Privacy through security: policy and practice in a small-medium enterprise.

Allison, Ian; Strangwick, Craig

doi:10.4018/978-1-59904-804-8.ch008

Authors

Ian Allison

Craig Strangwick

Contributors

Ramesh Subramanian
Editor

Abstract

The chapter discusses how one small business planned for, and implemented, the security of its data in a new enterprise-wide system. The companys data was perceived as sensitive, and any breach of privacy as commercially critical. From this perspective, the chapter outlines the organizational and technical facets of the policies and practices evidenced. Lessons for other businesses can be drawn from the case by recognizing the need for investments to be made that will address threats in business critical areas. By highlighting the need for organizations to understand the nature of the risk and the probability of an event occurring, the security approaches highlight the need to address both the threats and actions in the event of an incident to reduce the risk to privacy.

Citation

ALLISON, I. and STRANGWICK, C., 2008. Privacy through security: policy and practice in a small-medium enterprise. In Subramanian, R. (ed.) Computer security, privacy, and politics: current issues, challenges, and solutions. Hershey, PA: IGI Global [online], chapter 8, pages 157-179. Available from: https://doi.org/10.4018/978-1-59904-804-8.ch008

Online Publication Date	Dec 31, 2008
Publication Date	Dec 31, 2008
Deposit Date	Apr 16, 2009
Publicly Available Date	Apr 16, 2009
Publisher	IGI Global
Pages	157-179
Book Title	Computer security, privacy, and politics: current issues, challenges, and solutions
Chapter Number	Chapter 8
ISBN	9781599048048; 9781616927295
DOI	https://doi.org/10.4018/978-1-59904-804-8.ch008
Keywords	Privacy; Security; Small medium enterprises
Public URL	http://hdl.handle.net/10059/333