AboutBlogBusiness First AIFounder FreedomBook a conversation

Master data and single source of truth, the proportionate SME version

May 11, 2026
A small business owner and her operations lead at a kitchen table, two laptops open, a printed customer list between them, the owner pointing at a row on one screen
TL;DR

Master data is the rule that says one system holds the authoritative record for each customer, supplier, employee and product. The enterprise discipline costs millions. The version a five-to-fifty-person firm needs is a two-page decision about which system is authoritative for each entity, plus a thirty-minute quarterly reconciliation. That is enough to prevent thousands of pounds in wasted effort, compliance risk and conflicting numbers, and it scales until volume or complexity forces the next step up.

Key takeaways

- Master data is the principle that each important thing your business tracks, customer, supplier, employee or product, has one authoritative record. The principle applies at every scale; only the implementation changes. - Four entity types do the work in a typical SME: customers, suppliers, employees, and products or services. Decide which system holds the truth for each one and write it down. - The two-page decision: an ownership matrix that names the authoritative system per entity and what flows where, plus a RACI block that names who updates and who is accountable. - The quarterly ritual: thirty minutes per entity, four times a year, run by the owner or operations lead. Export the authoritative list, compare to the secondary systems, document drift and root cause, fix at source. - Grow up when volume, complexity or compliance pressure makes the manual process tedious. The next step is a named data steward, a documented governance policy and, only if warranted, modest tooling, not an enterprise MDM platform.

The owner of a sixteen-person services firm sat down on a Tuesday morning to settle a question that had been irritating her for weeks. Her CRM said she had 487 active customers. Her accounting system reported 423. Her email marketing tool insisted there were 510 people on the list. Three numbers, three tools, three answers to “who are our customers”. None of the systems was broken. Each had been chosen for a good reason. Nobody had ever decided which one was meant to be right.

She is not behind the curve. Sagacity’s survey of SMEs found that only two in five hold customer data in a CRM or database at all, and of those that do, 92% know they should be cleaning it while a quarter still do not. The underlying problem has a name in the enterprise world. It is called master data, and the discipline around it costs Fortune 500 firms multiple millions of pounds in dedicated platforms and multi-year programmes. The good news for a five-to-fifty-person business is that the principle is independent of scale. The version you need is two pages of decisions and a calendar reminder.

What does master data actually mean for a small business?

Master data is the record that says what is true about a thing your business tracks. In a small firm, that thing is almost always a customer, a supplier, an employee, or a product or service you sell. The CRM has a field for customer address. The accounting system has one too. When they show different values, master data is the rule that says which one wins.

IBM defines master data management as a comprehensive approach to managing an organisation’s critical data across the enterprise. The sentence sounds large-scale, and at enterprise scale it is. The principle underneath is the same at every size: someone needs to own the truth about who your customers are, where they live, what they owe you and what you owe them. When no one does, decisions get made from conflicting numbers. Marketing chases prospects already acquired by sales. Finance reconciles invoices against mismatched records. The Information Commissioner’s Office expects UK businesses of every size to keep data “clean and accurate or delete it”, and when a data subject access request lands, the answer to “show us your one authoritative record” cannot be “we have three”.

Why does this matter for your business?

Gartner’s research puts the average cost of poor data quality at $12.9 million a year for a large organisation. The proportionate share for a £500,000 to £5 million services firm lands somewhere between £5,000 and £50,000 of annual waste. The waste is rarely visible as a line item. It sits in chased invoices, duplicate marketing, support staff working without full history, and the time tax of cross-checking records.

The compliance side is sharper. GDPR makes you accountable for breaches and data subject requests regardless of how many systems the data lives in. When a customer asks you to delete every record of them, you have to locate every instance. The firm with one authoritative customer record and a documented sync to its secondary systems can answer in an hour. The firm with three uncoordinated lists spends a day, often misses one, and exposes itself to a fine. Master data sits underneath credible compliance, and it is the difference between a calm GDPR response and an emergency.

