What is Data custodian?

Understanding Data custodian

The person role within the organization owner controller. The data custodian is operationally responsible for maintaining and implementing security controls for data assets according to policies set by data owners. Custodians manage the technical environment and handle the day-to-day protection of information. This role is defined in frameworks like COBIT, ISO 27001, and various regulatory standards. Organizations implement the data custodian role by formally designating responsibilities, establishing procedures, and creating accountability mechanisms through documentation and training. For example, a database administrator might be the data custodian for corporate databases, responsible for implementing access controls, encryption, and backup procedures as specified by data governance policies. Related terms: Data owner, Data steward, Data governance, Information security roles, Responsibility assignment, Accountability.