Enterprise Architecture Frameworks as Support for Implementation of Regulations: Approach and Experiences from GDPR
DOI:
https://doi.org/10.7250/csimq.2020-24.03Keywords:
GDPR, Enterprise Architecture, Enterprise Architecture Framework, Security, Security Architecture FrameworksAbstract
Enterprise Architecture (EA) management has been discussed as being supportive for implementation of regulations in enterprises and organizations, but the role of EA frameworks in this context has not been addressed intensely. The EU General Data Protection Regulation (GDPR) is one of the most frequently discussed regulation in industry and research, and expected to cause a shift in viewpoint of enterprises from a technological perspective dominated by information security issues to an organizational perspective governed by GDPR-compliant organizational structures and processes. A well-documented Enterprise Architecture (EA) and a working Enterprise Architecture Management (EAM) organization are expected to significantly ease the roadmap planning for GDPR implementation. Therefore, this article focuses on the practice of EA use for GDPR implementation. The main contributions of this article are (a) an analysis and comparison of existing architecture frameworks and how they address security-related issues, and (b) a case study from financial industries illustrating the use of EA for implementing GDPR compliance.Downloads
Published
30.10.2020
Issue
Section
Articles
License
Copyright (c) 2020 Johannes Wichmann, Kurt Sandkuhl, Nikolay Shilov, Alexander Smirnov, Felix Timm, Matthias Wißotzki (Author)
This work is licensed under a Creative Commons Attribution 4.0 International License.
How to Cite
Wichmann, J., Sandkuhl, K., Shilov, N., Smirnov, A., Timm, F., & Wißotzki, M. (2020). Enterprise Architecture Frameworks as Support for Implementation of Regulations: Approach and Experiences from GDPR. Complex Systems Informatics and Modeling Quarterly, 24, 31-48. https://doi.org/10.7250/csimq.2020-24.03
