Relevant bibliographies by topics / GDPR

Contents

  1. Journal articles
  2. Dissertations / Theses
  3. Books
  4. Book chapters
  5. Conference papers
  6. Reports

Academic literature on the topic 'GDPR'

Author: Grafiati
Published: 4 June 2021
Last updated: 30 November 2024

Create a spot-on reference in APA, MLA, Chicago, Harvard, and other styles

Select a source type:

Consult the lists of relevant articles, books, theses, conference reports, and other scholarly sources on the topic 'GDPR.'

Next to every source in the list of references, there is an 'Add to bibliography' button. Press on it, and we will generate automatically the bibliographic reference to the chosen work in the citation style you need: APA, MLA, Harvard, Chicago, Vancouver, etc.

You can also download the full text of the academic publication as pdf and read online its abstract whenever available in the metadata.

Journal articles on the topic "GDPR"

1

Iramina, Aline. "GDPR v. GDPL." Law, State and Telecommunications Review 12, no. 2 (October 13, 2020): 91–117. http://dx.doi.org/10.26512/lstr.v12i2.34692.

Full text
Abstract:
Purpose ”“ The main purpose of this article is to analyze the aspects of the responsiveness approach adopted by European and Brazilian lawmakers in the elaboration of data protection rules, such as GDPR and LGPD. Methodology ”“ The applied methodology is based on the responsive regulation theory and, additionally, the network governance theory, through the comparative analysis of personal data protection legal frameworks in Brazil and the EU. Findings ”“ Based on the comparative analysis of the GDPR and the LGPD, it is verified the adoption of escalated regulatory techniques of Ayres and Braithwaite’s enforcement pyramid in the developed of these norms, as a strategy adopted by lawmakers to guarantee a greater compliance from regulated entities.
APA, Harvard, Vancouver, ISO, and other styles
2

Laybats, Claire, and John Davies. "GDPR." Business Information Review 35, no. 2 (June 2018): 81–83. http://dx.doi.org/10.1177/0266382118777808.

Full text
Abstract:
This article discusses the main changes to data protection regulation with the introduction of the General Data Protection Regulation (GDPR) that comes into effect on 25 May 2018. It considers the effect on organizations coming under its jurisdiction through an interview with John Davies, Managing Director of digital agency Reading Room, and then goes on to consider the implications for organizations currently out of the geographical area the GDPR controls. It finally considers the implications for the future as the GDPR becomes established.
APA, Harvard, Vancouver, ISO, and other styles
3

Hirvonen, Pauliina. "Organisational GDPR Investments and Impacts." European Conference on Cyber Warfare and Security 22, no. 1 (June 19, 2023): 584–91. http://dx.doi.org/10.34190/eccws.22.1.1107.

Full text
Abstract:
The aim of this empirical multi-case study is to understand the GDPR investments and impacts of the organisations. Among these, the measuring experiences related to GDPR and information security (Isec), and the future expectations are examined. Several interesting findings were recognised, which also enabled further suggestions. First, an understanding of the organisations’ investments and their impact is built by gathering information about the actions that organisations made to fulfil the GDPR requirements. In the second phase, it is deemed necessary to examine how organisations experience the measures and evaluation of GDPR development and progress, in order to understand how respondents, end up evaluating the impact of their investments. In the third phase it is considered necessary to consider the future development of GDPR and the challenges and opportunities it brings to organisations, in order to understand how the experiences so far affect preparations for the future. The final phase of evaluation focuses on finding out what impact the GDPR has had on organisations. On the one hand, it is possible that the total investment in the GDPR may also correlate with the development of the organisational Isec maturity, because GDPR has brought more resources and visibility to the organisation’s Isec, and operations have become more systematic. On the other hand, organisations with an already high level of Isec maturity and organisations operating in a regulatory-focused industry may accept the GDPR-based Isec investments more easily. If GDPR is tightly integrated with both the organisation’s information security and the business functions under the responsibility of executive management, it may support the organisation’s business and information security development. This research serves GDPR authorities, organisational executives, persons in charge of GDPR/information security/cybersecurity, service providers and academia.
APA, Harvard, Vancouver, ISO, and other styles
4

Hirvonen, Pauliina. "Expectations And Mindsets Related To GDPR." European Conference on Cyber Warfare and Security 21, no. 1 (June 8, 2022): 360–67. http://dx.doi.org/10.34190/eccws.21.1.238.

Full text
Abstract:
The aim of this qualitative case study is to examine the initial expectations and assumptions related to General Data Protection Regulation (GDPR) of the European Union from the perspectives of selected Finnish organizations: what were the initial expectations of GDPR, how were they adapted/refined over time, and what was the impact on organizational planning and resourcing. There are no precise earlier studies on the subject. The research question was: What were the organizations’ initial expectations of GDPR - and how have they affected the efforts made? GDPR can be described as an input that forms images, preconceptions and views among other things, through various active and passive communication flows. As the empirical results indicate GDPR has been a legal issue, mainly due to the inadequate and unspecific active, official, communication flows. As a result, organizations have experienced difficulties to scale the necessary GDPR efforts. The results of this research can benefit both privacy and information security managers and personnel responsible for aligning policies and practices, and to evaluate organization-specific actions on GDPR compliance. The results can support regulators and authorities in the future GDPR and other policy work and provide ideas for service providers.
APA, Harvard, Vancouver, ISO, and other styles
5

Shan Liu, Rolly R. Tang, Jae Kyu Lee,. "Taxonomy of the GDPR-based Privacy Research by Scientometric Analysis." Journal of Electrical Systems 20, no. 2 (April 4, 2024): 1647–59. http://dx.doi.org/10.52783/jes.1612.

