Ethical and Regulatory Challenges in Cybersecurity: A Survey of Data Governance and Policy Mechanisms

Authors

  • Dr. Neha Upadhyay Lakshmi Narain College of Technology (MCA), LNCT Campus, Kalchuri Nagar, Raisen Road, P.O. Kolua, Bhopal, Madhya Pradesh, India. Author

DOI:

https://doi.org/10.63282/3050-922X.IJERET-V7I3P105

Keywords:

Cybersecurity, Data Governance, Policy Mechanisms, Ethical AI, Privacy, Regulatory Compliance, Data Security, Artificial Intelligence (AI), Governance Frameworks

Abstract

The rapid growth of intelligent systems has transformed the way organizations generate, manage, and secure data. While these technologies enable improved operational efficiency and data-driven decision-making, they also introduce significant challenges related to data governance, privacy, security, ethical AI, and regulatory compliance. Effective data governance and policy mechanisms are essential for ensuring data quality, integrity, accountability, and resilience in increasingly complex digital environments. This paper presents a comprehensive review of cybersecurity, data governance frameworks, policy enforcement mechanisms, and the ethical and regulatory challenges associated with managing cybersecurity data. It examines key governance principles, AI-driven governance approaches, privacy-preserving techniques, and regulatory frameworks such as the General Data Protection Regulation (GDPR) and the Nigeria Data Protection Regulation (NDPR). Furthermore, the paper provides a comparative analysis of recent studies on data governance and policy mechanisms, highlighting their objectives, contributions, limitations, and future research directions. Based on the identified research gaps, the study emphasizes the need for adaptive, intelligent, and automated governance frameworks capable of supporting real-time policy enforcement, risk assessment, explainable AI, and compliance management across cloud, IoT, and multi-tenant environments. The findings offer valuable insights for researchers, practitioners, and policymakers seeking to develop secure, trustworthy, and ethically responsible data governance solutions for next-generation cybersecurity systems.

References

[1] H. Y. Teh, A. W. Kempa-Liehr, and K. I.-K. Wang, “Sensor data quality: a systematic review,” J. Big Data, vol. 7, no. 1, p. 11, Dec. 2020, doi: 10.1186/s40537-020-0285-1.

[2] S. K. Madishetty and G. N. M. V. Kumar, “Intelligent Surgical Tables: Real-Time Patient Monitoring and Autonomous Adjustment Using IoT, Cloud Computing, and Cybersecurity,” J. Comput. Anal. Appl., vol. 31, no. 2, 2023, [Online]. Available: https://eudoxuspress.com/index.php/pub/article/view/5502

[3] M. Janssen, P. Brous, E. Estevez, L. S. Barbosa, and T. Janowski, “Data governance: Organizing data for trustworthy Artificial Intelligence,” Gov. Inf. Q., vol. 37, no. 3, p. 101493, Jul. 2020, doi: 10.1016/j.giq.2020.101493.

[4] Hirenkumar N. Dholariya, “GVIF: A Governed Vector Intelligence Framework for AI-Driven Cloud Data Modernization in Regulated Financial Systems,” Int. J. Comput. Exp. Sci. Eng., vol. 12, no. 1, pp. 371–386, Jan. 2026, doi: 10.22399/ijcesen.4797.

[5] J. Bobulski and M. Kubanek, “A method of cleaning data from IoT devices in Big data systems,” in 2022 IEEE International Conference on Big Data (Big Data), IEEE, Dec. 2022, pp. 6596–6598. doi: 10.1109/BigData55660.2022.10020651.

[6] H. Lex, C. Schütz, A. Knoblauch, and T. Schack, “Cognitive Representation of a Complex Motor Action Executed by Different Motor Systems,” Minds Mach., vol. 25, no. 1, pp. 1–15, Feb. 2015, doi: 10.1007/s11023-014-9351-9.

[7] Z. Cui, “A Review of Ethical Issues in the Field of Cybersecurity,” Appl. Comput. Eng., vol. 150, no. 1, pp. 125–132, 2025, doi: 10.54254/2755-2721/2025.22528.

[8] M. Kari, “Intelligent Deep Learning-Based System for Improved Phishing Identification Accuracy in Web Platforms,” in 2026 IEEE International Conference for Convergence in Computing Technology (I3CTCON), IEEE, Mar. 2026, pp. 1–6. doi: 10.1109/I3CTCON68242.2026.11508030.

[9] S. Singh, “Advancing Network Security in 5G: Leveraging the 5G-NIDD Dataset for Intrusion Detection and Mitigation,” in 2025 IEEE 12th International Conference on Cyber Security and Cloud Computing (CSCloud), IEEE, Nov. 2025, pp. 1–6. doi: 10.1109/CSCloud66326.2025.00055.

[10] R. Palwe, “Three Layers of Trust in AI Interfaces: Interface, Behavior, and Organization,” Int. J. Sci. Res., vol. 15, no. 1, pp. 1152–1160, 2026.

