Insights on How Data Privacy Officers Can Build a Corporate Privacy Culture

Authors

Tawfiq Alashoor
Maheshwar Boodraj
André Quintanilha
Sabrina Palme
Hussain Aldawood

Abstract

In an era where data breaches have become commonplace, the role and responsibilities of data privacy officers (DPOs) are more critical than ever. To help DPOs mitigate cybersecurity and privacy risks, we provide recommendations for building and enhancing corporate privacy cultures. We propose the 3Bs privacy framework (baseline, benchmark, bridge) for assessing corporate privacy practices using a privacy culture index. By applying the 3Bs privacy framework, DPOs can move beyond the top-down approach of merely complying with regulations to a bottom-up approach to enhancing corporate privacy culture.

Recommended Citation

Alashoor, Tawfiq; Boodraj, Maheshwar; Quintanilha, André; Palme, Sabrina; and Aldawood, Hussain (2025) "Insights on How Data Privacy Officers Can Build a Corporate Privacy Culture," MIS Quarterly Executive: Vol. 24: Iss. 1, Article 6.
Available at: https://aisel.aisnet.org/misqe/vol24/iss1/6