Full text
Abstract:
Will General Data Protection Regulation (GDPR) be adopted globally in business? The GDPR was approved in the European Union (EU) in April 2016 and officially put into effect in May 2018, thus the research in this field has an obvious upward trend. The development of GDPR is aimed at adapting to new trends, conducting scientific econometric analysis in the fields of privacy and GDPR, and analyzing and visualizing emerging trends. First, summarizing the privacy and GDPR studies publicly published between 1995 and 2023 through statistical analysis of terminology categories and high-yield journals. Then, understand the overall research status of privacy rights and GDPR from the perspectives of author, journal, literature co citation analysis, and collaborative networks. Finally, based on keyword analysis and literature co citation cluster analysis, a knowledge graph was constructed that includes knowledge domains, evolutionary trends, and future research directions. As a globally influential regulation, GDPR emphasizes the protection and lawful processing of personal data, which is of great significance for protecting personal data privacy and enhancing data security.
APA, Harvard, Vancouver, ISO, and other styles
6

Ngobeni, Sipho, Ntombizodwa Thwala, Nokuthaba Siphambili, Phumeza Pantsi, Bokang Molema, Jacob Lediga, and Pertunia Senamela. "Towards a GDPR Compliance Assessment Toolkit." European Conference on Cyber Warfare and Security 23, no. 1 (June 21, 2024): 313–21. http://dx.doi.org/10.34190/eccws.23.1.2278.

Full text
Abstract:
The European Union's (EU) General Data Protection Regulation (GDPR) makes it illegal to collect, process, and store personal data unless it is done in accordance with the prescribed legal and regulatory clauses enshrined in the Act. Organisations face significant challenges in navigating GDPR requirements and assessing their level of compliance. In particular, failure to comply with GDPR may potentially expose the data Controller and Processor to steep legal penalties including possibly administrative fines of up to 20 000 000 EUR, or in the case of an undertaking, up to 4% of the total worldwide annual turnover of the preceding financial year, which is imposed by the Supervisory Authority. This paper presents the results of a minimum viable product, the GDPR Compliance Assessment Toolkit (GCAT). The main objective of the GCAT is to assist organisations to assess their current state of compliance to GDPR. Drawing from an experimental research and development approach, GCAT is then compared with other existing GDPR compliance assessment technologies. Comparative analysis results shows that GCAT simplifies and optimize GDPR compliance assessments.
APA, Harvard, Vancouver, ISO, and other styles
7

Zanker, Marek, Vladimír Bureš, Anna Cierniak-Emerych, and Martin Nehéz. "The GDPR at the Organizational Level: A Comparative Study of Eight European Countries." E+M Ekonomie a Management 24, no. 2 (June 2021): 207–22. http://dx.doi.org/10.15240/tul/001/2021-2-013.

Full text
Abstract:
The General Data Protection Regulation, also known as the ‘gold standard’ or the ‘Magna Carta’ of cyber laws, is a European regulation that deals with rights in the area of privacy and focuses on data collection, storage and data processing. This manuscript presents the results of investigation in the business sphere from eight countries of the European Union. The research focused on awareness of the GDPR, costs associated with the GDPR, number of trainings, how data are secured and subjective evaluation. The questionnaire was used for data collection. The results show that the majority of employees concerned about the GDPR are able to define the GDPR correctly (64%). The correct identification of personal data is in 95% of cases. The vast majority of respondents (94%) assign the right to personal data protection to the GDPR. Most employees are trained in the GDPR once (46%) or twice (45%). Subsequently, the differences between these countries in some areas of the questionnaire survey were examined. For this purpose, Welch ANOVA with post-test Tukey HSD or Kruskal-Wallis test were used. As a result, knowledge about the personal data do not vary significantly between the countries. In the area of rights, the countries are not again statistically different. As for the number of security countries, statistics do not differ significantly. The subjective assessment of the GDPR is different across the countries. The GDPR is rated worst by companies in the Czech Republic and Slovakia. On the contrary, the GDPR is best perceived by companies in France and the United Kingdom.
APA, Harvard, Vancouver, ISO, and other styles
8

Bin Othman, Mohd Bahrin, and Muhammad Faiz Bin Abu Samah. "The Magnitude of GDPR To Malaysia." Malaysian Journal of Social Sciences and Humanities (MJSSH) 7, no. 9 (September 30, 2022): e001776. http://dx.doi.org/10.47405/mjssh.v7i9.1776.

Full text
Abstract:
The European Union (“EU”) General Data Protection Regulation (“GDPR”) governs any individuals or companies that stores or processes personal information about EU citizens within EU states even if it does not involve a business presence within the EU. Malaysian businesses need to comply with the GDPR as failure to comply will cause disruption or discontinuance of business. This paper aims to understand and evaluate the scope of the GDPR and its effect on personal data protection in Malaysia. It employs a doctrinal qualitative approach by examining the GDPR and the Malaysia Personal Data Protection Act 2010. This paper suggests that the GDPR provides a more comprehensive law with its holistic principles and rights which may provide lessons for Malaysia in protecting personal data as the area covered by the GDPR is broader specifically the non-commercial transactions, its wider range of rights and the extraterritorial applicability.
APA, Harvard, Vancouver, ISO, and other styles
9

Seo, Junwoo, Kyoungmin Kim, Mookyu Park, Moosung Park, and Kyungho Lee. "An Analysis of Economic Impact on IoT Industry under GDPR." Mobile Information Systems 2018 (December 5, 2018): 1–6. http://dx.doi.org/10.1155/2018/6792028.

