2020
DOI: 10.24251/hicss.2020.688
|View full text |Cite
|
Sign up to set email alerts
|

Enhancing Information Governance with Enterprise Architecture Management: Design Principles Derived from Benefits and Barriers in the GDPR Implementation

Abstract: Businesses today are increasingly dependent on how they transform information into economic value, while simultaneously being compliant with intensified privacy requirements, resulting from legal acts like the General Data Protection Regulation (GDPR). As a consequence, realizing information governance has become a topic more important than ever to balance the beneficial use and protection of information. This paper argues that enterprise architecture management (EAM) can be a key to GDPR implementation as one… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
8
0
1

Year Published

2021
2021
2024
2024

Publication Types

Select...
4
1

Relationship

0
5

Authors

Journals

citations
Cited by 8 publications
(9 citation statements)
references
References 20 publications
0
8
0
1
Order By: Relevance
“…Svizzance and Versuisse, for example, were in the process of re-aligning existing data and system landscape documentation with their existing databases and systems by specifying additional details and updating them when necessary. For this purpose, both organizations turned to enterprise architecture tools to define and document the protected data scope—an approach that has also been proposed by academic research (Burmeister et al, 2019, 2020; Huth, Burmeister, et al, 2020). In the case of Leares, the company did not have any similar existing documentation, and it became clear that this capability should be the focus of initial efforts, as other capabilities could not be realized without understanding the protected data scope.…”
Section: Data Management Capabilities For the Eu-gdprmentioning
confidence: 99%
See 1 more Smart Citation
“…Svizzance and Versuisse, for example, were in the process of re-aligning existing data and system landscape documentation with their existing databases and systems by specifying additional details and updating them when necessary. For this purpose, both organizations turned to enterprise architecture tools to define and document the protected data scope—an approach that has also been proposed by academic research (Burmeister et al, 2019, 2020; Huth, Burmeister, et al, 2020). In the case of Leares, the company did not have any similar existing documentation, and it became clear that this capability should be the focus of initial efforts, as other capabilities could not be realized without understanding the protected data scope.…”
Section: Data Management Capabilities For the Eu-gdprmentioning
confidence: 99%
“…Although legal aspects of information privacy had not been among the “topic areas closer to the interests of most IS researchers” (Bélanger and Crossler, 2011), the EU-GDPR has recently attracted more academic interest. Like the idea of regulatory technologies for financial regulations, so-called "RegTech" (Butler and O’Brien, 2019), IS researchers have mostly focused on technical solutions that ease EU-GDPR compliance, such as blockchain (Farshid et al, 2019; Guggenmos et al, 2020; Mejtoft et al, 2019; Rieger et al, 2019) or enterprise architecture (Burmeister et al, 2019, 2020; Huth, Burmeister, et al, 2020). In doing so, the existing body of IS research on EU-GDPR remains fragmented and proposes solutions for isolated aspects of the regulation.…”
Section: Introductionmentioning
confidence: 99%
“…This obligation poses major challenges for companies and organisations that work with personal data as its accuracy and comprehensiveness are closely associated with the level of embracement of the data protection principles. Building on the same idea (Blanco-Lainé et al 2020;Burmeister et al 2019Burmeister et al , 2020 argue that EAM can play a key role in the GDPR implementation by addressing the privacy and security related concerns of various classes of stakeholders and by doing so to gain a better understanding of how an effective information governance could be implemented in the organisation. Referring to the size of the organisation, (Rozehnal and Novak 2018) argue that EAM can bring equal benefits to SMEs, where resources for the support of GDPR compliance processes are inheritably limited.…”
Section: Mrq4: What Does Big Data Research Show Regarding the Rising Needs For Dpd Or Gdpr?mentioning
confidence: 99%
“…Regarding the second reason, scholars proved that: respecting the privacy of consumers means enhancing their trust so that they will feel safer and more open to interacting with marketers and sellers (Tang et al , 2008; Zhang et al , 2020) and this could empower also the public reputation of marketers (especially toward consumer associations, privacy non-governmental organizations, etc. ); and complying with data protection principles (accuracy, storage limitation, integrity, security and accountability) can bring even more efficiency to the data management model of the company (Burmeister et al , 2020; Poritskiy et al , 2019; Zerlang, 2017). …”
Section: Introduction: Mental Privacy and The New Challenge Of Commer...mentioning
confidence: 99%
“…complying with data protection principles (accuracy, storage limitation, integrity, security and accountability) can bring even more efficiency to the data management model of the company (Burmeister et al , 2020; Poritskiy et al , 2019; Zerlang, 2017).…”
Section: Introduction: Mental Privacy and The New Challenge Of Commer...mentioning
confidence: 99%