Security and Privacy in Companies: State-of-the-art and Qualitative Analysis

Author

Krumay, Barbara ; Oetzel, Marie Caroline

Author_Institution

Inst. for New Media, Vienna Univ. of Econ. & Bus., Vienna, Austria

fYear

2011

fDate

22-26 Aug. 2011

Firstpage

313

Lastpage

320

Abstract

Privacy and security are relevant topics in both -- research and practice. Although they are often used together, implicitly assuming that they represent the same concept, they actually represent different concepts that are closely related. First, this paper presents a way to differentiate between these two topics from a conceptual point of view. Furthermore, it depicts some commonly accepted privacy regulations that exist in the OECD, EU and US. Second, we show how privacy and security are defined and implemented in practice, based on three interviews, conducted in different Austrian companies. The interviews picture the specific situation in the companies. Similarities and differences between the three interviews as well as between the interviews as a whole and the conceptual considerations were found and are described. To explain the maturity of these companies in terms of their understanding of privacy and security, we analyzed and visualized the interviews.

Keywords

data privacy; security of data; EU; OECD; US; privacy regulation; qualitative Analysis; security; Companies; Data privacy; Guidelines; Information security; Interviews; Privacy; Certification; Guidelines; Privacy; Security; Standards;

fLanguage

English

Publisher

ieee

Conference_Titel

Availability, Reliability and Security (ARES), 2011 Sixth International Conference on

Conference_Location

Vienna

Print_ISBN

978-1-4577-0979-1

Electronic_ISBN

978-0-7695-4485-4

Type

conf

DOI

10.1109/ARES.2011.53

Filename

6045956