Which four entities does an SME actually need to get right?

Four categories of master data carry the load in a typical small business: customers, suppliers, employees, and products or services. Each has a natural home. Customers usually live in the CRM, suppliers in the accounting system, employees in payroll or HR, products in a pricing document. The point is that you pick one home per entity and tell everyone which it is.

Customers shape revenue, retention and regulatory compliance, which is why they sit first. Suppliers are the quietest of the four and the one where drift causes procurement errors, missed contract renewals and modern slavery reporting gaps. Employees matter less at five people than at fifty, but the principle still holds: payroll, email administration and access control all hold employee records, and offboarding without a single source leaves orphaned access rights. Products or services are core to invoicing, sales conversations and revenue recognition. If your sales team quotes a different price from the one your accounting system invoices, the gap is a product master data problem.

What goes on the two-page decision?

The first page is an ownership matrix. Four columns, four rows. Entity type, authoritative system, what flows where, and update frequency. The customer row in a small services firm reads CRM authoritative, with quarterly syncs to accounting and real-time updates to email marketing and support. The supplier row points at accounting, the employee row at payroll, the product row at a pricing document. You are making a choice with the tools you already own.

The second page assigns ownership and reconciliation responsibility using a RACI block. Who is Responsible for updating the authoritative record? Who is Accountable, usually the owner or operations lead? Who needs to be Consulted, typically the administrators of the secondary systems? Who needs to be Informed, the teams that use the data? Ambiguity about ownership is what causes data to degrade. When someone owns it, it gets done. The Sagacity survey is clear that SME data quality fails less on knowledge and more on ownership; the missing piece is almost always the named person, not the better tool.

When does this stop working and what comes next?

The proportionate version will carry a five-to-fifty-person firm for years. The signals that it has outgrown itself are specific. Quarterly reconciliation starts taking longer than an afternoon and consistently finds more than a dozen mismatches. The number of systems holding overlapping data passes five or six, usually after an acquisition or a new business unit. An auditor stops asking whether you clean your records and starts asking for a documented data governance policy.

When those signals land, you are at the boundary that Gartner’s data governance maturity model places between level 3, proactive, and level 4, coordinated. The next step is a named data steward, even part-time, who is explicitly accountable for data quality and governance enforcement. McKinsey’s research on data governance points at this directly: the commonest failure mode is a strong governance strategy that never gets operationalised, and naming someone closes that gap. Alongside the role, you write a four-to-six-page governance document covering purpose, scope, roles, classification, standards and review cadence. Modest tooling, such as a data quality checker or a small-scale MDM tool, comes only when volume genuinely warrants it. The worst position to be in is a hundred-person firm with chaotic data and no governance at all. The best is a ten-person firm that started early. Two pages and a calendar reminder is where that starts.

If you want help drawing the matrix for your own firm or deciding whether you have hit the point where proportionate stops working, book a conversation.

