Contribution of Privacy by Design (of the Processes)

  • Santiago Martín-Romo Romero
  • Carmen De-Pablos-Heredero Rey Juan Carlos University, Madrid
Keywords: privacy by design, personal data, process, security, Swot analysis


Privacy by design (PbD) will soon be a compulsory requirement for firms processing personal data. The GDPR (General Data Protection Regulation), a new Act in the EU establishes compulsory fulfillment for firms located in the European Union from May 2018. By considering that PbD philosophy leads to protect personal data, it is proposed to start the protection from the design of business activities. Privacy from the business process management perspective has barely been studied. In this paper a group of organizational mechanisms oriented to implement protection measures based on privacy by design are provided. Based on the analysis of 18 surveys done to privacy by design and data security experts, some recommendations are offered. They are based in the analysis of strengths, weakness, opportunities and threads envisioned by the different experts.


Download data is not yet available.

Author Biographies

Santiago Martín-Romo Romero

PhD in the Business Administration. Certified Information System Auditor from the ISACA Association. Author of several books and papers on the area of information systems with research activities focused in the security and privacy of business processes. Spain.

Carmen De-Pablos-Heredero, Rey Juan Carlos University, Madrid

PhD in Economics & Business Organization. Director of the Master Degree in Business Organization and Master Degree in Logistic Business Processes SAP at the Rey Juan Carlos University, Madrid, Spain. Author of several books and articles in Business & Education. Spain.

How to Cite
Martín-Romo Romero, S., & De-Pablos-Heredero, C. (2017). Contribution of Privacy by Design (of the Processes). Harvard Deusto Business Research, 6(3), 176-191.