Full text
Abstract:
The EU GDPR comes into effect on May 25, 2018. Under this regulation, stronger legislation than the existing directive can be enforced. The IoT industry, especially among various industries, is expected to be heavily influenced by GDPR since it uses diverse and vast amounts of personal information. This paper first analyzes how the IoT industry handles personal information and summarizes why it is affected by GDPR. The paper then uses the cost definition of Gordon and Loeb model to estimate how GDPR affects the cost of IoT firms qualitatively and uses the statistical and legal bases to estimate quantitatively. From a qualitative point of view, GDPR impacted the preventative cost and legal cost of the Gordon and Loeb model. Quantitative view showed that the cost of IoT firms after GDPR could increase by three to four times on average and by 18 times if the most. The study finally can be applied to situational awareness of the economic impact on the certain industry.
APA, Harvard, Vancouver, ISO, and other styles
10

Serrado, João, Ruben Filipe Pereira, Miguel Mira da Silva, and Isaías Scalabrin Bianchi. "Information security frameworks for assisting GDPR compliance in banking industry." Digital Policy, Regulation and Governance 22, no. 3 (August 11, 2020): 227–44. http://dx.doi.org/10.1108/dprg-02-2020-0019.

Full text
Abstract:
Purpose Data can nowadays be seen as the main asset of organizations and data leaks have a considerable impact on the organization’s image, revenues and possible consequences to the affected clients. One of the most critical industries is the bank. Information security frameworks (ISF) have been created to assist organizations and other frameworks evolved to update these domain practices. Recently, the European Union decided to create the general data protection regulation (GDPR), applicable to all organizations dealing with personal data of citizens residing in the European Union. Although considered a general regulation, GDPR implementation needs to align with some industries’ laws and policies. Especially in the Bank industry. How these ISF can assist the implementation of GDPR is not clear. Design/methodology/approach The design science research process was followed and semi-structured interviews performed. Findings A list of practices to assist the bank industry in GDPR implementation is provided. How each practice map with assessed ISF and GDPR requirements is also presented. Research limitations/implications As GDPR is a relatively recent subject, it is hard to find experts in the area. It is more difficult if the authors intend to find experienced people in the GDPR and bank industry. That is one of the main reasons this study does not include more interviews. Originality/value This research provides a novel artefact to the body of knowledge. The proposed artefact lists which ISF practices banks should implement to comply with GDPR. By doing it the artefact provides a centralized view about which ISF frameworks (or part of them) could be implemented to help banks comply with GDPR.
APA, Harvard, Vancouver, ISO, and other styles
More sources

Dissertations / Theses on the topic "GDPR"

1

Niklasson, Frida, Linda Ojari, and Malin Falkeling. "6 månader efter GDPR : GDPR i systemutvecklingsverksamheter." Thesis, Örebro universitet, Handelshögskolan vid Örebro Universitet, 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:oru:diva-72621.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Nord, Lisa. "Programvaruutvecklingen efter GDPR : Effekten av GDPR hos mjukvaruföretag." Thesis, Blekinge Tekniska Högskola, Institutionen för programvaruteknik, 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:bth-20146.

Full text
Abstract:
GDPR (General data protection regulation, generella dataskyddsförordningen) är en ny europeisk förordning som reglerar behandlingen av känsliga uppgifter samt det fria flödet av dessa inom EU. Förordningen utgör ett skydd för fysiska personer vid behandling av deras personuppgifter inom unionen vilket är en grundläggande rättighet.  GDPR har sedan den trädde i kraft i Maj 2018 varit en förordning att räkna med då dess bötesbelopp är höga. Alla företag inom Europa behöver följa reglerna samt företag utanför EU som hanterar europeiska personuppgifter. Målet med detta arbete är se vilken effekt GDPR har haft hos svenska mjukvaruutvecklare och hur de ser på sin arbetsbörda. Detta har gjorts genom en enkätundersökning hos svenska mjukvaruföretag som blivit slumpmässigt utvalda. Av uppsatsens resultat framgår det att många mjukvaruföretag som skapar egen programvara eller distribuerar programvara för en tredje part har den nya förordningen inneburit ett tyngre arbetslass samt omförhandling av existerande programvarulösningar. Något som inneburit nya arbetsplatser eller arbetsgrupper hos många företag. När GDPR först trädde ikraft lades det ner många arbetstimmar på att omvandla redan existerande lösningar för att uppfylla kraven. Trots detta har det lagts många fler timmar vid utveckling även efter GDPR för att se till att den nya programvaran även den lever upp till de krav som är ställda.  Av resultatet kan vi även finna att många företag ser väldigt strikt på hantering av känsliga uppgifter de samlat in från deras kunder men ser mindre strikt på lagring och hantering av personuppgifter av sina egna anställda.
GDPR(General data protection regulation) is a new European regulation that regulates data, protection, and privacy. It also addresses the transfer of personal data to countries outside of the European Union. Ever since the GDPR was enforceable May 2018, it has been a regulation for businesses to strictly follow and be wary of due to the hefty fines. All European businesses need to follow the new regulation and likewise, so to the businesses outside of the E.U. in which handles any type of personal data of Europeans. The goal with this thesis is to see the effect the GDPR has had for Swedish software developers and how they portray their workload. This data has been shown in the form of a questionnaire which was randomly distributed to a number of Swedish software companies.  In conclusion, this thesis shows that the new regulation has had a big impact on the developers that create new software/distributes software, primarily in form of a heavier workload and the need to re-negotiate already existing software. This has provided new jobs and/or new teams for many of the companies that were a part of this study. When GDPR was first introduced, the software companies spent countless hours on converting already existing software. Even tho they spend a lot of time in the beginning, the dedication of time is spent on every solution to make sure it meets the requirements of GDPR: We can also see that many businesses spend a lot more time and money on data protection for their clients personal data, but they do not treat their employees personal data in the same way.
APA, Harvard, Vancouver, ISO, and other styles
3

Chosrat, Ismail, and Rödin Joakim. "GDPR i praktiken." Thesis, KTH, Hälsoinformatik och logistik, 2018. http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-230604.

