At first I was turned off by phrases in the executive summary like:
Ensure that governance aspects are derived from business processes and protection requirements, and are defined before dealing with technology.
But once you get into it, this is a great starter guide that includes both policy and technical pieces.
Best part: a lot of examples and links to real world projects. Worst parts: the DLP bits don’t reflect what’s available (over-estimates); and some vendor-specific language.