Unraveling Privacy Concerns in Complex Data Ecosystems with Architectural Thinking

Research output: Contributions to collected editions/worksArticle in conference proceedingsResearchpeer-review


  • Fabian Burmeister
  • Christian Kurtz
  • Pascal Vogel
  • Paul Drews
  • Ingrid Schirmer
Privacy violations increasingly result from personal-data processing by a convoluted set of actors that collaborate in complex data ecosystems. These data ecosystems comprise numerous socio-technical elements and relations, and their opacity often obscures the manifold reasons for privacy violations. Therefore, researchers and practitioners call for systematic approaches that allow for decomposing data ecosystems in order to receive transparency about the opaque data flows and processing mechanisms across actors. This paper positions architectural thinking as a reasonable means for this need. By collecting key privacy concerns of business and regulatory stakeholders and developing a corresponding data ecosystem architecture meta-model, we provide first steps for extending the scope of architectural thinking to the privacy context. Our results are based on a mixed methods approach, which triangulates data received from a multiple case study of privacy scandals and from 14 expert interviews.
Original languageEnglish
Title of host publicationICIS 2021 Proceedings : Building sustainability and resilience with IS: A call for action
Number of pages17
PublisherAssociation for Information Systems
Publication date2021
Article number2692
ISBN (Electronic)978-1-7336325-9-1
Publication statusPublished - 2021
EventInternational Conference on Information Systems - ICIS 2021 : Building Sustainability and Resilience with IS: A Call for Action - digital, Austin, United States
Duration: 12.12.202115.12.2021

Bibliographical note

Track: General IS Topics, Beitrag 13