ABSTRACT
Data privacy has become a major concern in the Philippines owing to the promulgation of Republic Act No. 10173, otherwise known as the Data Privacy Act of 2012, duly enforced by the National Privacy Commission (NPC). This study seeks to determine the level of compliance of Mindanao State University- General Santos City (MSU-GSC) as well as understand the challenges it encounters in accordance with the Data Privacy Act. Using a qualitative single holistic case study design and pattern matching technique, this paper was able to uncover how and why SUCs can comply with the RA 10173 and can apply such law in their information systems and academic processes. It was found out that MSU-GSC is qualitatively described as partially compliant and it further supports deterrence and legitimacy as its determinants. The moderating effect of compliance with RA 8792 or E-Commerce Act of 2000 also significantly affects its abidance with Data Privacy Act as efforts are continuously directed towards automating university processes and transactions. Moreover, three factors were identified that contributes primarily on the challenges of its compliance namely lack of better understanding, budgetary issues and time constraints. The study contributes to the literature by providing inputs about SUCs' continuing efforts toward compliance with RA 10173. It is suggested NPC to diffuse responsibility to SUCs, so as compliance with data privacy act will weigh down less. Further, it is expected a greater appreciation of the law will fuel enthusiasm to overcome challenges of compliance.
- Bélanger, F. and Crossler, R. E. 2011. Privacy in the Digital Age: A Review of Information Privacy Research in Information Systems, MIS Q., 35, 4, 1017--1041. Google ScholarCross Ref
- Pavlou, P. A. 2011. State of the Information Privacy Literature: Where Are We Now and Where Should We Go?, MIS Q., 35, 4, 977--988. Google ScholarCross Ref
- NPC. 2017. National Privacy Commission Toolkit: A Guide for Management and Data Protection Officers.Google Scholar
- Xu, H., Teo, H.-H., and Tan, B. 2006. Information Privacy in the Digital Era: An Exploratory Research Framework, AMCIS 2006 Proc. Pap. 120, 899--906.Google Scholar
- Singh, D. and Ramutsheli, M. P. 2016. Student data protection in a South African ODL university context: risks, challenges and lessons from comparative jurisdictions, Distance Educ., 37, 2, 164--179.Google ScholarCross Ref
- Ching, M. R. D., Fabito, B. S., and Celis, N. J. 2017. Data Privacy Act of 2012: A Case Study Approach to Philippine Government Agencies Compliance, Soshum 2017, 1--8.Google Scholar
- Yin, R. K. 2014. Case Study Research :, no. November. SAGE Publications Inc.Google Scholar
- Stahl, W. M. and Karger, J. 2016. Student Data Privacy, Digital Learning, and Special Education: Challenges at the Intersection of Policy and Practice, J. Spec. Educ. Leadersh., 29, 2, 79--88.Google Scholar
- Trainor, S. 2015. Student data privacy is cloudy today, clearer tomorrow, Phi Delta Kappan, 96, 5, 13--18.Google ScholarCross Ref
- Cormack, A. 2017. A year to get your act together: how universities and colleges should be preparing for new data regulations," 2017. {Online}. Available: https://www.jisc.ac.uk/blog/a-year-to-get-your-act-together-how-universities-and-colleges-should-be-preparing-for-new-data-regulations. {Accessed: 09-Mar-2018}.Google Scholar
- Ching, M. R. D., Fabito, B. S., and Celis, N. J. 2017. Data Privacy Act of 2012 Compliance Performance of Philippine Government Agencies: A Case Study Approach, 1--8.Google Scholar
- Congress of the Philippines. 2000. Republic Act No. 8792 AN ACT PROVIDING FOR THE RECOGNITION AND USE OF ELECTRONIC, 1--17.Google Scholar
- Sutinen J. G. and Kuperan, K. 1999. A socio-economic theory of regulatory compliance, Int. J. Soc. Econ., 26, 1/2/3, 174--193.Google ScholarCross Ref
- Trochim, W. M. K. 1989. Outcome Pattern Matching and Program Theory, Eval. Program Plann., 12, 355--366.Google ScholarCross Ref
Index Terms
- RA 10173 and its challenges to Philippine state universities and colleges' compliance performance: the case of Mindanao State University - General Santos City
Recommendations
Assessing compliance of Philippine state universities to the data privacy act of 2012: the case of Caraga State University
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentThe Philippine Data Privacy Act of 2012 (DPA of 2012) defined the rights of Filipino citizens to data privacy and created the National Privacy Commission to monitor compliance, by both public agencies and private organizations, to the said law to ensure ...
Performance compliance of Philippine national government agency on the data privacy act of 2012: a qualitative case study
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentThe "Data Privacy Act of 2012" also known as the Republic Act No. 10173 of the Philippines aims to safeguard the personal data of its citizens, this gave rise to the creation of the National Privacy Commission (NPC) in 2015 and this agency is tasked to ...
Philippine SUCs compliance performance on RA 10173: a case study on Bukidnon State University
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentThe advancements in technologies have accelerated educational institutions by improving service delivery while reducing costs. As a result, it provided avenues of learning, the use of online discussions, Virtual Learning Environments (VLEs) and mobile ...
Comments