Why Don't You Join In? A Typology of Information System Certification Adopters

Lins, Sebastian; Kromat, Theresa; Löbbers, Julian; Benlian, Alexander; Sunyaev, Ali

doi:10.1111/deci.12488

Cited by 10 publications

(6 citation statements)

References 56 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Caballero et al (2012) found that all changes and decisions on the security and quality of personal data in health care services should be consistent with the firm's quality management system. Lins et al (2022) found that online vendors are motivated to adopt various security and privacy certifications in order to signal data protection and increase legal compliance.…”

Section: Key-component Component Descriptionmentioning

confidence: 99%

Does personal data protection matter for ISO 9001 certification and firm performance?

Siougle

Dimelis

Malevris

2023

IJPPM

View full text Add to dashboard Cite

PurposeThis study explores the link between ISO 9001 certification, personal data protection and firm performance using financial balance sheet and survey data. The security aspect of data protection is analyzed based on the major requirements of the General Data Protection Regulation and mapped to the relevant controls of the ISO/IEC 27001/27002 standards.Design/methodology/approachThe research analysis is based on 96 ISO 9001–certified and non-certified publicly traded manufacturing and service firms that responded to a structured questionnaire. The authors develop and empirically test their theoretical model using the structural equation modeling technique and follow a difference-in-differences econometric modeling approach to estimate financial performance differences between certified and non-certified firms accounting for the level of data protection.FindingsThe estimates indicate three core dimensions in the areas of “policies, procedures and responsibilities,” “access control management” and “risk-reduction techniques” as desirable components in establishing the concept of data security. The estimates also suggest that the data protection level has significantly impacted the performance of certified firms relative to the non-certified. Controlling for the effect of industry-level factors reveals a positive relationship between data security and high-technological intensity.Practical implicationsThe results imply that improving the level of compliance to data protection enhances the link between certification and firm performance.Originality/valueThis study fills a gap in the literature by empirically testing the influence of data protection on the relationship between quality certification and firm performance.

show abstract

Section: Key-component Component Descriptionmentioning

confidence: 99%

Does personal data protection matter for ISO 9001 certification and firm performance?

Siougle

Dimelis

Malevris

2023

IJPPM

View full text Add to dashboard Cite

show abstract

“…As such, providing detailed arguments and evidence for why a certification authority is perceived as competent increases users' trust perceptions. In general, performing certification attestations is a complex procedure requiring a certification authority to be organized and armed with a body of knowledgeable and experienced employees (Lins et al, 2020). Certification authorities with high competence are likely to provide better assessments of system owners.…”

Section: The Impact Of Argument Quality On Certifications' Effectsmentioning

confidence: 99%

“…Information system (IS) owners have developed diverse strategies over the past years to reduce users' uncertainty and anxiety surrounding unknown or ad hoc system use. Among these strategies, certifications by third parties are the longest and most pervasively used (Lins et al, 2020;Özpolat et al, 2013). Certifications are neutral third-party attestations of specific system characteristics, operations, and management principles to prove compliance with regulatory or industry requirements (Lansing et al, 2018).…”

Section: Introductionmentioning

confidence: 99%

A Design Theory for Certification Presentations

et al. 2023

Self Cite

View full text Add to dashboard Cite

Prior information system research remains inconsistent of the effects of system certifications. In their current use, certifications are often reduced to graphical seals. This approach fails to incorporate detailed assurance information emanating from the certification process. To address this gap, we adopt a design science approach and deploy a four-phase research design to clarify how to design impactful IS certification presentations. First, we identify sources of users' limited understanding of seals and formulate a design proposal for a certification presentation by drawing upon the elaboration likelihood model. In the second phase, we formulate and validate a set of design meta-requirements and guidelines to improve certification presentation, using cognitive load theory and Toulmin's model of argumentation as kernel theories. In the third phase, new certification presentations that comply with the proposed guidelines are developed and evaluated for their effectiveness. We show that presentations that augment seal-based certification presentations with richer assurance information improve certification effectiveness. This increases users' assurance and trust perceptions when the presentations align with the users' cognitive information processing needs in ways that reduce their cognitive load and enhance argument quality of assurance information.

show abstract

“…The receivers are the “outsiders who lack information about the organization in question but would like to receive this information” (Connelly et al., 2011). Operations management literature has examined receivers such as customers (Ba et al., 2020; Duan et al., 2021; Lins et al., 2020; Rao et al., 2018; Ray et al., 2011; Wallenburg et al., 2021), buying firms (Cheng et al., 2020; Mena et al., 2020), purchasing managers (Yan et al., 2020), and investors (Jiang et al., 2007; Kim & Wagner, 2020; Narasimhan et al., 2015). In our study, we consider investors as the receivers of the signals.…”

Section: Theory Developmentmentioning

confidence: 99%

To talk or not?: An analysis of firm‐initiated social media communication's impact on firm value preservation during a massive disruption across multiple firms and industries

2022

View full text Add to dashboard Cite

We examine the role of firm‐initiated social media communication using Twitter in mitigating the negative impact of large‐scale disruptions, such as the Covid‐19 pandemic, on the shareholder value of firms. We develop our hypotheses using signaling theory and test them using data collected from Twitter and Bloomberg®. Our data set consists of 121,988 firm‐generated tweets from 467 S&P 500 firms collected in March 2020 at the time of the lockdown announcement in the United States. We find that frequent and relevant communication reduces latency and increases the observability of messages, preserving a firm's shareholder value. We also find that a positive outlook and extent of interest from stakeholders results in preserving shareholder value. On average, firms lost about 1.08% of their market value per day (about 9.72% during the 9‐day period around the lockdown announcement). Our study contributes to the extant literature in three ways: (1) adds to the literature on disruptions–shareholder value by considering large‐scale disruptions such as the Covid‐19 pandemic, (2) highlights informational and communication elements of risk management strategy, and (3) adds to the growing body of literature on Twitter by considering firm‐generated tweets. The results of our study are of importance to managers as well. For instance, firms tweeted about 57 times per week, and each additional tweet could preserve about $5.85 million of a firm's market valuation, on average. Also, it is not enough that the firms took appropriate actions during a large‐scale disruption; they also need to communicate their actions and its implications to their stakeholders effectively. These results can help managers devise their Twitter communication strategy during large‐scale disruptions.

show abstract

Why Don't You Join In? A Typology of Information System Certification Adopters

Cited by 10 publications

References 56 publications

Does personal data protection matter for ISO 9001 certification and firm performance?

Does personal data protection matter for ISO 9001 certification and firm performance?

A Design Theory for Certification Presentations

To talk or not?: An analysis of firm‐initiated social media communication's impact on firm value preservation during a massive disruption across multiple firms and industries

Contact Info

Product

Resources

About