Contribution of Privacy by Design (of the Processes)
Privacy by design (PbD) will soon be a compulsory requirement for firms processing personal data. The GDPR (General Data Protection Regulation), a new Act in the EU establishes compulsory fulfillment for firms located in the European Union from May 2018. By considering that PbD philosophy leads to protect personal data, it is proposed to start the protection from the design of business activities. Privacy from the business process management perspective has barely been studied. In this paper a group of organizational mechanisms oriented to implement protection measures based on privacy by design are provided. Based on the analysis of 18 surveys done to privacy by design and data security experts, some recommendations are offered. They are based in the analysis of strengths, weakness, opportunities and threads envisioned by the different experts.
The authors must be able to transfer to Harvard Deusto Business Research the rights to publish the articles. It is the responsibility of the authors to obtain the necessary permissions for the images that are covered by copyright.
Authors conserve the copyright to their own works. Contributions to Publicaciones Harvard Deusto Business Research are covered by a CC-BY (Creative Commons Attribution 4.0 International Public License) license, which grants open access rights to society. Specifically, the CC-BY license permits any type of use, distribution and changes based on the article, as long as the author and original source are properly acknowledged.