... Tobias Reittinger can be contacted at: tobias.reittinger@ur.de 14 03 2025 28 05 2025 28 05 2025 Cybersecurity Motivation Incentives Nudges Awareness Compliance Policy As today’s digital landscape evolves rapidly, the threat of cybercrime is ever-growing. In 2023...

...Marcus Gerdin Purpose The purpose of this study is to further validate and extend the unified model of information security policy compliance (UMISPC) developed by Moody et al. (2018) . Design/methodology/approach To be able to compare the results of this study and those reported...

... security behaviour. Moreover, this paper delves into the contrasting influences of light and dark personality traits on insider information security compliance. Design/methodology/approach A cross-sectional survey was conducted to study SCPT measures and the personality factors dyad using a diverse...

... Analytical hierarchy process Risk management Business objectives alignment Data sovereignty Compliance © Emerald Publishing Limited 2023 Emerald Publishing Limited Licensed re-use rights only Table 2. Finalized criteria Criteria Explanation Sources Business objectives...

... security compliance behaviour. Design/methodology/approach A single-organisation case study was used to develop understanding from direct experiences of organisational life. Both quantitative and qualitative data were collected using a sequential mixed methods approach, with the qualitative phase...

... that the perception of competence, relatedness and autonomy motivates the intention to comply with ISPs which is investigated using correlation analysis. It is, therefore, intended that a positive perception of competence, relatedness and autonomy will help lower the risk of ISP non-compliance and that developing...

... indicates security management actions an organisation needs to perform to fulfil GDPR requirements. Thus, ISO/IEC 27001:2013 compliant organisations, can use this paper as a basis for extending the already existing security control modules towards data protection; and as guidance for reaching compliance...

.... Even though GDPR leads toward many advantages for the data subjects it turned out to be a significant challenge. Organizations need to implement long and complex changes to become GDPR compliant. Data subjects are empowered with new rights, which, however, they need to become aware of. GDPR compliance...

...Adéle Da Veiga; Ruthea Vorster; Fudong Li; Nathan Clarke; Steven M. Furnell Purpose The purpose of this study was to investigate the difference between South Africa (SA) and the United Kingdom (UK) in terms of data protection compliance with the aim to establish if a country that has had data...

...Teodor Sommestad Purpose It is widely acknowledged that norms and culture influence decisions related to information security. The purpose of this paper is to investigate how work-related groups influence information security policy compliance intentions and to what extent this influence...

...Stefan Fenz; Thomas Neubauer Purpose The purpose of this paper is to provide a method to formalize information security control descriptions and a decision support system increasing the automation level and, therefore, the cost efficiency of the information security compliance checking process...

... and this research aims to improve on them. Design/methodology/approach – It presents a comprehensive empirical survey on trustworthiness issues and e-commerce assurance models and proposes a new compliance-based e-commerce assurance model that integrates adaptive legislation, adaptive e-commerce-related...

...Karin Hedström; Fredrik Karlsson; Ella Kolkowska Purpose – Employees' compliance with information security policies is considered an essential component of information security management. The research aims to illustrate the usefulness of social action theory (SAT) for management of information...