Data security compliance - An application-oriented solution for small businesses
| dc.contributor.author | Asprion, Petra | |
| dc.contributor.author | Tschan, Tanja | |
| dc.contributor.author | Käppler, Sherdel | |
| dc.contributor.editor | Corradini, Flavio | |
| dc.contributor.editor | Hinkelmann, Knut | |
| dc.contributor.editor | Smuts, Hanlie | |
| dc.contributor.editor | Re, Barbara | |
| dc.date.accessioned | 2026-06-04T11:50:34Z | |
| dc.date.issued | 2026 | |
| dc.description.abstract | In the last decade, compliance management and data security have become increasingly critical for businesses, driven by evolving regulations. Small companies, in particular, face challenges in navigating complex regulatory landscapes and implementing effective data security compliance processes or even better sufficient management systems. To address this problem, this research developed an application-oriented solution, the “Action Plan for Data Security Compliance” (Act4DSC), a structured, evidence-based and easy-to-use tool designed to guide small businesses through the initial steps of data security compliance. Utilizing design science methodology, Act4DSC integrates the NIST Cybersecurity Framework 2.0 as its foundational structure with practitioner insights from several qualitative expert interviews. The Act4DSC offers a step-by-step approach, including regulatory alignment, stakeholder considerations, prioritization, data criticality classification, and gap analysis. Expert evaluations confirm its usability, adaptability, and structured guidance, making data security compliance more accessible for smaller businesses. Act4DSC fills a critical gap by tailoring compliance solutions for smaller businesses, bridging the divide between theoretical frameworks and practical implementations. | |
| dc.event | 5th International Conference Society 5.0 2025 | |
| dc.event.end | 2025-06-27 | |
| dc.event.start | 2025-06-25 | |
| dc.identifier.doi | 10.1007/978-3-032-15463-7_2 | |
| dc.identifier.isbn | 978-3-032-15462-0 | |
| dc.identifier.isbn | 978-3-032-15463-7 | |
| dc.identifier.uri | https://irf.fhnw.ch/handle/11645/56955 | |
| dc.language.iso | en | |
| dc.publisher | Springer | |
| dc.relation.ispartof | Society 5.0. 5th International Conference Society 5.0 2025, San Benedetto Del Tronto, Italy, June 25–27, 2025, Revised Selected Papers | |
| dc.relation.ispartofseries | Communications in Computer and Information Science (CCIS) | |
| dc.rights.uri | ||
| dc.spatial | San Benedetto Del Tronto | |
| dc.subject.ddc | 005 - Computer Programmierung, Programme und Daten | |
| dc.subject.ddc | 658 - General Management | |
| dc.title | Data security compliance - An application-oriented solution for small businesses | |
| dc.type | 04B - Beitrag Konferenzschrift | |
| dspace.entity.type | Publication | |
| fhnw.InventedHere | Yes | |
| fhnw.ReviewType | peer-reviewed | |
| fhnw.affiliation.hochschule | Hochschule für Wirtschaft FHNW | de_CH |
| fhnw.affiliation.institut | Institut für Wirtschaftsinformatik | de_CH |
| fhnw.openAccessCategory | Closed | |
| fhnw.pagination | 13-24 | |
| fhnw.publicationState | Published | |
| fhnw.seriesNumber | 2787 | |
| fhnw.targetcollection | d40e4c67-dd87-4d14-8518-b2f0a855e750 | |
| relation.isAuthorOfPublication | 83ae1379-dcd0-4a88-975e-856efecb5645 | |
| relation.isAuthorOfPublication | d69f614b-06dc-415d-b7a1-a51378459602 | |
| relation.isAuthorOfPublication | 7782d1a8-1e0a-4201-ad66-cc90d894d405 | |
| relation.isAuthorOfPublication.latestForDiscovery | 83ae1379-dcd0-4a88-975e-856efecb5645 | |
| relation.isEditorOfPublication | 6898bec4-c71c-491e-b5f8-2b1cba9cfa00 | |
| relation.isEditorOfPublication.latestForDiscovery | 6898bec4-c71c-491e-b5f8-2b1cba9cfa00 |
Dateien
Lizenzbündel
1 - 1 von 1
Lade...
- Name:
- license.txt
- Größe:
- 2.66 KB
- Format:
- Item-specific license agreed upon to submission
- Beschreibung: