Handling data in a legally compliant manner is a major challenge for companies with complex IT landscapes. The violation of data protection acts poses legal and financial risks, particularly due to the turnover-dependent fines, which are provided for in the new European General Data Protection Regulation. Ensuring the compliance with data protection acts in enterprise software systems is currently a time-consuming and costly task with a very low level of automation. In this contribution, we present an approach for the consistent documentation, enforcement and monitoring of data protection requirements in enterprise software systems. For that, we propose a methodology, which links organizational processes and technical components to integrate the management of data protection rules with company-wide IT-management.
%0 Journal Article
%1 Anke2016
%A Anke, Jürgen
%A Berning, Wilhelm
%A Schmidt, Johannes
%A Zinke, Christian
%D 2016
%J HMD Praxis der Wirtschaftsinformatik
%K myown
%P 1--17
%R 10.1365/s40702-016-0283-0
%T IT-gestützte Methodik zum Managment von Datenschutzanforderungen
%U http://rdcu.be/CV9e
%X Handling data in a legally compliant manner is a major challenge for companies with complex IT landscapes. The violation of data protection acts poses legal and financial risks, particularly due to the turnover-dependent fines, which are provided for in the new European General Data Protection Regulation. Ensuring the compliance with data protection acts in enterprise software systems is currently a time-consuming and costly task with a very low level of automation. In this contribution, we present an approach for the consistent documentation, enforcement and monitoring of data protection requirements in enterprise software systems. For that, we propose a methodology, which links organizational processes and technical components to integrate the management of data protection rules with company-wide IT-management.
@article{Anke2016,
abstract = {Handling data in a legally compliant manner is a major challenge for companies with complex IT landscapes. The violation of data protection acts poses legal and financial risks, particularly due to the turnover-dependent fines, which are provided for in the new European General Data Protection Regulation. Ensuring the compliance with data protection acts in enterprise software systems is currently a time-consuming and costly task with a very low level of automation. In this contribution, we present an approach for the consistent documentation, enforcement and monitoring of data protection requirements in enterprise software systems. For that, we propose a methodology, which links organizational processes and technical components to integrate the management of data protection rules with company-wide IT-management.},
added-at = {2016-12-22T13:45:26.000+0100},
author = {Anke, J{\"u}rgen and Berning, Wilhelm and Schmidt, Johannes and Zinke, Christian},
biburl = {https://www.bibsonomy.org/bibtex/22e0c63fc5b89c11b49e901852fd9197d/schmidtleipzig},
doi = {10.1365/s40702-016-0283-0},
interhash = {632b6cbe5be4368ed6f02cc0747f9856},
intrahash = {2e0c63fc5b89c11b49e901852fd9197d},
issn = {2198-2775},
journal = {HMD Praxis der Wirtschaftsinformatik},
keywords = {myown},
note = {Open Acces Version verfügbar unter \url{http://rdcu.be/n2LX}},
pages = {1--17},
timestamp = {2018-01-02T13:27:40.000+0100},
title = {IT-gestützte Methodik zum Managment von Datenschutzanforderungen},
url = {http://rdcu.be/CV9e},
year = 2016
}