Towards a readiness model derived from critical success factors, for the general data protection regulation implementation in higher education institutions
-
Published:2023
Issue:1
Volume:28
Page:4-19
-
ISSN:1821-3448
-
Container-title:Strategic Management
-
language:en
-
Short-container-title:Strategic Management
Author:
Fernandes JoséORCID, Machado CarolinaORCID, Amaral LuísORCID
Abstract
Background: Present the relevance of the study and highlights the key points of literature overview. Purpose: As of May 25, 2018, General Data Protection Regulation (GDPR) has become mandatory for all organizations, public or private, that handle personal data of European citizens, regardless of their physical location. Higher education institutions (HEIs), namely public universities, are no exception to this requirement and, as in many other organizations, many HEIs begin the process of implementing the GDPR without meeting the minimum conditions necessary for implementation. The purpose of this study, therefore, is to present a model to determine the level of readiness of HEIs regarding the implementation of the GDPR. Study design/methodology/approach: With the objective of designing a new artefact as a readiness model for the implementation of the GDPR, this study follows Design Science Research as an approach to be used to build the readiness model, based on a set of 16 critical success factors (CSFs) previously determined. Findings/conclusions: A readiness model was designed, based on a set of 16 CSFs related to the implementation of GDPR in HEIs. Limitations/future research: This is a new area of study that needs further development, namely through the practical application of the model, allowing the improvement of the measurement levels of the different CSFs. Practical implications: The determined readiness model allows HEIs to realize a priori if they have the necessary conditions for the implementation of the GDPR, giving useful indications of the organizational dimensions and the CSFs that compose them where better performance is necessary to ensure a successful implementation. Originality/Value: As far as we know, this is the first model of readiness based on CSFs related to the implementation of GDPR in HEIs, being therefore a first contribution to the development of this area.
Publisher
Centre for Evaluation in Education and Science (CEON/CEES)
Subject
Rehabilitation,Physical Therapy, Sports Therapy and Rehabilitation,General Medicine
Reference57 articles.
1. AICPA/CICA. (2011). Privacy Maturity Model. American Institute of Certified Public Accountants and Canadian Institute of Chartered Accountants. Retrieved February 6, 2020, from https://vvena.nl/wpcontent/uploads/2018/04/aicpa_cica_privacy_maturity_ model.pdf; 2. Akbar, M. A., Mahmood, S., Huang, Z., Khan, A. A., & Shameem, M. (2020). Readiness model for requirements change management in global software development. Journal of Software: Evolution and Process, 32(10), e2264,1-32. https://doi.org/10.1002/smr.2264; 3. Azevedo, V., Carvalho, M., Fernandes-Costa, F., Mesquita, S., Soares, J., Teixeira, F., & Maia, Â. (2017). Interview transcription: conceptual issues, practical guidelines, and challenges. Revista de Enfermagem Referência, 4(14), 159-167. https://doi.org/10.12707/RIV17018; 4. Brendel, A.B., Zapadka, P., & Kolbe, L.M. (2018). Design science research in green IS -analyzing the past to guide future research. ECIS; 5. Caralli, R. A., Stevens, J. F., Willke, B. J., & Wilson, W. R. (2004). The critical success factor method: establishing a foundation for enterprise security management. Carnegie-Mellon Univ Pittsburgh Pa Software Engineering Inst. https://doi.org/10.1184/R1/6585107.v1;
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
|
|