Full text
Abstract:
Med den nya dataskyddsförordningen (GDPR) i EU ställs det högre krav på hantering avpersonuppgifter och för första gången riskerar företag sanktioner om de inte hanterar personuppgifterkorrekt, vilket medför att alla organisationer måste ta ställning till hur personuppgifterskall hanteras inom organisationen. Inom IT-sektorn måste en analys utföras omvilka data som kommer att påverkas med införandet av GDPR och hur data ska hanteras inuvarande IT-system. Studien har genomförts hos företaget Primona som är placerade iStockholm där de utvecklar lösningar inom inköp och elektronisk handel.Den nya dataskyddsförordningen och relaterade arbeten har studerats tillsammans medintervjuer som utfördes på olika företag för att framställa ett lösningsförslag. Lösningsförslagethar sedan använts i ett implementeringstest i Primonas system för att visa att detfungerar. Studien innehåller även en ekonomisk analys för att fastställa betydelsen av attimplementeringen hanteras och prioriteras.Lösningsförslaget som studien tog fram har gett bevisad effekt i systemet och kan medrelativ lite resurser återanvändas för att säkerställa att en organisation vidtar tillräckligaåtgärder vid införande av GDPR.
Med den nya dataskyddsförordningen (GDPR) i EU ställs det högre krav på hantering avpersonuppgifter och för första gången riskerar företag sanktioner om de inte hanterar personuppgifterkorrekt, vilket medför att alla organisationer måste ta ställning till hur personuppgifterskall hanteras inom organisationen. Inom IT-sektorn måste en analys utföras omvilka data som kommer att påverkas med införandet av GDPR och hur data ska hanteras inuvarande IT-system. Studien har genomförts hos företaget Primona som är placerade iStockholm där de utvecklar lösningar inom inköp och elektronisk handel.Den nya dataskyddsförordningen och relaterade arbeten har studerats tillsammans medintervjuer som utfördes på olika företag för att framställa ett lösningsförslag. Lösningsförslagethar sedan använts i ett implementeringstest i Primonas system för att visa att detfungerar. Studien innehåller även en ekonomisk analys för att fastställa betydelsen av attimplementeringen hanteras och prioriteras.Lösningsförslaget som studien tog fram har gett bevisad effekt i systemet och kan medrelativ lite resurser återanvändas för att säkerställa att en organisation vidtar tillräckligaåtgärder vid införande av GDPR.
APA, Harvard, Vancouver, ISO, and other styles
4

Kidman, Kajsa, and Lisen Axelsson. "GDPR – en "kioskvältare"?" Thesis, Malmö högskola, Fakulteten för teknik och samhälle (TS), 2017. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20032.

Full text
Abstract:
Denna uppsats är en fallstudie. Studien behandlar den kommande dataskyddsförordningen (GDPR) och dess påverkan på medie- och IKT-företag. Syftet med studien är att studera den befintliga kunskapen kring dataskyddsförordningen inom medie- och IKT-företag samt hur ett förändringsarbete mot förordningen kan drivas. Studien redovisar för dataskyddsförordningen och dess bakgrund följt av en beskrivning kring medieindustrin, IKT-företag och dess komplexa struktur. Vidare beskrivs organisationsförändringar och metoder för dessa vilka kan underlätta ett förändringsarbete. Med hjälp av en enkätundersökning har författarna undersökt om dataskyddsförordningen har uppmärksammats inom 50 medie- och IKT-företag samt om ett förändringsarbete har planerats eller påbörjats. Vidare har studien kompletterats med kvalitativa intervjuer där dataskyddsförordningen i förhållande till tre medieföretag samt ett IKT-företag har analyserats mer ingående. Resultatet av undersökningarna visar hur en stor andel medieföretag i nuläget inte har påbörjat anpassningen mot dataskyddsförordningen. De studerade organisationerna vittnar även om en okunskap i förhållande till det behandlade ämnet och ett anpassningsarbete har i majoriteten av de studerade fallen ej påbörjats. Studien lyfter därför förändringsmodeller vilka kan ge struktur åt ett kommande anpassningsarbete.
This essay is a case study. The study addresses the forthcoming General Data Protection Regulation (GDPR) and its impact on media-and ICT-companies. The purpose of the study is to examine the existing knowledge of the data protection regulation within media and ICT-companies. The study also aims to create an understanding of how an adaption can be carried out against the regulation. The study accounts for the GDPR and its background, followed by a description of the media industry, ICT-companies and its complex structure. Furthermore, organizational changes and methods are described in order to facilitate and provide an overall structure for the change work. By means of a survey, the authors examined whether the GDPR has been noted in 50 media and ICT-companies and if a change work has been planned or begun. Furthermore, the study has been supplemented with qualitative interviews where the GDPR in relation to three media companies and one ICT-company has been analyzed in more detail. The results of the survey show how a large proportion of media companies have not yet begun the adaptation or change work to meet the requirements in the GDPR. The studied organizations also testify to an ignorance in relation to the subject and an adaptation work has not begun in the majority of the studied companies. The study therefore raises change models that can provide an overall structure for future change work to GDPR.
APA, Harvard, Vancouver, ISO, and other styles
5

Åhlström, Riklund Josefin. "GDPR och automatiserade beslut : En rättslig analys av artikel 22 GDPR." Thesis, Uppsala universitet, Juridiska institutionen, 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:uu:diva-416154.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Olsson, Olle. "Challenges with the GDPR: A Software Developing Organization’s Guide to GDPR Compliance." Thesis, Malmö universitet, Fakulteten för teknik och samhälle (TS), 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20388.

