Search results

The digital paradigm people live in today, which drastically increased the consumption of data, is a threat to their privacy. To create a high level of privacy protection for its citizens, the European Union proposed the General Data Protection Regulation (GDPR), which introduces obligations for organizations regarding the storing, processing, collecting and disclosing of data. This paper aims to identify the critical success factors of GDPR implementation.

A systematic literature review was conducted by following a strict review protocol, where 32 documents were found relevant to perform the review and to answer to the proposed research questions.

The critical success factors of GDPR implementation were identified, including barriers and enablers. Furthermore, benefits of complying with GDPR were identified.

As GDPR is a relatively recent subject, there are still few scientific papers about it. Therefore, the authors were unable to neither identify nor present a robust conclusion regarding specific topics, such as practical outcomes.

On the basis of the literature, the identified critical success factors may be useful for organizations as these can be better prepared to achieve compliance by prioritizing the enablers and avoiding the barriers.

Data can nowadays be seen as the main asset of organizations and data leaks have a considerable impact on the organization’s image, revenues and possible consequences to the affected clients. One of the most critical industries is the bank. Information security frameworks (ISF) have been created to assist organizations and other frameworks evolved to update these domain practices. Recently, the European Union decided to create the general data protection regulation (GDPR), applicable to all organizations dealing with personal data of citizens residing in the European Union. Although considered a general regulation, GDPR implementation needs to align with some industries’ laws and policies. Especially in the Bank industry. How these ISF can assist the implementation of GDPR is not clear.

The design science research process was followed and semi-structured interviews performed.

A list of practices to assist the bank industry in GDPR implementation is provided. How each practice map with assessed ISF and GDPR requirements is also presented.

As GDPR is a relatively recent subject, it is hard to find experts in the area. It is more difficult if the authors intend to find experienced people in the GDPR and bank industry. That is one of the main reasons this study does not include more interviews.

This research provides a novel artefact to the body of knowledge. The proposed artefact lists which ISF practices banks should implement to comply with GDPR. By doing it the artefact provides a centralized view about which ISF frameworks (or part of them) could be implemented to help banks comply with GDPR.

The purpose of this paper is to obtain a list of recommendations addressed by the information technology (IT) governance enablers in relation to IoT implementation. The reason behind this it is the lack of information about these instances which could the organizations to be more effective when implementing IoT.

The objectives will be obtained using the methodology – systematic literature review.

During the research, a list of recommendations was created on each IT governance enabler in relation to IoT implementation, showing the flaws that exist at the literature level for each enabler.

The state of art of this research is a creation of a list of recommendations according to IT governance enablers to be applied on an IoT implementation.

The purpose of this paper is to ease the ISO 31000 standard understanding and provide mechanisms that allow organizations to adopt and adapt this standard to their reality.

The research methodology adopted in this research was the design science research methodology.

Key finding is that enterprise architecture (EA) models and EA tools can help reduce the complexity of the ISO 31000 standard and improve the communication between stakeholders.

The research proposal serves the purpose of supporting the evidence collection for an enterprise risk management (ERM) initiative in an as-was, as-is, or to-be perspective.

Traditional ERM efforts operate on silos, limiting the sharing of risk information and the achievement of an organization-wide view of risks. EA can provide a common way to model complex business systems, from the strategic level to implementation details. This paper proposes the use of an EA model and an EA tool (Atlas) to represent ISO 31000, allowing a better understanding on the value of assets that can be affected from the manifestation of some risks over time.

Presents over sixty abstracts summarising the 1999 Employment Research Unit annual conference held at the University of Cardiff. Explores the multiple impacts of globalization on work and employment in contemporary organizations. Covers the human resource management implications of organizational responses to globalization. Examines the theoretical, methodological, empirical and comparative issues pertaining to competitiveness and the management of human resources, the impact of organisational strategies and international production on the workplace, the organization of labour markets, human resource development, cultural change in organisations, trade union responses, and trans‐national corporations. Cites many case studies showing how globalization has brought a lot of opportunities together with much change both to the employee and the employer. Considers the threats to existing cultures, structures and systems.

Environmental threats of immediate risk in areas such as coastal zones (CZ) have aroused new trends of citizenship and participatory democracy. The purpose of this paper is to analyse elements within those trends, such as environmental culture, socio‐political context, dynamics of social associative movement and integration of local knowledge. It also aims to contribute to an overview of the opportunities and barriers found in considering socio‐cultural and educational challenges in CZ.

