Abstract
This study proposes a reference model that provides 16 control groups based on legal framework, international standards, project frameworks and best practices of security information to protect personal data in the microfinance sector from a legal, organizational and technical approach. This model would also align the control to each phase of the personal data life cycle in order to guarantee a consistent protection. The validation was conducted in a Peruvian savings and credit cooperative, where information was collected, the level of protection of their personal data was evaluated and controls were proposed to raise their indicator based on the reference model, whose implementation increased the level of personal data protection by 98%.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2019 IEEE 26th International Conference on Electronics, Electrical Engineering and Computing, INTERCON 2019 |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
ISBN (Electronic) | 9781728136462 |
DOIs | |
State | Published - Aug 2019 |
Event | 26th IEEE International Conference on Electronics, Electrical Engineering and Computing, INTERCON 2019 - Lima, Peru Duration: 12 Aug 2019 → 14 Aug 2019 |
Publication series
Name | Proceedings of the 2019 IEEE 26th International Conference on Electronics, Electrical Engineering and Computing, INTERCON 2019 |
---|
Conference
Conference | 26th IEEE International Conference on Electronics, Electrical Engineering and Computing, INTERCON 2019 |
---|---|
Country/Territory | Peru |
City | Lima |
Period | 12/08/19 → 14/08/19 |
Bibliographical note
Funding Information:ACKNOWLEDGMENT The authors thank Universidad Peruana de Ciencias Aplicadas (UPC by its initials in Spanish) for the support and partial funding of this research.
Publisher Copyright:
© 2019 IEEE.
Keywords
- Data lifecycle
- Data protection
- ISO 27001
- Information security
- Microfinance