A Conceptual Framework for Assessing Risks for Data Protection Impact Assessment Process in Maritime Industries
Issued Date
2022-01-01
Resource Type
ISSN
21573611
eISSN
2157362X
Scopus ID
2-s2.0-85146359174
Journal Title
IEEE International Conference on Industrial Engineering and Engineering Management
Volume
2022-December
Start Page
1083
End Page
1087
Rights Holder(s)
SCOPUS
Bibliographic Citation
IEEE International Conference on Industrial Engineering and Engineering Management Vol.2022-December (2022) , 1083-1087
Suggested Citation
Yungratog S., Goerlandt F., Punurai W., Thammaboosadee S. A Conceptual Framework for Assessing Risks for Data Protection Impact Assessment Process in Maritime Industries. IEEE International Conference on Industrial Engineering and Engineering Management Vol.2022-December (2022) , 1083-1087. 1087. doi:10.1109/IEEM55944.2022.9989595 Retrieved from: https://repository.li.mahidol.ac.th/handle/20.500.14594/83984
Title
A Conceptual Framework for Assessing Risks for Data Protection Impact Assessment Process in Maritime Industries
Author(s)
Author's Affiliation
Other Contributor(s)
Abstract
Personal data is used to define customer requirements. Organizations should securely collect and process such data, using data protection policies aligned with the applicable regulations. The General Data Protection Regulation (GDPR), an EU data protection law, has include a data protection assessment method called Data Protection Impact Assessment (DPIA) to ensure personal data security. The maritime industry is also concerned about personal data protection. However, there is a still a lack of practical methods to assess data protection risks. This article aims to introduce the conceptual framework for a new method for risk assessment in maritime systems, using DPIA and various systems-theoretic risk approaches as a conceptual basis. The ICT system is a central system in which personal data is utilized in the architecture of maritime systems. In this article, this system will be taken as a basis for illustrating the newly proposed method for personal data security risk assessment in a DPIA context. The conceptual framework will be further concretized and tested in follow-up research.