Ciência-IUL Publicações Descrição Detalhada da Publicação Exportar

Exportar Publicação

A publicação pode ser exportada nos seguintes formatos: referência da APA (American Psychological Association), referência do IEEE (Institute of Electrical and Electronics Engineers), BibTeX e RIS.

Exportar Referência (APA)

Serrado, J., Pereira, R., Mira da Silva, M. & Bianchi, I. S. (2020). Information security frameworks for assisting GDPR compliance in banking industry. Digital Policy, Regulation and Governance. 22 (3), 227-244

Exportar Referência (IEEE)

J. Serrado et al.,  "Information security frameworks for assisting GDPR compliance in banking industry", in Digital Policy, Regulation and Governance, vol. 22, no. 3, pp. 227-244, 2020

Exportar BibTeX

@article{serrado2020_1713485104487,
	author = "Serrado, J. and Pereira, R. and Mira da Silva, M. and Bianchi, I. S.",
	title = "Information security frameworks for assisting GDPR compliance in banking industry",
	journal = "Digital Policy, Regulation and Governance",
	year = "2020",
	volume = "22",
	number = "3",
	doi = "10.1108/DPRG-02-2020-0019",
	pages = "227-244",
	url = "https://www.emerald.com/insight/publication/issn/2398-5038/vol/22/iss/3"
}

Exportar RIS

TY - JOUR
TI - Information security frameworks for assisting GDPR compliance in banking industry
T2 - Digital Policy, Regulation and Governance
VL - 22
IS - 3
AU - Serrado, J.
AU - Pereira, R.
AU - Mira da Silva, M.
AU - Bianchi, I. S.
PY - 2020
SP - 227-244
SN - 2398-5038
DO - 10.1108/DPRG-02-2020-0019
UR - https://www.emerald.com/insight/publication/issn/2398-5038/vol/22/iss/3
AB - Purpose: Data can nowadays be seen as the main asset of organizations and data leaks have a considerable impact on the organization’s image, revenues and possible consequences to the affected clients. One of the most critical industries is the bank. Information security frameworks (ISF) have been created to assist organizations and other frameworks evolved to update these domain practices. Recently, the European Union decided to create the general data protection regulation (GDPR), applicable to all organizations dealing with personal data of citizens residing in the European Union. Although considered a general regulation, GDPR implementation needs to align with some industries’ laws and policies. Especially in the Bank industry. How these ISF can assist the implementation of GDPR is not clear. Design/methodology/approach: The design science research process was followed and semi-structured interviews performed. Findings: A list of practices to assist the bank industry in GDPR implementation is provided. How each practice map with assessed ISF and GDPR requirements is also presented. Research limitations/implications: As GDPR is a relatively recent subject, it is hard to find experts in the area. It is more difficult if the authors intend to find experienced people in the GDPR and bank industry. That is one of the main reasons this study does not include more interviews. Originality/value: This research provides a novel artefact to the body of knowledge. The proposed artefact lists which ISF practices banks should implement to comply with GDPR. By doing it the artefact provides a centralized view about which ISF frameworks (or part of them) could be implemented to help banks comply with GDPR.
ER -