Please use this identifier to cite or link to this item:
Title: Towards a conceptual framework for protection of personal information from the perspective of activity theory
Authors: Iyamu, Tiko 
Ngqame, Yandiswa 
Keywords: Conceptual framework;Protection of personal information;Protection of Personal Information (POPI) Act
Issue Date: 2017
Publisher: South African Journal of Information Management
Journal: South African Journal of Information Management 
Abstract: Background: Personal information about individuals is stored by organisations including government agencies. The information is intended to be kept confidential and strictly used for its primary and legitimate purposes. However, that has not always been the case in many South African government agencies and departments. In recent years, personal information about individuals and groups has been illegally leaked for other motives, in which some were detrimental. Even though there exists a legislation, Protection of Personal Information (POPI) Act, which prohibits such malpractices, illegally leaked information has however, not stopped or reduced. In addition to the adoption of the POPI Act, a more stringent approach is therefore needed in order to improve sanity in the use and management of personal information. Otherwise, the detriment that such malpractices cause too many citizens can only be on the increase. Objectives: The objectives of this study were in twofold: (1) to examine and understand the activities that happen with personal information leaks, which includes why and how information is leaked; and (2) to develop a conceptual framework, which includes identification of the factors that influence information leaks and breaches in an environment. Method: Qualitative research methods were followed in achieving the objectives of the study. Within the qualitative methods, documents including existing literature were gathered. The activity theory was employed as lens to guide the analysis. Result: From the analysis, four critical factors were found to be of influence in information leaks and breaches in organisations. The factors include: (1) information and its value, (2) the roles of society and its compliance to information protection, (3) government and its laws relating to information protection and (4) the need for standardisation of information usage and management within a community. Based on the factors, a conceptual framework was developed. Conclusion: This study can be used to guide implementation of information protection acts in any environment. It empirically contributes to societal awareness on how and why personal information is leaked and breached. Also, it will benefit academic domain, particularly in the use of activity theory.
ISSN: 1560-683X
DOI: 10.4102/sajim.v19i1.867
Appears in Collections:FID - Journal Articles (DHET subsidised)

Files in This Item:
File Description SizeFormat 
Towards a conceptual framework for protection.pdfMain Article2.24 MBAdobe PDFView/Open
Show full item record

Page view(s)

checked on Nov 17, 2018


checked on Nov 17, 2018

Google ScholarTM



This item is licensed under a Creative Commons License Creative Commons