Full text
Abstract:
Den 25 maj 2018 trädde den nya dataskyddsförordningen, GDPR, i kraft. GDPR kräver att organisationer och företag, som behandlar persondata, att anpassa sig och andra sina system och produkter för att uppfylla kraven som förordningen ställer. Om organisationer och företag, som faller under förordningen, inte kan uppfylla dem kraven som förordningen ställer måste administrativa böter betalas, vilket kan orsaka att dessa organisationer och företag går i konkurs. Beträffande den praktiska implementeringen av GDPR inom mjukvaruutvecklande företag, är lite forskning som gjorts på det området. Den praktiska implementeringen av GDPR i mjukvaruutvecklande företag är också sällan diskuterat. Syftet med denna studie är att förstå; hur mjukvaruutvecklande företag implementerade GDPR i deras verksamheter; hur dem arbetar med GDPR i dagsläget; och hur dem kommer att arbeta med GDPR i framtiden. Litteraturstudien presenterar dem utmaningar under regleringen som tidigare forskning identifierat och presenterar även hur dem juridiska kraven som GDPR ställer översätts till tekniska lösningar; vilka mjukvaruutvecklande företag behöver implementera för att bli kompatibla med GDPR. Genom kvalitativ forskningsmetod går denna uppsats in i djupet på hur GDPR implementerades i mjukvaruutvecklande företag. Elva respondenter från sex olika företag av tre olika storlekar intervjuades genom semi-strukturerade intervjuer. Intervjufrågorna var baserade på faktorer som är relevanta för denna studie. Det empiriska materialet var sedan sammanställt, analyserat och jämfördes med insamlad litteratur som används i litteraturstudien. Det empiriska materialet visade att omfattningen av implementeringen av GDPR i mjukvaruutvecklande företag inte är beroende på storleken på organisationerna, men snarare beroende på vad för personlig data som bearbetas. Upptäckterna från denna studie kommer fungera som en guide till GDPR kompatibilitet för mjukvaruutvecklande företag som presenteras i slutsatsen. Denna studie har identifierat följande principer att vara essentiella för mjukvaruutvecklande företag att bli GDPR kompatibla. Mjukvaruutvecklare måste nu försäkra: förståelse över vad GDPR betyder för just deras verksamhet, skapa förståelse och medvetenhet om GDPR inom hela organisationen, genomsynlighet i förhållande till organisationens kunder och användare, att persondata lokaliseras och kartläggs i befintliga system and applikationer, att data minimeras under principerna som GDPR tillhandahåller, att persondata krypteras, att principen privacy by design & default följs under all mjukvaruutveckling, rådgivning inom GDPR, att dagliga protokoll följs och att dessa följs upp.
The General Data Protection Regulation came into force on the 25th of may 2018. The GDPR requires organizations and companies, who process personal data, to adjust and change their existing systems in order to meet the requirements that the GDPR puts forward. If organizations and companies fail to comply with the regulation, administrative fines and penalties will be enforced which can lead to bankruptcy for these organizations and companies. There is a lack of research made on the practical implementation of the GDPR into software developing companies and is rarely discussed. Thus, the purpose of this thesis is to understand how the GDPR was implemented into software developing companies; how software developing companies work with the GDPR today; and how software developing companies will work with the GDPR in the future. The literature review presents the challenges of the regulation that previous research has brought forward and how the legal requirements translates into technical solutions, which software developing companies need to implement in order to become compliant with the regulation. Through a qualitative research method, this thesis investigates the depth of how the GDPR was implemented into software developing companies. Eleven respondents representing six different organizations of three different sizes, was interviewed through semi-structured interviews. The interview questions was based on key factors brought forward in the literature review chapter; which are of relevance for this thesis. The empirical evidence was then summarized, analysed and compared to the used literature. The empirical evidence showed that the extent of the implementation of GDPR into software developing companies was not depending on the size of the organization, but rather depending on what personal data is being processed. The findings in this study will serve as a software developers guide to GDPR compliance which is presented in the conclusion. This study has identified the following principles to be essential for software developing companies in order to become GDPR compliant: understanding what the GDPR means for their business, awareness within their organization, transparency, locating personal data, data minimization, encryption of data, privacy by design & default, GDPR guidance, daily GDPR protocols and follow up on previous implementations.
APA, Harvard, Vancouver, ISO, and other styles
7

Fagerlund, Martin. "GDPR och Framtidssäkrade Webbapplikationer." Thesis, Blekinge Tekniska Högskola, Institutionen för programvaruteknik, 2018. http://urn.kb.se/resolve?urn=urn:nbn:se:bth-16181.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Petersson, Simon, and Oscar Rehn. "GDPR - Plötsligt händer det." Thesis, Malmö universitet, Fakulteten för teknik och samhälle (TS), 2018. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20331.

