Search results

The purpose of this paper is to explore the relationship between the acquisition of an ISO 9000 certification and the overall financial performance of the certified firms. More specifically, the study proposes a multidimensional conceptual framework, including “customers’ demand”, “ISO adoption”, “operation efficiency”, “market efficiency” and “overall financial performance”. Such a multidimensional approach has randomly been explored in the existing literature, making the examination of the proposed conceptual framework an interesting research topic.

The proposed conceptual framework was tested on a sample of Greek ISO 9000-certified companies of various economic sectors. Quality managers were used as key respondents. The final sample consisted of 168 companies. The reliability and the validity of the questionnaire were thoroughly examined. Empirical data were analyzed using the structural equation modelling technique. The findings are based on the 2000 version of the ISO series, which is generally accepted and has widespread use, as it has eliminated most of the disadvantages of the 1994 version. The present study is empirical (it is based on primary data), explanatory (examines cause and effect relationships), deductive (tests research hypotheses) and quantitative (includes the analysis of quantitative data collected with the use of a structured questionnaire).

The findings of the study provide strong evidence that ISO 9000 implementation is highly associated with improvements in overall financial performance. Moreover, it was found that ISO implementation is directly associated with significant improvements in quality awareness, operations execution, market share, customer satisfaction and sales revenue. Finally, customers’ demand was not found to be the most important motivation for implementing an ISO certification. Rather, it seems that companies seek for quality improvement due to internal motives.

A limitation stemming from the implemented methodology is the use of self-report scales to measure the constructs of the proposed model. Moreover, the present paper lacks a longitudinal approach, since it is cross-sectional and provides a static picture of ISO implementation.

The paper makes an analytical effort in order to point out areas that companies should emphasize in order to successfully implement ISO 9000 and, therefore, harvest its potential benefits. Certain practical implications are offered in the final part of the paper.

The paper proposes an enhanced conceptual framework that examines vital issues concerning the successful implementation of ISO 9000, thus, providing valuable outcomes for decision makers and academics. Moreover, the results of the study may be generalized in other developed countries whose economy faces similar significant challenges as Greece.

This study explores the link between ISO 9001 certification, personal data protection and firm performance using financial balance sheet and survey data. The security aspect of data protection is analyzed based on the major requirements of the General Data Protection Regulation and mapped to the relevant controls of the ISO/IEC 27001/27002 standards.

The research analysis is based on 96 ISO 9001–certified and non-certified publicly traded manufacturing and service firms that responded to a structured questionnaire. The authors develop and empirically test their theoretical model using the structural equation modeling technique and follow a difference-in-differences econometric modeling approach to estimate financial performance differences between certified and non-certified firms accounting for the level of data protection.

The estimates indicate three core dimensions in the areas of “policies, procedures and responsibilities,” “access control management” and “risk-reduction techniques” as desirable components in establishing the concept of data security. The estimates also suggest that the data protection level has significantly impacted the performance of certified firms relative to the non-certified. Controlling for the effect of industry-level factors reveals a positive relationship between data security and high-technological intensity.

The results imply that improving the level of compliance to data protection enhances the link between certification and firm performance.

This study fills a gap in the literature by empirically testing the influence of data protection on the relationship between quality certification and firm performance.