Governance mandates that senior management of the organization is legally and commercially responsible for the overall governance framework of the data center. The framework should address, at a minimum, but not be limited to:
- Security.
- Privacy.
- Ethical trade practices.
- Intellectual property rights.
- Quality process development and maintenance.
- Record keeping.
- EHS – Environment, Health and Safety.
- Accessibility.
- Social responsibility.
Senior management should establish an appropriate management structure which ensures proper legal and ethical business practices are carried out. The organization should also ensure that appropriate policies and procedures are implemented and maintained.
The organization should, as a minimum, comply with all standards and codes required by law. In addition to this, it should consider alignment to established and recognised national and international standards, guidelines and best practices. The organization should consider the implementation of the principles of ISO/IEC 38500.