A Review of GDPR Impacts on Information Security
Abstract
The aim of this literature review is to understand GDPR impacts on information security in organisations. The research question is: What outcomes previous research reveal about the GDPR impacts on information security development? Findings indicated that GDPR has had several impacts divided in six categories here: user profiling and data collection, business impacts, management and compliance, personal competences, skills and career, authorization, authentication and notification obligation and data storage. Findings also indicated that even though GDPR had upraised information security and data protection requirements, it has caused also challenges. Previous research raised important separate issues of GDPR impacts of information security, but did not addressed topic comprehensively. Previous literature did not report best practices of how organisational GDPR impacts are examined. To fill this gap, the framework for observing GDPR impacts of organisations was built.
Main Author
Format
Conferences
Conference paper
Published
2022
Subjects
Publication in research information system
Publisher
Association for Information Systems
Original source
https://aisel.aisnet.org/pacis2022/83/
The permanent address of the publication
https://urn.fi/URN:NBN:fi:jyu-202212285858Use this for linking
Parent publication ISBN
978-1-958200-01-8
Review status
Peer reviewed
ISSN
2689-6354
Conference
Pacific Asia Conference on Information Systems
Language
English
Is part of publication
PACIS 2022 : Proceedings of the 26th Pacific Asia Conference on Information Systems. AI-IS-ASIA : Artificial Intelligence, Information Systems, in Pacific Asia
Citation
- Hirvonen, P. (2022). A Review of GDPR Impacts on Information Security. In PACIS 2022 : Proceedings of the 26th Pacific Asia Conference on Information Systems. AI-IS-ASIA : Artificial Intelligence, Information Systems, in Pacific Asia (Article 83). Association for Information Systems. https://aisel.aisnet.org/pacis2022/83/
Copyright© Association for Information Systems, 2022