Rozanne Tuesday G. Flores
ABSTRACT
The advancements in technologies have accelerated educational institutions by improving service delivery while reducing costs. As a result, it provided avenues of learning, the use of online discussions, Virtual Learning Environments (VLEs) and mobile technologies, thus making data security vulnerable. With these, it is imperative that through the lens of R.A. 10173 and NPC's five pillars that data be protected by a policy that is sustained and executed effectively. This qualitative research using case study technique aimed to evaluate, explore and explain the level of compliance of Bukidnon State University (BukSU) with RA 10173. Likewise answering the research question how does PSUCs apply and integrate R.A. 10173 with its Information Systems and Business Processes? Using single case holistic design with common rationale, and pattern matching technique in interpreting the tabulated results. It was found out that BukSU, just like most government agencies in the Philippines, is qualitatively described as Partial Compliant. Furthermore, their compliance was due to moral suasion, where BukSU, considers it as its moral obligation to protect the students and its employees' data. An initiative from PASUC, to come up with a Data Privacy Manual that will serve as a model for all PSUC's in drafting their own manual, where BukSU practices can be aligned with that of PASUC. After the September 11, 2017, deadline, BukSU invested in a UTM Unified Threat Management with a three-year license to safeguard university data resources.
- Hassan, K. H. 2011. Personal Data Protection in the Business of Higher Education: Malaysian Law, 10, 53--57.Google Scholar
- Ching, M. R. D., Fabito, B. S., and Celis, N. J. 2017. Data Privacy Act of 2012: A Case Study Approach to Philippine Government Agencies Compliance, Soshum 2017, 1--8.Google Scholar
- McKelvey, N. 2014. Data Protection Issues in Higher Education with Technological Advancements, International Journal of Evaluation and Research in Education (IJERE), 3, 3, 133--141.Google ScholarCross Ref
- Trustwave A. and Institutions, P. E. 2008. Data Security Program for Higher Education.Google Scholar
- Singh, D. and Ramutsheli, M. P. 2016. Student data protection in a South African ODL university context: risks, challenges and lessons from comparative jurisdictions, Distance Educ., 37, 2, 164--179.Google ScholarCross Ref
- Chance, C. 2017. "A QUICK GUIDE TO PHILIPPINE DATA PRIVACY LAW COMPLIANCE," no. August, 1--8.Google Scholar
- European Union Agency for Fundamental Rights and The Council of Europe, 2014. Handbook on European Data Protection Law.Google Scholar
- Congress of the Philippines, 2012. RA 10173: Data Privacy Act of 2012.Google Scholar
- NPC, 2017. NPC Privacy Toolkit A guide for Management and Data Protection Officers.Google Scholar
- Sutinen, J. G. and Kuperan, K. 1999. A socio-economic theory of regulatory compliance, Int. J. Soc. Econ., 26, 1/2/3, 174--193.Google ScholarCross Ref
- Yin, R. K. STUDY Design and Methods.Google Scholar
- Celis, N. J. 2017. Compliance Theory: A Case Study Approach.Google Scholar
- Trochim, W. M. K. Outcome Pattern Matching and Program Theory.pdfGoogle Scholar
- Breton A. and Ronald, W. 1978. "A Theory of 'Moral' Suasion," 8, 4, 210--219.Google Scholar
- Ajzen, I. 1988. From Intentions to Actions, Attitudes, Personality, & Behavior. 112--150.Google Scholar
Index Terms
- Philippine SUCs compliance performance on RA 10173: a case study on Bukidnon State University
Recommendations
Assessing compliance of Philippine state universities to the data privacy act of 2012: the case of Caraga State University
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentThe Philippine Data Privacy Act of 2012 (DPA of 2012) defined the rights of Filipino citizens to data privacy and created the National Privacy Commission to monitor compliance, by both public agencies and private organizations, to the said law to ensure ...
Performance compliance of Philippine national government agency on the data privacy act of 2012: a qualitative case study
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentThe "Data Privacy Act of 2012" also known as the Republic Act No. 10173 of the Philippines aims to safeguard the personal data of its citizens, this gave rise to the creation of the National Privacy Commission (NPC) in 2015 and this agency is tasked to ...
RA 10173 and its challenges to Philippine state universities and colleges' compliance performance: the case of Mindanao State University - General Santos City
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentData privacy has become a major concern in the Philippines owing to the promulgation of Republic Act No. 10173, otherwise known as the Data Privacy Act of 2012, duly enforced by the National Privacy Commission (NPC). This study seeks to determine the ...
Comments