Adaptable GDPR Assessment Tool for Micro and Small Enterprises

Emanuel Löffler; Bettina Schneider; Andreas Goerre; Petra Asprion

doi:10.5220/0011014200003179

Adaptable GDPR Assessment Tool for Micro and Small Enterprises

Emanuel Löffler, Bettina Schneider, Andreas Goerre, Petra Asprion

2022

Abstract

The coming into force of the European General Data Protection Regulation (GDPR) has profoundly changed the data protection landscape. Irrespective of their size, organisations inside and outside of Europe are challenged to comply with the requirements posed by the GDPR. Especially micro and small enterprises (MSEs) lack the required internal resources and knowledge to understand the regulation and its implications. In our study, a simplified self-assessment tool dedicated to the situation of MSEs is designed to act as an amplifier for the data protection maturity of this target group. Our research is embedded into the H2020 EU project GEIGER that aims to leverage cybersecurity and data protection of MSEs in Europe. Building upon Hevner’s design science research, our study results in an open source, easy-to-adapt GDPR self-assessment web application targeted to the broad, but so-far rather neglected user group of MSEs. Our privacy-by-design and mobile-first approach ensures the trustworthy handling of user data while focusing on usability.

Download

Paper Citation

in Harvard Style

Löffler E., Schneider B., Goerre A. and Asprion P. (2022). Adaptable GDPR Assessment Tool for Micro and Small Enterprises. In Proceedings of the 24th International Conference on Enterprise Information Systems - Volume 1: ICEIS, ISBN 978-989-758-569-2, pages 301-308. DOI: 10.5220/0011014200003179

in Bibtex Style

@conference{iceis22,
author={Emanuel Löffler and Bettina Schneider and Andreas Goerre and Petra Asprion},
title={Adaptable GDPR Assessment Tool for Micro and Small Enterprises},
booktitle={Proceedings of the 24th International Conference on Enterprise Information Systems - Volume 1: ICEIS,},
year={2022},
pages={301-308},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011014200003179},
isbn={978-989-758-569-2},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 24th International Conference on Enterprise Information Systems - Volume 1: ICEIS,
TI - Adaptable GDPR Assessment Tool for Micro and Small Enterprises
SN - 978-989-758-569-2
AU - Löffler E.
AU - Schneider B.
AU - Goerre A.
AU - Asprion P.
PY - 2022
SP - 301
EP - 308
DO - 10.5220/0011014200003179