IDEAS home Printed from https://ideas.repec.org/p/hal/journl/hal-05452229.html

The paradox of privacy compliance: a better understanding of company infractions with the General Data Protection Regulation (GDPR)
[Le « privacy compliance paradox » : mieux comprendre les infractions des entreprises au Règlement Général sur la Protection des Données (RGPD)]

Author

Listed:
  • Pauline Roques

    (MRM-MKG - Montpellier Research in Management - Marketing - MRM - Montpellier Research in Management - UPVD - Université de Perpignan Via Domitia - UM - Université de Montpellier)

  • David Vidal

    (MRM-MKG - Montpellier Research in Management - Marketing - MRM - Montpellier Research in Management - UPVD - Université de Perpignan Via Domitia - UM - Université de Montpellier)

  • Anne-Sophie Cases

    (MRM - Montpellier Research in Management - UPVD - Université de Perpignan Via Domitia - UM - Université de Montpellier)

Abstract

Although companies are paying attention to GDPR regulations, many are not complying with them systematically (privacy compliance paradox). Between 2018 and 2022, more than €2 billion in fines were issued across Europe, and 2023 is likely to be a record year. In this context, we are trying to better identify the various sources of corporate privacy violations that can impact the customer relationship. The results of a qualitative study conducted with data management experts show that, between the perceived benefits and risks, some companies make the deliberate choice of breaking the law, either by malicious acts or passive omissions (privacy compliance calculus). However, other violations may be unintentional. Despite companies' best attempts to incorporate the GDPR into their operations, we observe mistakes and inactions due to the difficulties encounter in understanding and applying existing regulations (privacy compliance gap).

Suggested Citation

  • Pauline Roques & David Vidal & Anne-Sophie Cases, 2024. "The paradox of privacy compliance: a better understanding of company infractions with the General Data Protection Regulation (GDPR) [Le « privacy compliance paradox » : mieux comprendre les infract," Post-Print hal-05452229, HAL.
    • Handle: RePEc:hal:journl:hal-05452229
    as

    Download full text from publisher

    To our knowledge, this item is not available for download. To find whether it is available, there are three options:
    1. Check below whether another version of this item is available online.
    2. Check on the provider's web page whether it is in fact available.
    3. Perform a
    for a similarly titled item that would be available.

    More about this item

    Keywords

    ;
    ;
    ;
    ;
    ;
    ;
    ;

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:hal:journl:hal-05452229. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: CCSD (email available below). General contact details of provider: https://hal.archives-ouvertes.fr/ .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.