Decide, domain by domain, who may receive each kind of data and the control that governs its release, so data security and dissemination are designed with the data architecture rather than retrofitted once consumers appear.
Phase C, Information Systems ArchitectureDerived from TOGAF
Data dissemination and security: who receives what, under which control
Each row is a data domain, and the columns name who may receive it and the control that governs its release, so security and dissemination are decided with the data rather than bolted on later.
Deciding dissemination and control alongside the data, domain by domain, keeps Phase C honest, because access rules fitted after the architecture is built cost far more to retrofit.