Earlier studies on personal data protection (PDP) have focused on the laws that were passed by the stakeholders or the techniques to mask private data through qualitative analysis and quantitative research or both. There is very little if not there has been no literature written on the impact of personal data protection (PDP) regulations on operational workflow of organizations. This study aims to identify the independent variables of personal data protection (PDP) regulations that impacts operational workflow. The result of the study shows that technology, regulation, types of processes, implementation and company policy impact the operational workflow of organizations in the form of enhanced security, better-quality project deployment, tightly monitored data collection, disclosure and use of data, well-informed employees and solid company policies. These can very well translate to improvement of an organization’s operational workflow.
AnX., JutlaD., CerconeN., PluempitiwiriyawejC. and WangH., Uncertain inference control in privacy protection. International Journal of Information Security8(6) (2009), 423–431.
2.
BlanchetteJ.F. and JohnsonD.G., Data retention and the panoptic society: The social benefits of forgetfulness. The Information Society18(1) (2002), 33–45.
3.
BonneauJ. and PreibuschS., The privacy jungle: On the market for data protection in social networks. In Economics of information security and privacy 2010 (pp. 121–167). Springer US.
4.
BreebaartJ., BuschC., GraveJ. and KindtE., A Reference Architecture for Biometric Template Protection based on Pseudo Identities. In BIOSIG 2008 (pp. 25–38).
5.
ByunJ.W., BertinoE. and LiN., Purpose based access control of complex data for privacy protection. In Proceedings of the tenth ACM symposium on Access control models and technologies 2005 (pp. 102–110). ACM.
6.
CaldwellT., An information superpower. Information World Review (261) (2010), 40–41.
7.
ChenD. and ZhaoH., Data security and privacy protection issues in cloud computing. In Computer Science and Electronics Engineering (ICCSEE), International Conference on 2012 (2012), (Vol. 1, pp. 647–651). IEEE.
8.
ChestermanS., After privacy: The rise of Facebook, the fall of wikileaks, and Singapore’s personal data protection act 2012. Sing J Legal Stud (2012), 391.
9.
CustersB. and KuiperA., Data on the move–privacy of road pricing. Journal of Navigation63(01) (2010), 51–59.
10.
DoineaM and PavelS., Security optimization for distributed applications oriented on very large data sets, Informatica Economica14(2) (2010), 72.
11.
DragosS.S., VaidaM.F., UrecheC.M., SutaL.A. and VoinaA., Detecting dependencies between states of multiple data streams. Acta Technica Napocensis54(1) (2013), 25.
12.
GoodwinB., Identity protection and patching top IT concerns. Computer Weekly, (2004).
13.
GuoM.A., Comparative study on consumer right to privacy in e-commerce. Modern Economy3(4) (2012), 402.
14.
Heng-LiY. and ChiuH.K., Privacy disclosures of web sites in Taiwan. JITTA: Journal of Information Technology Theory and Application4(3) (2002), 15.
15.
HoadleyE.D., DeibelJ., KistnerC., RiceP. and SokheyS., Seeking best practices in the balancing act between data security and operational effectiveness. International Journal of Management & Information Systems (Online)16(2) (2012), 183.
16.
HonW.K., MillardC. and WaldenI., Who is responsible for ‘personal data ‘in cloud computing?—The cloud of unknowing, Part 2. International Data Privacy Law2(1) (2012), 3–18.
17.
HooiJ., Data law gives goliaths an edge over the davids. The Business Times (2012).
18.
HooperT. and VosM., Establishing business integrity in an online environment: An examination of New Zealand web site privacy notices. Online Information Review33(2) (2009), 343–361.
19.
IacovinoL. and ToddM., The long-term preservation of identifiable personal data: A comparative archival perspective on privacy regulatory models in the European Union, Australia, Canada and the United States. Archival Science7(1) (2007), 107–127.
20.
IsmailN., Selected issues regarding the Malaysian Personal Data Protection Act (PDPA) 2010, International Data Privacy Law2(2) (2012), 105.
21.
JohnsonC.M. and GrandisonT.W., Compliance with data protection laws using hippocratic database active enforcement and auditing. IBM Systems Journal46(2) (2007), 255–264.
22.
KoM. and Osei-BrysonK.M., Analyzing the impact of information technology investments using regression and data mining techniques. Journal of Enterprise Information Management19(4) (2006), 403–417.