Full text
Abstract:
This essay is a comparative study of nine Swedish organizations. The purpose was to examine how nine Swedish organizations has prepared for the forthcoming General Data Protection Regulation (GDPR) which will replace the national PUL directive from 1998, on the 25th of May 2018. The new regulation implies higher demands on how organizations within EU handle personal data. Earlier studies has discovered that there is general a lack of awareness and preparations among organizations. With that in mind this study was created to examine if the organizations were more aware and prepared now that GDPR soon will go live.  
This study uses John P Kotters eight step model to describe the organizations different ways to approach GDPR as an organizational change project.The study was conducted by semi-structured interviews with nine different organizations. The result of the interviews were used to create themes based on Kotters model, that were used to analyze the empirical result. As a summary the study concluded that eight of nine examined organizations suggested that they were prepared for GDPR. The main differences in the organizations preparations for GDPR was due to difficulties in interpreting the law, which lead up to variations in terms of the scope of the GDPR-project
APA, Harvard, Vancouver, ISO, and other styles
9

Gustavsson, Jenny, and Julia Bengtsson. "Införandet av GDPR ( SFS 2018:218) i förskolan Technoapati - En konsekvens av GDPR." Thesis, Malmö universitet, Fakulteten för lärande och samhälle (LS), 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-36188.

Full text
Abstract:
I denna kvalitativa studie har GDPR-lagens införande i- och påverkan på förskolan studerats. Vi har utgått från en frågeställning, och sett på denna utifrån olika perspektiv. Det första fokuset i studien ligger på hur förskolorna har valt att implementera lagen i deras verksamhet. Med detta menas om personalen fått utbildning och/eller bara information om lagen. Samtidigt har vi belyst förskollärarnas reaktioner till lagen och vilken betydelse detta utgör för det fortsatta arbetet. Det andra fokuset är hur förskolepersonalen behövt ändra sitt arbetssätt efter införandet av GDPR. Här har vi valt att diskutera element såsom samverkan, digitalisering, dokumentation och yrkesroll. I resultatet framgår det skilda meningar om vad GDPR-lagen skapat för konsekvenser, både gällande yrkesrollen och även den generella förståelsen för lagen. Empirin, som samlats in med hjälp av sex stycken intervjuer, analyseras i resultatdelen med hjälp av olika teorier. Dessa utgår ifrån organisationskultur, ledarskap, yrkesprofession, förändringsprocesser och inlärningsteorier, samt kommunikation. I studiens diskussionsdel kommer begreppen technostress och technoapati ställas i relation till varandra, samt till förskolan som den ser ut idag.
APA, Harvard, Vancouver, ISO, and other styles
10

Stafilidis, Dennis, and Ludwig Sjögren. "GDPR - Så påverkas detaljhandelns datahantering : en studie av hur GDPR påverkat detaljhandelns datahantering." Thesis, Högskolan i Halmstad, Akademin för informationsteknologi, 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:hh:diva-39638.

Full text
Abstract:
Digitaliseringens framfart har inneburit att användningen av Big Data-analyser har ökat. I takt med digitaliseringens framfart har kraven på datasäkerhet och skydd av personlig integritet ökat. GDPR trädde i kraft 2018 och ställer hårdare krav på hantering av personuppgifter och kunddata. GDPR syftar till att skydda människors integritet och personuppgifter. En av de branscher som hanterar stora mängder data och använder sig av Big Data-analyser för att nå insikter om sina kunder är detaljhandeln. Men för att användningen av Big Data-analyser skall nå sin fulla potential måste den användas upprepade gånger för olika ändamål, medan GDPR föreskriver att kunddata inte får användas för olika syften och ändamål. Syftet med studien är att undersöka och beskriva hur detaljhandelsföretag anpassar sin datahantering till de krav som GDPR ställer. För att undersöka frågeställningen har vi använt oss av en kvalitativ ansats. Vid insamlingen av data har vi genomfört intervjuer, vilka sedan har analyserats genom en tematisk analys. Resultatet i vår studie visar att GDPR har påverkat detaljhandelns hantering av kunddata. Insamlingen har påverkats genom att den blivit mer strikt och genom att inköp av extern kunddata har upphört. Analys av kunddata har påverkats genom ytterligare steg i processen vid behandling samt genom en restriktivare tillgång till databaser och data som används för analys. Aggregering av kunddata har förändrats genom att datakällorna som används har förändrats. Lagringen av kunddata har förändrats då en integrationslösning har skapats som möjliggör radering av lagrad kunddata i olika databaser.
APA, Harvard, Vancouver, ISO, and other styles
More sources

Books on the topic "GDPR"

1

Taal, Amie. The GDPR Challenge. New York: CRC Press, 2021. http://dx.doi.org/10.1201/9780429325939.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Slokenberga, Santa, Olga Tzortzatou, and Jane Reichel, eds. GDPR and Biobanking. Cham: Springer International Publishing, 2021. http://dx.doi.org/10.1007/978-3-030-49388-2.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

Grammenos, Dēmētrēs. Ho GDPR kai hoi 40 klephtes. Hērakleio, Krētē: Panepistēmiakes Ekdoseis Krētēs, 2020.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
4

Voigt, Paul, and Axel von dem Bussche. The EU General Data Protection Regulation (GDPR). Cham: Springer International Publishing, 2017. http://dx.doi.org/10.1007/978-3-319-57959-7.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Colcelli, Valentina, Roberto Cippitani, Christoph Brochhausen-Delius, and Rainer Arnold, eds. GDPR Requirements for Biobanking Activities Across Europe. Cham: Springer International Publishing, 2023. http://dx.doi.org/10.1007/978-3-031-42944-6.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Voigt, Paul, and Axel von dem Bussche. The EU General Data Protection Regulation (GDPR). Cham: Springer Nature Switzerland, 2024. http://dx.doi.org/10.1007/978-3-031-62328-8.

