I Have the Right to be Alerted: The Global Policy on Data Breach Disclosure
dc.contributor.author | Real, J.R. Robert | |
dc.contributor.advisor | Schaub, Florian | |
dc.date.accessioned | 2023-07-15T20:21:05Z | |
dc.date.issued | 2023 | |
dc.date.submitted | 2023-05-10 | |
dc.identifier.uri | https://hdl.handle.net/2027.42/177321 | |
dc.description.abstract | Law is said to mirror societal values. Following an examination of the personal data breach disclosure rules of 187 legal jurisdictions around the world, this study argues that there is now a global societal expectation that individuals must be informed of data breaches involving their personal information. From a single US State (California) passing a unique and innovative law in 2003, the world has moved towards legally mandating data controllers to reveal the occurrence of a personal data breach. Organizations can no longer conceal a failure in their data security. World practice also shows that majority of legal jurisdictions regulate when and how individuals are notified. The prevailing global breach notification policy is that individuals should be informed of a breach if it involves their personal data and if there is a risk of harm to them. In turn, majority of legal jurisdictions set a specific timeframe within which to report to the authorities, while a general timeframe within which to notify individuals. Dominant worldwide policy also shows that majority of legal jurisdictions regulate the content of breach notices. This study concludes by outlining what could be the components of a global model approach to breach disclosure. It argues that breach disclosure rules should be seen as akin to an individual right and a subset of one’s right to privacy and right to human dignity – i.e., a right to be alerted. | en_US |
dc.language.iso | en_US | en_US |
dc.subject | MTOP | en_US |
dc.subject | UMSI Master’s Thesis | en_US |
dc.subject | privacy | en_US |
dc.subject | data breach | en_US |
dc.subject | breach disclosure | en_US |
dc.subject | content analysis | en_US |
dc.subject.other | social science | en_US |
dc.subject.other | information science | en_US |
dc.subject.other | Government, Politics & Law | en_US |
dc.subject.other | Public Policy | en_US |
dc.title | I Have the Right to be Alerted: The Global Policy on Data Breach Disclosure | en_US |
dc.type | Thesis | |
dc.description.thesisdegreename | Master of Science (MS) | en_US |
dc.description.thesisdegreediscipline | School of Information | en_US |
dc.description.thesisdegreegrantor | University of Michigan | en_US |
dc.contributor.committeemember | Bermann, Sol | |
dc.identifier.uniqname | RGREAL | en_US |
dc.description.bitstreamurl | http://deepblue.lib.umich.edu/bitstream/2027.42/177321/1/Real_IHavetheRighttobeAlertedTheGlobalPolicyonDataBreachDisclosure_2023.pdf | |
dc.identifier.doi | https://dx.doi.org/10.7302/7920 | |
dc.description.filedescription | Description of Real_IHavetheRighttobeAlertedTheGlobalPolicyonDataBreachDisclosure_2023.pdf : Real - Main File for Final Master's Thesis | |
dc.working.doi | 10.7302/7920 | en_US |
dc.owningcollname | Dissertations and Theses (Ph.D. and Master's) |
Files in this item
Remediation of Harmful Language
The University of Michigan Library aims to describe library materials in a way that respects the people and communities who create, use, and are represented in our collections. Report harmful or offensive language in catalog records, finding aids, or elsewhere in our collections anonymously through our metadata feedback form. More information at Remediation of Harmful Language.
Accessibility
If you are unable to use this file in its current format, please select the Contact Us link and we can modify it to make it more accessible to you.