Information governance considers the principles, processes and policies for protecting personal information and personal health information. In particular, information governance frameworks draw upon legal, "best practice" and quality requirements to ensure that personal information and personal health information is kept confidential and secure at all times. This article examines the role of information governance frameworks in electronic health record (EHR) systems by discussing four key factors of information governance. The authors draw on approaches to EHR information governance across Canada and define the components of information governance that provincial agencies should consider to appropriately implement and manage EHRs.