Full text
APA, Harvard, Vancouver, ISO, and other styles
7

Taal, Amie. Gdpr Challenge. Taylor & Francis Group, 2021.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
8

EU GDPR Compliance Compact : GDPR Checklist and GDPR Introduction for Websites and Bloggers: GDPR Handbook with GDPR Templates. Data Protection Regulation 2018 for Beginners. GDPR Concisely Explained. Independently Published, 2018.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
9

McLaughlin, Kieran. GDPR Training Manual. Independently Published, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
10

Dibble, Suzanne. GDPR for Dummies. Wiley & Sons, Incorporated, John, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
More sources

Book chapters on the topic "GDPR"

1

Evans, Ariel. "GDPR Evidence." In Enterprise Cybersecurity in Digital Business, 387–94. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-34.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Evans, Ariel. "GDPR Requirements." In Enterprise Cybersecurity in Digital Business, 395–404. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-35.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

Evans, Ariel. "GDPR Articles." In Enterprise Cybersecurity in Digital Business, 332–86. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-33.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

Evans, Ariel. "GDPR Overview." In Enterprise Cybersecurity in Digital Business, 321–31. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-32.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Arfelt, Emma, David Basin, and Søren Debois. "Monitoring the GDPR." In Lecture Notes in Computer Science, 681–99. Cham: Springer International Publishing, 2019. http://dx.doi.org/10.1007/978-3-030-29959-0_33.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Cottrell, Nicholas. "Compliance and GDPR." In MongoDB Topology Design, 75–98. Berkeley, CA: Apress, 2020. http://dx.doi.org/10.1007/978-1-4842-5817-0_4.

Full text
APA, Harvard, Vancouver, ISO, and other styles
7

Gobeo, Antoni, Connor Fowler, and William J. Buchanan. "The GDPR Fundamentals." In GDPR and Cyber Security for Business Information Systems, 3–36. New York: River Publishers, 2022. http://dx.doi.org/10.1201/9781003338253-2.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Hublet, François, David Basin, and Srđan Krstić. "Enforcing the GDPR." In Computer Security – ESORICS 2023, 400–422. Cham: Springer Nature Switzerland, 2024. http://dx.doi.org/10.1007/978-3-031-51476-0_20.

Full text
APA, Harvard, Vancouver, ISO, and other styles
9

Hibberd, Gary, and Mike Roberts. "GDPR and technology." In A Practitioner’s Guide to Cybersecurity and Data Protection, 82–95. London: Routledge, 2023. http://dx.doi.org/10.4324/9781003364184-7.

Full text
APA, Harvard, Vancouver, ISO, and other styles
10

Slokenberga, Santa, Olga Tzortzatou, and Jane Reichel. "Introduction." In GDPR and Biobanking, 1–7. Cham: Springer International Publishing, 2021. http://dx.doi.org/10.1007/978-3-030-49388-2_1.

Full text
Abstract:
AbstractThe General Data Protection Regulation (GDPR) is already four years old legal instrument, with over two years of practical experience, yet, several central questions on its application, its importance in scientific research, rights of the data subjects, and obligations on the controllers and processors remain uncharted. In this edited volume, questions ranging from the meaning of the GDPR provisions for a particular research project to impact of the GDPR on long term collaborations, when the UK is leaving the EU are is discussed. This chapter sets out the aim of this book and provides an overview of how various contributions interplay to shed light on how the GDPR shapes the research regimes on the use of personal data in biobanking by EU Member States.
APA, Harvard, Vancouver, ISO, and other styles

Conference papers on the topic "GDPR"

1

Hallman, Roger A. "Session details: GDPR." In CCS '18: 2018 ACM SIGSAC Conference on Computer and Communications Security. New York, NY, USA: ACM, 2018. http://dx.doi.org/10.1145/3285943.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

HAVLÍK, JAN, and PETR MOJŽÍŠ. "GDPR Implementation Pitfalls." In System approaches’18. University of Economics, Prague, Nakladatelství Oeconomica, 2018. http://dx.doi.org/10.18267/pr.2018.pav.2247.8.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

"Session details: GDPR." In the 2nd International Workshop, chair Roger A. Hallman. New York, New York, USA: ACM Press, 2018. http://dx.doi.org/10.1145/3267357.3285943.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

da Conceicao Freitas, Maria, and Miguel Mira da Silva. "GDPR in SMEs." In 2018 13th Iberian Conference on Information Systems and Technologies (CISTI). IEEE, 2018. http://dx.doi.org/10.23919/cisti.2018.8399272.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Bartolini, Cesare, Antonello Calabró, and Eda Marchetti. "GDPR and business processes." In the 2nd International Conference. New York, New York, USA: ACM Press, 2019. http://dx.doi.org/10.1145/3309772.3309779.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Nayak, Shiva Prasad, Suresh Pasumarthi, Bharathi Rajagopal, and Ashwani Kumar Verma. "GDPR Compliant ChatGPT Playground." In 2024 International Conference on Emerging Technologies in Computer Science for Interdisciplinary Applications (ICETCS). IEEE, 2024. http://dx.doi.org/10.1109/icetcs61022.2024.10543557.

Full text
APA, Harvard, Vancouver, ISO, and other styles
7

Furey, Eoghan, and Juanita Blue. "Alexa, Emotions, Privacy and GDPR." In Proceedings of the 32nd International BCS Human Computer Interaction Conference. BCS Learning & Development, 2018. http://dx.doi.org/10.14236/ewic/hci2018.212.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Sağlam, Rahime Belen, and Jason R. C. Nurse. "Is your chatbot GDPR compliant?" In CUI '20: 2nd Conference on Conversational User Interfaces. New York, NY, USA: ACM, 2020. http://dx.doi.org/10.1145/3405755.3406131.

