A4 Article in conference proceedings
A Review of GDPR Impacts on Information Security (2022)


Hirvonen, P. (2022). A Review of GDPR Impacts on Information Security. In PACIS 2022 : Proceedings of the 26th Pacific Asia Conference on Information Systems. AI-IS-ASIA : Artificial Intelligence, Information Systems, in Pacific Asia (Article 83). Association for Information Systems. https://aisel.aisnet.org/pacis2022/83/


JYU authors or editors


Publication details

All authors or editors: Hirvonen, Pauliina

Parent publication: PACIS 2022 : Proceedings of the 26th Pacific Asia Conference on Information Systems. AI-IS-ASIA : Artificial Intelligence, Information Systems, in Pacific Asia

Place and date of conference: Taipei/Sydney Virtual Conference, 5.-9.7.2022

eISSN: 2689-6354

Publication year: 2022

Article number: 83

Publisher: Association for Information Systems

Publication country: United States

Publication language: English

Persistent website address: https://aisel.aisnet.org/pacis2022/83/

Publication open access: Not open

Publication channel open access:

Publication is parallel published (JYX): https://jyx.jyu.fi/handle/123456789/84624


Abstract

The aim of this literature review is to understand GDPR impacts on information security in organisations. The research question is: What outcomes previous research reveal about the GDPR impacts on information security development? Findings indicated that GDPR has had several impacts divided in six categories here: user profiling and data collection, business impacts, management and compliance, personal competences, skills and career, authorization, authentication and notification obligation and data storage. Findings also indicated that even though GDPR had upraised information security and data protection requirements, it has caused also challenges. Previous research raised important separate issues of GDPR impacts of information security, but did not addressed topic comprehensively. Previous literature did not report best practices of how organisational GDPR impacts are examined. To fill this gap, the framework for observing GDPR impacts of organisations was built.


Keywords: organisations (systems); data systems; person registers; data protection; data security; information management; risks; effects (results); business; literature surveys


Contributing organizations


Ministry reporting: Yes

Reporting Year: 2022

Preliminary JUFO rating: 1


Last updated on 2022-28-12 at 14:19