Advanced

Compliance Challenges with the General Data Protection Regulation

Wipp Ekman, Leon LU and Billgren, Petter LU (2017) INFM10 20171
Department of Informatics
Abstract
The General Data Protection Regulation are coming as a response to the outdated Directive from 1995. With this, a lot tougher pressures are put on organisations regarding the demand for compliance, which is mainly done through higher penalties, giving organisations an in-citement to oblige. Seen from the perspective of information systems, organisations have to implement the requirements of the regulation into their data processes in order to stay compli-ant. In the literature there is a lack of understanding of what challenges organisations face when striving for compliance in information systems. The General Data Protection Regulation was used as a lens to examine the available compliance theory. This was done by interviewing employees... (More)
The General Data Protection Regulation are coming as a response to the outdated Directive from 1995. With this, a lot tougher pressures are put on organisations regarding the demand for compliance, which is mainly done through higher penalties, giving organisations an in-citement to oblige. Seen from the perspective of information systems, organisations have to implement the requirements of the regulation into their data processes in order to stay compli-ant. In the literature there is a lack of understanding of what challenges organisations face when striving for compliance in information systems. The General Data Protection Regulation was used as a lens to examine the available compliance theory. This was done by interviewing employees working with and in organisations trying to comply with the General Data Protec-tion Regulation in positions such as security management, product management and project management. We found seven challenges and one sub-challenge concerning data processes that organisations face as they adjust to the General Data Protection Regulation. (Less)
Popular Abstract
The General Data Protection Regulation are coming as a response to the outdated Directive from 1995. With this, a lot tougher pressures are put on organisations regarding the demand for compliance, which is mainly done through higher penalties, giving organisations an in-citement to oblige. Seen from the perspective of information systems, organisations have to implement the requirements of the regulation into their data processes in order to stay compli-ant. In the literature there is a lack of understanding of what challenges organisations face when striving for compliance in information systems. The General Data Protection Regulation was used as a lens to examine the available compliance theory. This was done by interviewing employees... (More)
The General Data Protection Regulation are coming as a response to the outdated Directive from 1995. With this, a lot tougher pressures are put on organisations regarding the demand for compliance, which is mainly done through higher penalties, giving organisations an in-citement to oblige. Seen from the perspective of information systems, organisations have to implement the requirements of the regulation into their data processes in order to stay compli-ant. In the literature there is a lack of understanding of what challenges organisations face when striving for compliance in information systems. The General Data Protection Regulation was used as a lens to examine the available compliance theory. This was done by interviewing employees working with and in organisations trying to comply with the General Data Protec-tion Regulation in positions such as security management, product management and project management. We found seven challenges and one sub-challenge concerning data processes that organisations face as they adjust to the General Data Protection Regulation. (Less)
Please use this url to cite or link to this publication:
author
Wipp Ekman, Leon LU and Billgren, Petter LU
supervisor
organization
course
INFM10 20171
year
type
H1 - Master's Degree (One Year)
subject
keywords
GDPR, General Data Protection Regulation, Compliance in Information Systems, Personal Data, Data Security
report number
INF17-006
language
English
id
8911983
date added to LUP
2017-06-21 11:55:21
date last changed
2017-06-21 11:55:21
@misc{8911983,
  abstract     = {The General Data Protection Regulation are coming as a response to the outdated Directive from 1995. With this, a lot tougher pressures are put on organisations regarding the demand for compliance, which is mainly done through higher penalties, giving organisations an in-citement to oblige. Seen from the perspective of information systems, organisations have to implement the requirements of the regulation into their data processes in order to stay compli-ant. In the literature there is a lack of understanding of what challenges organisations face when striving for compliance in information systems. The General Data Protection Regulation was used as a lens to examine the available compliance theory. This was done by interviewing employees working with and in organisations trying to comply with the General Data Protec-tion Regulation in positions such as security management, product management and project management. We found seven challenges and one sub-challenge concerning data processes that organisations face as they adjust to the General Data Protection Regulation.},
  author       = {Wipp Ekman, Leon and Billgren, Petter},
  keyword      = {GDPR,General Data Protection Regulation,Compliance in Information Systems,Personal Data,Data Security},
  language     = {eng},
  note         = {Student Paper},
  title        = {Compliance Challenges with the General Data Protection Regulation},
  year         = {2017},
}