23.
KoM., Osei-BrysonK.M. and DorantesC., Investigating the impact of publicly announced information security breaches on three performance indicators of the breached firms. Information Resources Management Journal22(2) (2009), 1.
24.
LangheinrichM., Privacy by design—principles of privacy-aware ubiquitous systems. In International conference on Ubiquitous Computing 2001 (pp. 273–291). SpringerBerlin Heidelberg.
25.
LanoisP., Privacy in the age of the cloud. Journal of Internet Law15(6) (2011), 3–17.
26.
LeeC.C., HoP.F. and HwangM.S., A secure e-auction scheme based on group signatures. Information Systems Frontiers11(3) (2009), 335–343.
27.
CustomerP., data analytics: Privacy settings for ‘Big Data’business. International Data Privacy Law4(1) (2014), 53–68.
28.
LiX.B. and SarkarS., Against classification attacks: A decision tree pruning approach to privacy protection in data mining. Operations Research57(6) (2009), 1496–1509.
29.
LyonD., Surveillance as social sorting: Privacy, risk, and digital discrimination. Psychology Press; 2003.
30.
MassacciF., PrestM. and ZannoneN., Using a security requirements engineering methodology in practice: The compliance with the Italian data protection legislation. Computer Standards & Interfaces27(5) (2005), 445–455.
31.
Mocydlarz-AdamcewiczM., Practical guidance on implementation of the Personal Data Security Management System in an oncology centre. Wspolczesna Onkologia-Contemporary Oncology15(5) (2011), 279–285.
32.
NarayanaswamyR. and McGrathL., A holistic study of privacy in social networking sites. Academy of Information and Management Sciences Journal17(1) (2014), 71.
33.
NiW.W., ZhengJ.W. and ChongZ.H., HilAnchor: Location privacy protection in the presence of users’ preferences. Journal of Computer Science and Technology27(2) (2012), 413–427.
34.
PearsonS. and CharlesworthA., Accountability as a way forward for privacy protection in the cloud. In IEEE International Conference on Cloud Computing 2009 (pp. 131–144). SpringerBerlin Heidelberg.
35.
PentafronimosG., KarantjiasA. and PolemiN., Collaborative information and knowledge management environments: The ‘what’and ‘how’. OR Insight25(2) (2012), 105–123.
36.
QiuL., LiY. and WuX., Protecting business intelligence and customer privacy while outsourcing data mining tasks. Knowledge and Information Systems17(1) (2008), 99–120.
37.
RaabC.D., The distribution of privacy risks: Who needs protection?The Information Society14(4) (1998), 263–274.
38.
RansbothamS. and MitraS., Choice, chance:, A conceptual model of paths to information security compromise. Information Systems Research20(1) (2009), 121–139.
39.
RichterD., RiemerP.D. and vom BrockeJ., Internet social networking. Wirtschaftsinformatik53(2) (2011), 89–103.
40.
SchwartzP.M., European data protection law and restrictions on international data flows. Iowa L Rev80 (1994), 471.
41.
ShirtzD. and EloviciY., Optimizing investment decisions in selecting information security remedies. Information Management & Computer Security19(2) (2011), 95–112.
42.
SiahD., Standard defences no longer sufficient. The Business Times (2013).
43.
SommestadT., EkstedtM., HolmH. and AfzalM., Security mistakes in information system deployment projects. Information Management & Computer Security (2011), 80–94.
44.
SongD., ShiE., FischerI. and ShankarU., Cloud data protection for the masses. (2012).
45.
TeneO. and PolonetskyJ., Privacy in the age of big data: A time for big decisions. Stanford Law Review Online64 (2012), 63.
46.
VorakulpipatC. and RezguiY., Value creation: The future of knowledge management. The Knowledge Engineering Review23(03) (2008), 283–294.
47.
WarkentinM., JohnstonA.C. and ShropshireJ., The influence of the informal social learning environment on information privacy policy compliance efficacy and intention. European Journal of Information Systems20(3) (2011), 267–284.
48.
Weber-JahnkeJ.H. and ObryC., Protecting privacy during peer-to-peer exchange of medical documents. Information Systems Frontiers14(1) (2012), 87–104.
49.
XuS., ZhangJ., HanD. and WangJ., Singular value decomposition based data distortion strategy for privacy protection. Knowledge and Information Systems10(3) (2006), 383–397.
