14 results
Search Results
Now showing 1 - 10 of 14
Item Open Access Personal data protection act compliance readiness surveillance tool for organisations(Mahidol University, 2022) Nikhasnee Bin Nik Hassan, 1995 -; Adisorn Leelasantitham; Chanattha ChansutthirangkoolThe Thai Personal Data Protection Act (PDPA) aims to protect Thai individuals' personal information. The PDPA will enter into force in June 2022 for all organisations located in the kingdom of Thailand as well as organisations located outside.... The compliance readiness surveillance tool was created by compiling data from the Thai Personal Data Protection Act B.E. 2562 and synthesizing it into a set of questionnaires. The study's result is a PDPA compliance readiness surveillance tool, which consistsItem Metadata only A data-masking guideline for optimizing insights and privacy under GDPR compliance(Mahidol University. Mahidol University Library and Knowledge Center, 2024) Chitanut Tachepun; Sotarat Thammaboosadee; Taweesak Samanchuen; Chanattha ChansutthirangkoolAfter the General Data Protection Regulation (GDPR) has been enforced it became a disruptive issue to every organization due to its severe penalties. So the protecting data is important to every organization. The data Pseudonymization... and Anonymization are some of the employed techniques to protect and reduce the privacy risks from the data breach as described in Article 32. However, those techniques destroy the pattern of the data, which represents the fact that it could be analyzed or monetizedItem Metadata only Interactive checklist and visualization system for EU general data protection regulation compliance(Mahidol University. Mahidol University Library and Knowledge Center, 2024) Suphakorn Palathai; Sotarat Thammaboosadee; Chanattha ChansutthirangkoolThe General Data Protection Regulation (GDPR) is a new regulation framework in European Union (EU) and European Economic Area (EEA) for data protection law. The GDPR was approved by the European Commission (EC) on 27 April 2016 and announced as a..."General Data Protection Regulation" หรือเรียกด้วยตัวอักษาย่อว่า GDPR เป็นกฎหมายของสหภาพยุโรปว่าด้วยมาตรการการคุ้มครองข้อมูลส่วนบุคคล ซึ่งได้ประกาศบังคับใช้เมื่อวันที่ 25 พฤษภาคม พ.ศ. 2561 โดยผ่านการรับรองจากสหภาพยุโรป ณ วันที่ 27 เมษายน พ.ศ. 2560Item Open Access A relationship discovery in legal basis processing and fines : a case study in EU data protection law violations(Mahidol University, 2023) Lertchon Tanasugarn; Sotarat Thammaboosadee; Rojjalak ChuckpaiwongSince PDPA had just been enforced in Thailand, the implementation guideline regarding fine estimates has yet to be issued with a clear rationale for applying for fee enforcement in different conditions. The General Data Protection Regulation (GDPRItem Open Access What Thai people get from personal data protection law : comparable analysis with GDPR standards of the European union(Mahidol University, 2021) Prakiat Nasimma; Supaporn Kiattisin; Adisorn Leelasantitham4Nowadays, the trend of the infringement of personal information is increasing continuously, thus causing damage to the economy and societal networks all over the world. General Data Protection Regulation (GDPR) is mandatorily applicable to all... countries that are trading partners with the European Union. Therefore, Ministry of Digital Economy and Society has recently enacted Privacy Protection Act BE 2562. According to obstacles to the business sector, many gaps existing the draft bill neededItem Metadata only Identification of international soft skills standard for data steward team(Mahidol University, 2023) Wichai Kiatdamkerng; Rojjalak Chuckpaiwong; Sotarat ThammaboosadeeNowadays, data plays an important role in business operations, and there is a trend to use data to generate more business, causing many organizations to focus on data as if it were an organization's valuable asset with customer behavior for use in product design. Data also contributes to decision-making and creates competitive business advantages, and when data is crucial, data governance is important as well, and an indispensable component of data governance is the data steward team. A data steward team must possess both technical and soft skills to be effective in data governance. This research aims to identify and design important soft skills for the data steward team, beginning with the scope of work and role and responsibilities of the data steward team at each maturity level, to identify the soft skills required for work and conduct in-depth interviews with data-related work experts. Based on the interview results, it was determined that the data steward team requires five essential skills for data governance work: 1) relationships, 2) ability and willingness to learn, 3) conceptual thinking, 4) time management, and 5) team leadership. Implication of the thematic paper: This research work can increase the efficiency of the data governance tasks of the data steward team. The organization can use the results of the research to develop a training plan for the data steward team's staff in the organization. In addition, it can also be defined as the skills needed to recruit new employees who will join the organization's data steward team to ensure that they have these skills and work in collaboration with the technical skills that the data steward team has and increase the efficiency of data governance in the organization according to the objectives that the organization has set.Item Metadata only The study and design of a data-governance-based data usage service level agreement trust model for cloud computing platform : a case study of an export manufacturing company(Mahidol University. Mahidol University Library and Knowledge Center, 2024) Wastanont Leungsireekoon; Sotarat Thammaboosadee; Chanattha Chansutthirangkoolmanagement and personal data protection. In addition, the weight of each parameter obtained from opinions with experts was involved in an export manufacturing company. The examples of implementation case studies from designed model, that results of trustItem Metadata only Risk assessments of disclosed individual data on Facebook in Thai generations(Mahidol University. Mahidol University Library and Knowledge Center, 2024) Phatcharaporn Thiensawat; Chanattha Chansutthirangkool; Adisorn LeelasantithamNowadays, people use social media as part of their daily life. They are used to share the users' interests and their stories to their acquaintances, friends and family. Users often include sensitive personal information on their profiles. Many people are not concerned about their information