Riad Fawzi

Working Title:

Evaluating organisation privacy policy implementation

Abstract:

This thesis explores the management of personal information policies for electronic banks from a neo-institutional perspective. It draws on organisational legitimacy and the importation of such theory into the field of Information Systems (IS) privacy can be considered as an objective of this research in its own right. The position taken in this study is that insight into the content and use of personal information policies and the subsequent management of such policies can be afforded through the application of neo-institutional theory into the IS privacy domain. This research stems from a general interest in privacy, and a more specific concern for the organisational treatment of consumer personal information in an electronic banking context. In addition to the legal necessity of complying with relevant national and international laws, personal information policies and industry guidelines, improving data protection can help to improve an organisation's reputation and, ultimately, its business.