Risk Assessment

reports | Data Security

Gartner report: Develop a Financial Risk Assessment for Data Using Infonomics


Data is the lifeblood of modern digital businesses. It is literally the most important asset for many organizations. Yet, few enterprises actually value and treat data as an asset equal to their physical inventory, cash, or employees. As a result, companies don’t know the financial risks if their data is lost, stolen or found non-compliant with privacy laws. Nor can they enact data handling and security policies commensurate with those financial risks. The emerging discipline of Infonomics provides business leaders a way to understand and value their information and create security policies that make fiscal sense. We believe that this Gartner research report, co-written by Gartner VP and creator of the term Infonomics, Douglas Laney, gives CISOs and other security and risk management leaders the tools to develop a financial risk assessment model for your data using the theory of Infonomics. Key takeaways include how to:

  • Apply the Gartner data security governance framework to identify business risks that arise from security, regulatory or processing incidents;
  • Use Infonomics to evaluate the short- and long-term financial liabilities that result from business risks associated with data monetization;
  • Incorporate decision matrices as part of the Gartner financial data risk assessment for each dataset to guide appropriate investment, management or security mitigation actions.
Today’s businesses need to start treating their data like a real asset, and that means understanding the financial risks around their data. Download this indispensable report as the first step towards protecting your organization in the age of Infonomics.


Gartner, Develop a Financial Risk Assessment for Data Using Infonomics, 30 January 2019, Brian Lowans, Richard Hunter, Douglas Laney © 2019 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner's prior written permission. It consists of the opinions of Gartner's research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see "Guiding Principles on Independence and Objectivity."


Risk Assessment

Fill in your details to access it