Data space governance

Design & implementation of your data space governance framework

Launch and scale your data space with a solid governance backbone. Onecub helps you design, adopt, and operate a governance framework that turns intent into day-to-day practice—complete with a Rulebook and a Rolebook, both human- and machine-readable.

What we deliver

1) Rulebook (operational governance)

Participation & scope: eligibility, tiers, fees, onboarding process, exit rules, jurisdiction.
Policies & contracts: usage control, purposes/scopes/retention, SLAs/SLIs, dispute resolution.
Compliance: GDPR, Data Governance Act, Data Act, AI Act, sector rules.
Interoperability: semantic profiles, catalogue & connector profiles, labels/certifications.
Machine-readable options (ODRL/SHACL/JSON-LD) for policy enforcement via connectors.

2) Rolebook (who does what, where decisions live)

Inside the data space: Governance Authority, committees (onboarding, compliance, semantics, security), use case orchestrators, service providers.
Outside the data space: sector Coordinating Authorities, standards bodies, regulators, other data spaces.
Clear links to artefacts (policies, profiles) each role owns or influences.

3) Operating & organisation design

Governance Authority setup (legal entity form, statutes, RACI, neutrality).
Option for an Operating Company (collaboration platform operations & services under the Rulebook).
Decision-making framework (one-member-one-vote, weighted, hybrid), assurance and audit.

4) Onboarding / offboarding & assurance

Accession agreement, code of conduct, KYC, verification flows.
Certification/label schemes; revocation & exit procedures with data/contract handover.

5) Federation & scalability

Profiles for cross-data spaces interoperability (trust anchors, identity, semantics, catalogue federation).
Sector alignment to avoid overlap with duplicate rule-making and speed adoption.

Typical deliverables

Rulebook v1: PDF + machine-readable policy pack.
Rolebook registry: ownership of roles and rules & decisions mapped.
Onboarding kit: Accession Agreement, checklists, templates.
Policy library: usage control, consent/mandates, SLAs.
Compliance matrix: DGA/Data Act/AI Act/GDPR + sector.
Compatibility matrix: standards and technological stacks.
Federation profile: inter-space trust, semantics, technical profiles.
Operating model: Governance Authority & optional Operating Company blueprint.

How we work

Discovery sprint

Clarify scope, stakeholders, risks, and quick wins.

Co-design workshops

Iterate Rulebook/Rolebook with members.

Adoption

Decision process, sign-off, communication plan.

Implementation

Plug policies into platforms/connectors; automate checks.

Operate & evolve

Metrics, audits, versioning, continuous improvement.

Why Onecub

With hands-on experience across tourism, mobility, legal, the public sector, and more, we bring reusable playbooks that cut time-to-value and de-risk your federation. We actively contribute to the key standards and building-block initiatives — Digital New Deal, Gaia-X, Data Space Support Centre (DSSC), Simpl, Prometheus-X, Eclipse Data Space Components (EDC), MyData, and International Data Spaces Association (IDSA)— so your data space is interoperable, compliant, sovereign, and AI-ready from day one.

Digital New Deal

Gaia-X

Data Space Support Centre

Simpl

Prometheus-X

Eclipse Data Space Components (EDC)

MyData

International Data Spaces Association (IDSA)