Full text
APA, Harvard, Vancouver, ISO, and other styles
9

Horák, Martin, Václav Stupka, and Martin Husák. "GDPR Compliance in Cybersecurity Software." In ARES '19: 14th International Conference on Availability, Reliability and Security. New York, NY, USA: ACM, 2019. http://dx.doi.org/10.1145/3339252.3340516.

Full text
APA, Harvard, Vancouver, ISO, and other styles
10

Latif, A. A. A., and S. Yuniarti. "GDPR: Implication to Indonesia's business." In 1ST INTERNATIONAL CONFERENCE ON ACHIEVING THE SUSTAINABLE DEVELOPMENT GOALS. AIP Publishing, 2023. http://dx.doi.org/10.1063/5.0110508.

Full text
APA, Harvard, Vancouver, ISO, and other styles

Reports on the topic "GDPR"

1

Janßen, Rebecca, Reinhold Kesler, Michael Kummer, and Joel Waldfogel. GDPR and the Lost Generation of Innovative Apps. Cambridge, MA: National Bureau of Economic Research, May 2022. http://dx.doi.org/10.3386/w30028.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Jin, Ginger Zhe, Ziqiao Liu, and Liad Wagman. The GDPR and SDK Usage In Android Mobile Apps. Cambridge, MA: National Bureau of Economic Research, November 2024. http://dx.doi.org/10.3386/w33099.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

Jia, Jian, Ginger Zhe Jin, and Liad Wagman. The Short-Run Effects of GDPR on Technology Venture Investment. Cambridge, MA: National Bureau of Economic Research, November 2018. http://dx.doi.org/10.3386/w25248.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

Demirer, Mert, Diego Jiménez-Hernández, Dean Li, and Sida Peng. Data, Privacy Laws and Firm Production: Evidence from the GDPR. Federal Reserve Bank of Chicago, 2024. http://dx.doi.org/10.21033/wp-2024-02.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Aridor, Guy, Yeon-Koo Che, and Tobias Salz. The Economic Consequences of Data Privacy Regulation: Empirical Evidence from GDPR. Cambridge, MA: National Bureau of Economic Research, March 2020. http://dx.doi.org/10.3386/w26900.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Johnson, Garrett. Economic Research on Privacy Regulation: Lessons from the GDPR and Beyond. Cambridge, MA: National Bureau of Economic Research, December 2022. http://dx.doi.org/10.3386/w30705.

Full text
APA, Harvard, Vancouver, ISO, and other styles
7

Vonk, Jaynie. Going Digital: Privacy and data security under GDPR for quantitative impact evaluation. Oxfam, October 2019. http://dx.doi.org/10.21201/2019.5211.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Minero Alejandre, Gemma. Ownership of Databases: Personal Data Protection and Intellectual Property Rights on Databases. Universitätsbibliothek J. C. Senckenberg, Frankfurt am Main, 2021. http://dx.doi.org/10.21248/gups.64578.

Full text
Abstract:
When we think on initiatives on access to and reuse of data, we must consider both the European Intellectual Property Law and the General Data Protection Regulation (GDPR). The first one provides a special intellectual property (IP) right – the sui generis right – for those makers that made a substantial investment when creating the database, whether it contains personal or non-personal data. That substantial investment can be made by just one person, but, in many cases, it is the result of the activities of many people and/or some undertakings processing and aggregating data. In the modern digital economy, data are being dubbed the ‘new oil’ and the sui generis right might be con- sidered a right to control any access to the database, thus having an undeniable relevance. Besides, there are still important inconsistences between IP Law and the GDPR, which must be removed by the European legislator. The genuine and free consent of the data subject for the use of his/her data must remain the first step of the legal analysis.
APA, Harvard, Vancouver, ISO, and other styles
9

de Miguel Beriain, Iñigo, Aliuska Duardo Sánchez, and José Antonio Castillo Parrilla. What Can We Do with the Data of Deceased People? A Normative Proposal. Universitätsbibliothek J. C. Senckenberg, Frankfurt am Main, 2021. http://dx.doi.org/10.21248/gups.64580.

Full text
Abstract:
The health and genetic data of deceased people are a particularly important asset in the field of biomedical research. However, in practice, using them is compli- cated, as the legal framework that should regulate their use has not been fully developed yet. The General Data Protection Regulation (GDPR) is not applicable to such data and the Member States have not been able to agree on an alternative regulation. Recently, normative models have been proposed in an attempt to face this issue. The most well- known of these is posthumous medical data donation (PMDD). This proposal supports an opt-in donation system of health data for research purposes. In this article, we argue that PMDD is not a useful model for addressing the issue at hand, as it does not consider that some of these data (the genetic data) may be the personal data of the living relatives of the deceased. Furthermore, we find the reasons supporting an opt-in model less convincing than those that vouch for alternative systems. Indeed, we propose a normative framework that is based on the opt-out system for non-personal data combined with the application of the GDPR to the relatives’ personal data.
APA, Harvard, Vancouver, ISO, and other styles
10

Hulten, Charles, and Leonard Nakamura. Is GDP Becoming Obsolete? The “Beyond GDP” Debate. Cambridge, MA: National Bureau of Economic Research, July 2022. http://dx.doi.org/10.3386/w30196.

Full text
APA, Harvard, Vancouver, ISO, and other styles
You might also be interested in the extended bibliographies on the topic 'GDPR' for particular source types:
Journal articles Dissertations / Theses Books
We offer discounts on all premium plans for authors whose works are included in thematic literature selections. Contact us to get a unique promo code!

To the bibliography