A Study on Security and Privacy Practices in Danish Companies

Asmita Dalela, Saverio Giallorenzo, Oksana Kulyk, Jacopo Mauro, Elda Paja

Research output: Conference Article in Proceeding or Book/Report chapterArticle in proceedingsResearchpeer-review


Increased levels of digitalization in society expose companies to new security threats, requiring them to establish adequate security and privacy measures. Additionally, the presence of exogenous forces like new regulations, e.g., GDPR and the global COVID-19 pandemic, pose new challenges for companies that should preserve an adequate level of security while having to adapt to change. In this paper, we investigate such challenges through a two-phase study in companies located in Denmark---a country characterized by a high level of digitalization---focusing on software development and tech-related companies. Our results show a number of issues, most notably i) a misalignment between software developers and management when it comes to the implementation of security and privacy measures, ii) difficulties in adapting company practices in light of implementing GDPR compliance, and iii) different views on the need to adapt security measures to cope with the COVID-19 pandemic.
Original languageEnglish
Title of host publicationUsable Security and Privacy (USEC) Symposium 2022
PublisherInternet society
Publication dateApr 2022
ISBN (Electronic)1-891562-79-7
Publication statusPublished - Apr 2022


  • Security
  • Privacy
  • Organizational practices
  • Organizational culture
  • COVID-19
  • GDPR


Dive into the research topics of 'A Study on Security and Privacy Practices in Danish Companies'. Together they form a unique fingerprint.

Cite this