[11] S. Kehinde and A. Info, “Information governance frameworks for strengthening cybersecurity resilience in organizations,” vol. 1, no. 4, pp. 99–115, 2025.

[12] S. Irfan, “Enhancing Email Security Through Accurate Phishing Detection Using Deep Transformer Models,” in 2026 World Conference on Computational Science and Technology (WcCST), IEEE, Mar. 2026, pp. 239–244. doi: 10.1109/WcCST67302.2026.11495864.

[13] J. B. Mehta, “Securing Test Automation in Zero Trust Architectures: A Framework for Continuous Verification,” in 2025 International Conference on Computer and Applications (ICCA), IEEE, Dec. 2025, pp. 1–5. doi: 10.1109/ICCA66035.2025.11430950.

[14] T. B. B. P. Singh and H. Singh, “Strengthening Modern IAM Authentication with Quantum Cryptography and Anti-Phishing Techniques,” vol. 4, no. 10, p. 15, 2025, doi: https://doi.org/10.5281/zenodo.17260292.

[15] O. Emma and F. Harri, “Integrating Cybersecurity Measures into Data Governance Policies for Content Management,” no. July, 2023.

[16] S. Sen, “Data Stewardship: How AI Agents Form the Pillars for Effective Data and AI Governance,” Int. J. Emerg. Trends Comput. Sci. Inf. Technol., vol. 5, no. 4, p. 4, 2024.

[17] D. Paul, S. A. Devanira Poovaiah, B. Nurullayeva, A. Kishore, V. S. Kumar Tankani, and S. Meylikulov, “SHO-Xception: An Optimized Deep Learning Framework for Intelligent Intrusion Detection in Network Environments,” in 2025 International Conference on Innovations in Intelligent Systems: Advancements in Computing, Communication, and Cybersecurity (ISAC3), IEEE, Jul. 2025, pp. 1–6. doi: 10.1109/ISAC364032.2025.11156610.

[18] K. K. Mohammed, “A Survey on Digital Health Care Data Analysis Techniques for Developing Machine Learning Models,” Int. J. Sci. Eng. Technol., vol. 13, no. 5, 2025.

[19] S. Pahune, Z. Akhtar, V. Mandapati, and K. Siddique, “The Importance of AI Data Governance in Large Language Models,” Big Data Cogn. Comput., vol. 9, no. 6, p. 147, May 2025, doi: 10.3390/bdcc9060147.

[20] P. H. Desai, P. Mahalle, and P. Chandre, “Intelligent Access Control Schemes for the Internet of Everything: A Survey of Techniques, Challenges, and Future Directions,” in World Conference on Information Systems for Business Management, Springer Nature Switzerland, 2026, pp. 95–105. doi: 10.1007/978-3-032-13196-6_9.

[21] A. Srivastava, “AI-Assisted Cloud Migration of Healthcare Claims Data from Legacy Systems: A Metadata-Driven Framework,” Int. J. Commun. Networks Inf. Secur., vol. 14, no. 3, 2022, [Online]. Available: https://ijcnis.org/index.php/ijcnis/article/view/8682

[22] S. Mukherjee, “An Effective System for Medical Image Diagnosis Using Deep Convolutional Networks (CNNs) in Healthcare Sector,” in 2026 14th International Symposium on Digital Forensics and Security (ISDFS), IEEE, Mar. 2026, pp. 01–06. doi: 10.1109/ISDFS69419.2026.11459010.

[23] V. E. Jyothi, D. L. S. Kumar, B. Thati, Y. Tondepu, V. K. Pratap, and S. P. Praveen, “Secure Data Access Management for Cyber Threats using Artificial Intelligence,” in 6th International Conference on Electronics, Communication and Aerospace Technology, ICECA 2022 - Proceedings, 2022. doi: 10.1109/ICECA55336.2022.10009139.

[24] J. O. Effoduh, U. E. Akpudo, and J. D. Kong, “Toward a trustworthy and inclusive data governance policy for the use of artificial intelligence in Africa,” 2024. doi: 10.1017/dap.2024.26.

[25] R. Dandigam, R. T. Thutari, and T. Vaidya, “LLM-Augmented Agentic Consensus Swarms for Autonomous Edge Security,” in 2026 14th International Symposium on Digital Forensics and Security (ISDFS), IEEE, Mar. 2026, pp. 1–8. doi: 10.1109/ISDFS69419.2026.11459110.

[26] Naomi Chukwurah, Adebimpe Bolatito Ige, Victor Ibukun Adebayo, and Osemeike Gloria Eyieyien, “Frameworks for effective data governance: best practices, challenges, and implementation strategies across industries,” Comput. Sci. IT Res. J., vol. 5, no. 7, pp. 1666–1679, Jul. 2024, doi: 10.51594/csitrj.v5i7.1351.

[27] S. Savaş and S. Karataş, “Cyber governance studies in ensuring cybersecurity: an overview of cybersecurity governance,” Int. Cybersecurity Law Rev., vol. 3, no. 1, pp. 7–34, Jun. 2022, doi: 10.1365/s43439-021-00045-4.

