To identify and anonymize data at different stages of the lifecycle, we apply customized and rule-based methods, such as HIPAA Safe Harbor; and we use data transformations, privacy and security controls, and other processes.