Privacy Goals for the Data Lifecycle

Henriksen-Bulmer, Jane; Yücel, Çağatay; Faily, Shamal; Chalkias, Ioannis

doi:10.3390/fi14110315

Cited by 3 publications

(2 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some studies focus on the risk management approach of the GDPR, such as the development and use of the DPIA (Data Protection Impact Assessment) [82], [83], [84], [85], [86], [87], [88] and on vulnerabilities and threats in international transfers via electronic payment wallets [89].…”

Section: Challenges (C) and Enablers (E) Sr-t Authorsmentioning

confidence: 99%

Challenges and Enablers for GDPR Compliance: Systematic Literature Review and Future Research Directions

Zaguir,

de Magalhães,

de Mesquita Spinola

2024

IEEE Access

View full text Add to dashboard Cite

Compliance with the General Data Protection Regulation (GDPR) or related laws by organizations could require organizational and technological changes. This topic has gained significant attention from management and scholars alike. Although the literature presents some reviews and research articles discussing challenges and enablers for GDPR compliance, they are often scattered and fragmented. One particular challenge is the implementation roadmap gap that arises when using ISO-based standards for compliance in isolation. On the other hand, as enablers for compliance, it raises the potential use of information governance (IG) and enterprise architecture management (EAM) disciplines. This research aims to provide a systematic literature review of the challenges and enablers for GDPR compliance and address this gap. The findings include a categorized list of challenges and enablers, a strategy for bridging the roadmap gap using IG and EAM, and the development of five propositions based on some challenges and enablers around this gap. Moreover, the study proposes a research agenda that includes conceptual work to build an IG-EAM framework, empirical research to verify those propositions, and developing new hypotheses stemming from the review's challenges and enablers. These contributions could enhance both the body of knowledge and managerial privacy practices.

show abstract

Section: Challenges (C) and Enablers (E) Sr-t Authorsmentioning

confidence: 99%

Challenges and Enablers for GDPR Compliance: Systematic Literature Review and Future Research Directions

Zaguir,

de Magalhães,

de Mesquita Spinola

2024

IEEE Access

View full text Add to dashboard Cite

show abstract

“…The PIPL's legitimacy principle mainly but not exclusively corresponds to the purpose limitation principle of the GDPR. The purpose limitations of the GDPR include that personal information is processed only for specific purposes and must not be processed beyond the purposes originally agreed with the data subject, unless consent has been obtained from the information subject [9]. However, the PIPL principle of legitimacy not only requires that the purpose of personal information processing is specific and clear, but also requires that the purpose of processing is reasonable, that is, it should be in the public interest and legitimate private interests [10].…”

Section: The Principles Of Legality Legitimacy and Necessitymentioning

confidence: 99%

Legislative Conception for the Special Protection of Biometric Information: A Study Based on Extraterritorial Experience

2023

LNEP

View full text Add to dashboard Cite

In present society, where digital technology is widely used, biometric information is extensively applied to public security, social governance, finance and etc. Considering that biometric information, one of the most identifiable identifiers, has the characteristics of irreplaceability, immutability, and uniqueness, special legislative protection of biometric information is required. This paper uses case study, comparative research and regulatory research methods. It selects the definition, collection rules and processing rules of biometric information, which are mainly analysed in the United States, as studying points. Compared with Illinois Biometric Information Privacy Act, provisions of China Personal Information Protection Law on the processing rules of biometric information are more detailed and specific, but lack of a clear definition of biometric information and a clear exposition for informed consent, partial exemptions, and the principles of legality, legitimacy and necessity. There is still room for improvement in the refinement of the system and the practical implementation.

show abstract

Robot Design for Social Intervenability

Dietrich,

Pohle

2024

Nordic Conference on Human-Computer Interaction

View full text Add to dashboard Cite

Privacy Goals for the Data Lifecycle

Cited by 3 publications

References 35 publications

Challenges and Enablers for GDPR Compliance: Systematic Literature Review and Future Research Directions

Challenges and Enablers for GDPR Compliance: Systematic Literature Review and Future Research Directions

Legislative Conception for the Special Protection of Biometric Information: A Study Based on Extraterritorial Experience

Robot Design for Social Intervenability

Contact Info

Product

Resources

About