[28] Lawal Qudus, “Cybersecurity governance: Strengthening policy frameworks to address global cybercrime and data privacy challenges,” Int. J. Sci. Res. Arch., 2025, doi: 10.30574/ijsra.2025.14.1.0225.

[29] N. Mohamed, “Artificial intelligence and machine learning in cybersecurity: a deep dive into state-of-the-art techniques and future paradigms,” Knowl. Inf. Syst., vol. 67, no. 8, pp. 6969–7055, 2025, doi: 10.1007/s10115-025-02429-y.

[30] K. Sharma, P. Kumar, and E. Özen, “Ethical Considerations in Data Analytics: Challenges, Principles, and Best Practices,” in Data Alchemy in the Insurance Industry, Emerald Publishing Limited, 2024, pp. 41–48. doi: 10.1108/978-1-83608-582-920241008.

[31] I. H. Sarker, H. Janicke, A. Mohsin, A. Gill, and L. Maglaras, “Explainable AI for cybersecurity automation, intelligence and trustworthiness in digital twin: Methods, taxonomy, challenges and prospects,” ICT Express, vol. 10, no. 4, pp. 935–958, 2024, doi: https://doi.org/10.1016/j.icte.2024.05.007.

[32] N. Kshetri, “Transforming cybersecurity with agentic AI to combat emerging cyber threats,” Telecomm. Policy, vol. 49, no. 6, p. 102976, 2025, doi: https://doi.org/10.1016/j.telpol.2025.102976.

[33] M. H. Hamza Afzal, “Securing AI Systems Against Adversarial Attacks: A Framework for Building Robust and Trustworthy Machine Learning Models,” Comput. Fraud Secur., no. 05, May 2024, doi: 10.52710/cfs.867.

[34] G. Daniel, A. Okunola, A. Cit, and A. Kimaru, “Data Privacy vs . Threat Intelligence : Navigating Ethical and Regulatory Challenges in Data-Driven Cybersecurity Analytics for Incident Response Authors,” 2024.

[35] V. Chaturvedi, “Disease Diagnostic Systems based on AI-Applications in Healthcare: Models, Challenges, and Future Directions,” Int. J. Emerg. Res. Eng. Technol., vol. 6, no. 4, pp. 207–217, Dec. 2025, doi: 10.63282/3050-922X.IJERET-V6I4P125.

[36] A. Warrier, “Real-Time AI Integration Architectures for HIPAA-Compliant Healthcare Data Interoperability,” Int. J. Emerg. Trends Comput. Sci. Inf. Technol., pp. 74–81, 2025.

[37] V. Sharma, “Security and Threat Mitigation in 5G Core and RAN Networks,” Int. J. Multidiscip. Res., vol. 3, no. 5, pp. 1–10, Sep. 2021, doi: 10.36948/ijfmr.2021.v03i05.54992.

[38] R. Guidotti, A. Monreale, S. Ruggieri, F. Turini, F. Giannotti, and D. Pedreschi, “A survey of methods for explaining black box models,” ACM Comput. Surv., 2019, doi: 10.1145/3236009.

[39] V. A, Jobin, M, Ienca., & E, “The global landscape of AI ethics guidelines. Nature Machine Intelligence,” Nat. Mach. Intell., 2019.

[40] B. Krishnan, A. Thaneeru, R. Lingam, and S. K. Kaata, “The Future of Cloud Data Engineering: Multi-Tenant, Multi-Region Pipelines Leveraging LLM-Powered Data Governance,” in 2025 1st International Conference on Advancement in Futuristic Technologies (ICAFT), 2025, pp. 1–8. doi: 10.1109/ICAFT66710.2025.11453308.

[41] X. Lu, W. Li, Y. Ma, X. Qin, and W. Zhang, “Research on the Influencing Factors of Ethnic Community Governance Effect: a Dual Perspective Based on SEM and ANN,” in 2025 IEEE 13th International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS), 2025, pp. 1–7. doi: 10.1109/IDAACS68557.2025.11322100.

[42] B. M. V. Bernardo, H. S. Mamede, J. M. P. Barroso, and V. M. P. D. dos Santos, “Data governance & quality management—Innovation and breakthroughs across different fields,” J. Innov. Knowl., 2024, doi: 10.1016/j.jik.2024.100598.

[43] K. R. Agbodoh-Falschau and B. H. Ravaonorohanta, “Investigating the influence of governance determinants on reporting cybersecurity incidents to police: Evidence from Canadian organizations’ perspectives,” Technol. Soc., 2023, doi: 10.1016/j.techsoc.2023.102309.

Downloads

Published

2026-07-06

Issue

Section

Articles

How to Cite

1.
Upadhyay N. Ethical and Regulatory Challenges in Cybersecurity: A Survey of Data Governance and Policy Mechanisms. IJERET [Internet]. 2026 Jul. 6 [cited 2026 Jul. 11];7(3):56-63. Available from: https://ijeret.org/index.php/ijeret/article/view/647