which the make available online. They are creating trails and digital footprints on the internet which could be used to track them. This research aims to assess risk of disclosed individual data on Facebook in Generation Baby Boomers, generation X, Y and Z in Thailand and identify potential threat events of Facebook digital footprint. Data of 200 Facebook users from all the four generations in Thailand who shared their profile and timeline posts to public were collected from July - September 2018. Measurement rates given by 8 security experts on the questionnaire for likelihood and impact assessment scale, generation risk weight and impact level of the data were used to identify risk in the collected data shared by the selected users. The results of this research show that generation z has the highest risk level result of left digital footprints trace, followed by generation y and boomers. Generation x has the lowest level of risk. The knowledge and experience of using technology have effect on privacy settings on Facebook. Daily life style, social, education and work environment of Facebook user affect the level of risk of each generation in sharing information or leaving digital footprints trace.Item Open Access An operating model design for healthcare agile non-invasive data governance : organizational direction and departmental nursing operation approaches(Mahidol University, 2021) Tiwaporn Innun; Sotarat Thammaboosadee; Theeraya Mayakul; Smitti Darakorn Na AyuthayaThe competition for data on health organizations today is intense and leads to the essential of data management for policy planning. Just the traditional data management may not be enough. Data management within the organization must be fast and accurate to meet the increasing demands of service recipients. Organizations must be open to other ideas and theories to develop an effective data management system. Data Governance is defined as general data management practices and redundant data structures, and it sets direction and controls to ensure policy compliance rules and regulations. However, this is not enough for organizations with large amounts of data and complex structures that focus on people and their interactions according to the Agile concept. It leads to assigning the design and decision-making team to reduce the time in the approval process by focusing on close and continuous communication on the progress of the team's work, and data can be embedded in analytics pools to accelerate data analysis cycles. It is a repeat of the process until the result is fast, flexible, and reducing duplication of roles and duties of team members. Threats in the original roles and responsibilities consider the concept of Non-Invasive Data Governance to define roles and responsibilities without being aggressive in the essential functions to support the business of the organization in operation. This research proposes an operating model, the Agile Non-Invasive Data Governance operating model, which aims to formally assign roles and responsibilities to working groups with specific expertise. The resulting streamlined workflow benefit from various solutions in planning strategies for further healthcare services. The Faculty of Medicine in Thailand was selected as a case study. It emphasizes the roles and responsibilities throughout the organization and shows the more explicit implementation process of the prototype. The implementation and evaluation are divided into two levels: organizational level and operational level. The resulting RASCI matrix for policy establishment process is evaluated by an in-depth interview at the organizational level. The operational level assessment makes the function of the concept clearly visible by a role-playing representation of data operations. A questionnaire of role-playing roles assesses the model in terms of agility, connectivity, and redundancy, reducing roles and process responsibilities. The highest level of overall satisfaction is 4.65 out of 5-score rating scale. After comparative results with existing frameworks or studies, the researchers found that this prototype design is complete, coverage in both roles and responsibilities of each level according to the organizational structure. It can simplify streamline work processes and lead to analytics to connect with valuable, accurate, and transparent targeted outcomes for organizations. Implication of the Thesis: The research has adopted the concept of Agile Non-Invasive Data Governance in developing a model of operations under the Faculty of Medicine in Thailand to guide the organization's implementation.Item Open Access Impacts of electric vehicle charging on electrical systems and protection policies for Thailand(Mahidol University, 2022) Pramote Jaruwatanachai; Taweesak Samanchuen; Supaporn KiattisinThis work aims to understand EV charging profiles to determine the maximum demand required on the electricity distribution system. The simulation models are created for the residential sector power user with a various number of chargers and EV charging scenarios. The maximum demand prediction related to the increasing penetration of EV users is used to mitigate the impact of peak demand consumption. A thorough literature review on the EV charging technology, battery capacity, charging scenarios, and EV load impact are presented, followed by a proposed method for assessing the impact of EV Charging loads by visualization. The approach allows one to simulate load profiles and to find the number of chargers needed to meet the demand of EV user charging, such as state of charge (SOC), arrival time, charging time, rate of charge, and maximum charging power. The controlling EV charging with time of use (TOU) price is proposed to address the demand response, encouraging EV owners to charge their vehicles during off-peak hours to avoid hitting higher demands. Load profile simulation results show effects on variations of each charging condition. By using the existing TOU price policy, PEA will be able to absorb an increase in 20% of EV users. Meanwhile, the alternative TOU price policy will be able to absorb at 30% penetration level. This research attempts to understand the implications of new loads that may arise from the adoption of EVs. This may be important for behavior management and planning for the generation and distribution of PEA electrical systems for residential consumers. By simulating the increasing power demand in the electrical system, effective policies to manage and reduce the impact that will occur on the electrical system in the future will be developed.