Thus, simply complying with the vast numbers of data regulations is not a proper long-term data governance strategy. Examples of these regulations include the California Consumer Privacy Act, GDPR and the ePrivacy regulation that is still in the legislative process. So, data governance is not a fixed set of regulations, but can be seen as a fluid construct that needs to adapt when necessary.
To achieve compliance with these regulations, business processes and controls require a set of rules to be followed internally. They also need to be revised and adapted on a regular basis, if necessary. This is the role of data governance in modern, data-driven companies.