Sources

- IBM (2024). Master Data Management, definition and discipline. The enterprise reference Dave draws on for the principle that one authoritative record per entity is independent of company size. https://www.ibm.com/think/topics/master-data-management - Gartner research, summarised by Revefi (2024). Poor data quality costs organisations an average of $12.9 million per year. The headline figure that scales down to roughly £5,000 to £50,000 of annual waste for a £500k to £5m services firm. https://www.revefi.com/blog/business-operations-poor-data-quality-cost - Sagacity Solutions (2023). SMEs and data quality survey. Only two-fifths of SMEs hold customer data in a CRM or database; 92% of those know they should clean it; 25% do not. https://www.sagacitysolutions.co.uk/about/news-and-blog/smes-and-data-quality/ - Information Commissioner's Office (UK). Information governance guidance for small businesses. The UK regulator expectation that records are kept "clean and accurate or deleted" under GDPR. https://ico.org.uk/media2/migrated/4020350/information-governance-for-your-small-business-v-1-0.docx - Monte Carlo Data (2024). The data reconciliation playbook. Source for the extract-match-investigate-resolve sequence the quarterly ritual is modelled on. https://www.montecarlodata.com/blog-data-reconciliation/ - IBM (2024). System of record, what it means and why it matters. The reference for "which system wins when they disagree" as an architectural decision rather than a tool choice. https://www.ibm.com/think/topics/system-of-record - Snowflake (2024). Data stewardship fundamentals. The role-based reference for naming a data steward when proportionate governance has outgrown itself. https://www.snowflake.com/en/fundamentals/data-stewardship/ - McKinsey (2023). Designing data governance that delivers value. The named-accountability point that strong governance strategy fails when it is not operationalised. https://www.mckinsey.com/capabilities/tech-and-ai/our-insights/designing-data-governance-that-delivers-value - Atlan (2024). Gartner data governance maturity model. The maturity-level reference for "level 3 proactive" being the working ceiling at SME scale, before the cost step-up at level 4. https://atlan.com/know/gartner/data-governance-maturity-model/ - Snowflake (2024). Data governance policy templates. The reference for a four-to-six-page formal governance document at SME scale, covering purpose, scope, roles, classification, standards and review cadence. https://www.snowflake.com/en/fundamentals/data-governance/policy/templates/

Frequently asked questions

What counts as master data in a small business?

Master data is the record that says what is true about a thing your business cares about. In a small services firm, the four that matter are customers, suppliers, employees, and the products or services you sell. Anything that lives in more than one system, customer addresses, supplier terms, payroll details, pricing, is master data. The job is to decide which system wins when they disagree.

Do I really need this if I only have one CRM and an accounting system?

Yes, because two systems is already enough to disagree. Your CRM might say a customer is active while accounting still has them on a payment hold. Your email tool may hold contacts that never made it into either. The two-page version costs a morning to write and a calendar reminder to maintain. The price of not doing it is paid quietly, in chased invoices, duplicate marketing and awkward GDPR requests.

How do I know when the proportionate version has outgrown itself?

Three signals. Quarterly reconciliation regularly finds more than a dozen mismatches and starts taking longer than an afternoon. The number of systems holding overlapping data passes five or six, often after an acquisition or a new business unit. An auditor or regulator asks for a documented data governance policy rather than evidence that you clean your records. When any of those land, it is time for a named data steward and a written governance framework.

Written by Dr Dave Heath, AI consultant and business strategist.

This post is general information and education only, not legal, regulatory, financial, or other professional advice. Regulations evolve, fee benchmarks shift, and every situation is different, so please take qualified professional advice before acting on anything you read here. See the Terms of Use for the full position.

Ready to talk it through?

Book a free 30 minute conversation. No pitch, no pressure, just a useful chat about where AI fits in your business.

Book a conversation

Related reading

An SME owner at a desk reviewing a thirty-seven tab operations spreadsheet alongside a half-configured new system on a second screen

From spreadsheets to systems: when an SME outgrows its data setup

The spreadsheet was the right answer at five people. At twenty-five, it is the bottleneck. Four signs to watch for, and a proportionate migration sequence that does not retire the spreadsheet on day one.

An owner and two colleagues at a small meeting table with a printed sheet of questions, a coffee cup and an open notebook, mid-conversation

Measuring data and knowledge readiness, four questions to revisit each quarter

Owners who measure data and knowledge readiness in a structured way ship better AI outcomes than owners who treat it as a feeling. Four questions, every quarter, no dashboard required.

A woman in her fifties at a kitchen table reading a printed proposal document, pen in hand, with two other proposals beside her and a mug of tea.

When to bring in a data consultant, and when not to

Three situations where external data help is worth the spend, the more common ones where in-house is faster, and how to brief a consultant so the engagement actually lands.

If any of this sounds familiar, let's talk.

The next step is a conversation. No pitch, no pressure. Just an honest discussion about where you are and whether I can help.

Book a conversation
AboutBlogBusiness First AIFounder FreedomContactBook a conversation
Privacy PolicyTermsCookie Policy

© 2026 Larocca Consulting Ltd