We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
Learning from Enforcement Cases to Manage GDPR Risks.
- Authors
Akhlaghpour, Saeed; Hassandoust, Farkhondeh; Fatehi, Farhad; Burton-Jones, Andrew; Hynd, Andrew
- Abstract
The European Union's General Data Protection Regulation (GDPR) is a ground-breaking data privacy and security law that affects organizations globally. Noncompliance can incur potentially hefty penalties, but compliance is not a box-ticking exercise and requires a risk-based approach. Based on an analysis of 93 cases of GDPR enforcement, we have identified 12 types of risk and their associated mitigation measures and risk indicators. We also describe the strategic actions that can be taken to manage GDPR risks.
- Subjects
EUROPEAN Union; DATA privacy; GENERAL Data Protection Regulation, 2016; DATA security laws
- Publication
MIS Quarterly Executive, 2021, Vol 20, Issue 3, p199
- ISSN
1540-1960
- Publication type
Article
- DOI
10.17705/2msqe.00049