Loading...
Please wait, while we are loading the content...
Similar Documents
A compliance framework for business processes based on URN
| Content Provider | Semantic Scholar |
|---|---|
| Author | Ghanavati, Sepideh |
| Copyright Year | 2007 |
| Abstract | Compliance with institutional policies, government regulations and applicable legislation is a major concern for any organization when defining its business processes. These regu lations are usually complex, hard to understand, and they rarely come with a model or taxonomy. As well, both business processes and regulations are susceptible to change with the potential of introducing non-compliance. This thesis presents a framework that intends to help companies track compliance by leveraging requirements engineering models. Compliance is managed by establishing links between User Requirements Nota tion (URN) models of government legislation and organizational business process and tracking how they are affected in a requirements management system. Special attention is paid to maintaining compliance as either the legislation or business processes evolve over time. The framework is evaluated by way of a case study from the healthcare industry. The case study centres on the approval process implemented to control access to a data warehouse at a major Ontario hospital and whether or not this process complies with relevant legislation and hospital guidelines. The relevant legislation in Ontario is the new provincial Personal Health Information Privacy Act (PHIPA). Reproduced with permission of the copyright owner. Further reproduction prohibited without permission. i |
| File Format | PDF HTM / HTML |
| DOI | 10.20381/ruor-18718 |
| Alternate Webpage(s) | https://ruor.uottawa.ca/bitstream/10393/27456/1/MR32448.PDF |
| Alternate Webpage(s) | https://doi.org/10.20381/ruor-18718 |
| Language | English |
| Access Restriction | Open |
| Content Type | Text |
| Resource Type | Article |
