Erwin Carlo Gonzales
ABSTRACT
The "Data Privacy Act of 2012" also known as the Republic Act No. 10173 of the Philippines aims to safeguard the personal data of its citizens, this gave rise to the creation of the National Privacy Commission (NPC) in 2015 and this agency is tasked to oversee and enforce the DPA of 2012. This case study aims to explore and understand the underpinning reasons on how the Department of Health (DOH) will comply with RA 10173 and to identify the challenges and determinants to success of the DOH relative to compliance. The research will implore (Yin, 2014) case study method that uses single case holistic design with common rationale and pattern matching for its analytics. This study uses the e-Commerce Act as the moderating variable with DPA 2012 and the determinants of compliance are deterrence, legitimacy and moral obligation. Also, the challenges that were identified in the research were the lack of awareness, budget priorities, and human capital capacity.
- Moghaddasi, H., Sajjadi, S., and Kamkarhaghighi, M. 2016. Reasons in Support of Data Security and Data Security Management as Two Independent Concepts:A New Model. Open Med. Inform. J., 10, 4--10.Google Scholar
Cross Ref
- Liboro, R. E., Patdu, I. D., and Mapa, D. D. O. 2012. Implementing Rules and Regulations of Republic Act No. 10173 | Official Gazette of the Republic of the Philippines, http://www.officialgazette.gov.ph/.Google Scholar
- ROSELL-UBIAL, P. J. B. 2016. DOH FOI MANUAL.Google Scholar
- Bulgurcu, B., Cavusoglu, H, and Izak Benbasat. 2010. Information Security Policy Compliance An Empirical Study Of Rationality Based Beliefs And Information Security Awareness, MIS Q., 34, 3, 523--548. Google ScholarDigital Library
- Sutinen J. G. and Kuperan, K. 1999. A socio-economic theory of regulatory compliance, Int. J. Soc. Econ., 26, 1/2/3, 174--193.Google ScholarCross Ref
- Hong, K., Chi, Y., Chao, L. R., and Tang, J. 2003. An integrated system theory of information security management, Inf. Manag. Comput. Secur., 11, 5, 243--248.Google ScholarCross Ref
- Congress of the Philippines. 2000. Republic Act No . 8792 AN ACT PROVIDTNG FOR THE RECOGNITION AND USE OF ELECTRONIC. 1--17.Google Scholar
- Celis, N. J. 2018. Compliance Theory: A Case Study Approach in Understanding Organizational Commitment, DLSU Bus. Econ. Rev., 27, 2, 88--118.Google Scholar
- Angara, E. 2012. Republic Act No. 10175 | Official Gazette of the Republic of the Philippines, http://www.officialgazette.gov.ph/.Google Scholar
- Cohen, A. 2000. School for Hackers - TIME, Time Magazine.Google Scholar
- Yin, R. 2011. Case Study Research Design and Methods.Google Scholar
- Chan, M., Woon, I., and Kankanhalli, A. 2005. Perceptions of Information Security at the Workplace: Linking Information Security Climate to Compliant Behavior Mark Chan National University of Singapore Irene Woon School of Computing , National University of Singapore Atreyi Kankanhalli School of Com, J. Inf. Priv. Secur., 1, 3, 18--41.Google ScholarCross Ref
- Daft, R. L. 1983. Learning the Craft of Organizational Research., Acad. Manag. Rev., 8, 4, 539--546.Google ScholarCross Ref
- Yin R. K. and Darnella, D. 2006. THE CASE OF EVALUATING COMPREHENSIVE REFORMS Draft Manuscript prepared for New Directions in Evaluation Forthcoming Volume: Informing Federal Policies for Evaluation Methodology: Building the evidence base for method choice in government sponsored evaluat.Google Scholar
- Philliber, G. S., Schwab, M. R., and Samsloss, G. 1980. Social research: Guides to a decision-making process, no. January 1980.Google Scholar
- Celis, N. J. 2017. Compliance Theory: A Case Study Approach.Google Scholar
- Trochim, W. 1989. Outcome Pattern Matching and Program Theory.pdf, Eval. Program Plann., 12, 355--366.Google ScholarCross Ref
- Ching, M. R. D., Fabito, B. S., and Celis, N. J. 2017. Data Privacy Act of 2012: A Case Study Approach to Philippine Government Agencies Compliance, Soshum 2017.Google Scholar
Index Terms
- Performance compliance of Philippine national government agency on the data privacy act of 2012: a qualitative case study
Recommendations
Commitment on data privacy towards e-governance: The case of local government units
ICEGOV '19: Proceedings of the 12th International Conference on Theory and Practice of Electronic GovernanceThe proliferation of ICT in the government sector is a crucial tactic in achieving different dimensions of public trust and services, especially that government offices and local government units (LGUs) are gearing toward e-governance as a way to manage ...
Assessing compliance of Philippine state universities to the data privacy act of 2012: the case of Caraga State University
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentThe Philippine Data Privacy Act of 2012 (DPA of 2012) defined the rights of Filipino citizens to data privacy and created the National Privacy Commission to monitor compliance, by both public agencies and private organizations, to the said law to ensure ...
Data privacy act of 2012 compliance performance of Philippine government agencies: a case study approach
ICEEG '18: Proceedings of the 2nd International Conference on E-commerce, E-Business and E-GovernmentAfter three months of the initial deadline of the National Privacy Commission (NPC), it is vital to know the status of compliance of the Commission on Higher Education (CHED) and Commission on Elections (COMELEC), especially with the data breached that ...
Comments