In this analysis, case studies of integrated coastal management occurring worldwide were selected and reviewed, considering several nuances of socio‐economic and political contexts of CZ. Experiences of public response to coastal catastrophes such the Prestige oil spill in Spain, are also described.

Whether implementing sustainable coastal management through either balanced systems (between large and small‐scale strategies) or through largely bottom‐up approaches, participation is detected as one of the main factors for a successful integrated approach. Principles such as participatory governance and social justice should be adopted in initial phases of sustainable management processes and preferably involve all of the implied actors of CZ.

The literature reviewed highlighted specific factors that have empirically contributed to participatory sustainability of CZ, integrating three dimensions of citizenship: education, society's dynamics and culture.

The purpose of this paper is to analyse if capital structure decisions of small- and medium-sized Portuguese firms are in accordance with the predictions of dynamic trade-off theory, more precisely, the speed of adjustment of short-term debt (STD) and long-term debt (LTD) towards the respective target debt ratios.

Based on two samples of Portuguese firms, 1,377 small-sized firms and 811 medium-sized firms, dynamic estimators were used for the treatment of data obtained from the Amadeus database for the period 2007-2011.

The results indicate that small- and medium-sized firms adjust their STD and LTD ratios towards the respective target ratios. Small- and medium-sized firms present a high-speed adjustment towards the target STD ratio, suggesting that both types of firm face costs of deviating from the target capital structure, which are, probably, greater than the costs of adjustment associated with STD. However, considering the distance from the target ratio as a determinant of the adjustment speed, the results show the predominance of the negative effect of the costs of adjustment on capital structure adjustment speeds.

The results obtained for the speed of adjustment of STD and LTD, in a recession context, show that for small firms and medium-sized firms, mainly for the former, the costs of external market transactions are prohibitively high, slowing the speed of adjustment towards the target capital structure.

The behavioural theory adds a new paradigm of analysis with the assumptions of the decision maker’s cognitive biases and their repercussions on financing decisions. The aim of the study is to analyse the repercussions of these biases on the adjustment speed of firm’s capital structure toward the optimal level.

Based on a partial adjustment model, the study uses the Dynamic Panel Fractional estimator to analyse panel data from 4,990 Portuguese entrepreneurial firms.

The results show that the cognitive overconfidence bias impacts the entrepreneurial firm’s capital structure. In fact, the firms run by overconfident managers adjust more slowly than their counterparts. Furthermore, the findings suggest that entrepreneurial firms make relatively fast adjustments toward the optimal debt level and follow a hierarchical financing order in the funding process.

The results of this paper are not only interesting to the academia, but also contain practical implications for corporate, institutional and business policy and governance. First, the paper introduces a new measure of cognitive bias in optimistic managers, which is useful for current and future academic research. Also, in practical terms, the findings of the paper reveal that when a company is contemplating hiring a manager, it should consider whether they need an optimistic or non-optimistic manager based on the company's present life cycle or situation.

The current analysis extends the existing literature. The study suggests that financial classical and behavioural paradigms should not be separated, which can provide evidence to help narrow the gap between these two major perspectives.

Despite the importance of post-implementation activities to support the success of an enterprise resource planning (ERP) system, there has been a lack of research into the factors that influences post-implementation success. Accordingly, this paper aims to present a case study on a public service organization operating in an emerging market economy, namely, the United Arab Emirates in the ERP post-implementation phase to understand the internal forces within the organization that influences ERP system success.

A qualitative method using focus group discussions (FGDs) was conducted based upon IT data from the firm and interviews with IT staff, business users and executive management to identify system users’ perceptions in post ERP.

The authors posit that the internal organizational forces of ongoing support, system user interactions and stakeholder views significantly affect post-implementation capabilities and user satisfaction.

IT professionals and stakeholders believe that identification of the factors determining post-implementation ERP capabilities and user satisfaction should not be limited to specific practices.

This study provides insights that can assist CIOs and ERP professionals in the service industry to examine the extent of obstructions to post-implementation capabilities that will impact system user satisfaction.

Use of FGDs to explore the impact of ERP capabilities upon system user satisfaction in the service sector. The study is one of the first that utilizes Technological frames of reference (TFR) theory in studying ERP post-implementation.