IDEAS home Printed from https://ideas.repec.org/a/eee/proeco/v271y2024ics0925527324000598.html
   My bibliography  Save this article

Developing a data breach protection capability framework in retailing

Author

Listed:
  • Uddin, Mohammad Rajib
  • Akter, Shahriar
  • Lee, Wai Jin Thomas

Abstract

Protecting data in retail operations is vital in the age of data-driven digital transformation. Businesses face a constant challenge from data breaches due to the unpredictable and dynamic nature of the threats. Although studies in the context of data breaches are gaining momentum, a unified approach to data breach prevention and responsive strategies are required to address the challenge. Drawing on the micro-foundations of dynamic capabilities theory, the study proposes a data breach protection framework for retail operations. The findings of the study highlight the dimensions and sub-dimensions of data breach protection capability using a systematic literature review and a thematic analysis. The outcome of this study can benefit retailers, customers, and society by understanding how to protect data in data-driven digital transformation.

Suggested Citation

  • Uddin, Mohammad Rajib & Akter, Shahriar & Lee, Wai Jin Thomas, 2024. "Developing a data breach protection capability framework in retailing," International Journal of Production Economics, Elsevier, vol. 271(C).
    • Handle: RePEc:eee:proeco:v:271:y:2024:i:c:s0925527324000598
    DOI: 10.1016/j.ijpe.2024.109202
    as

    Download full text from publisher

    File URL: http://www.sciencedirect.com/science/article/pii/S0925527324000598
    Download Restriction: Full text for ScienceDirect subscribers only
    File URL: https://libkey.io/10.1016/j.ijpe.2024.109202?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    References listed on IDEAS

    as
    1. Teppo Felin & Nicolai J. Foss & Koen H. Heimeriks & Tammy L. Madsen, 2012. "Microfoundations of Routines and Capabilities: Individuals, Processes, and Structure," Journal of Management Studies, Wiley Blackwell, vol. 49(8), pages 1351-1374, December.
    2. Jessica Rose Carre & Shelby R. Curtis & Daniel Nelson Jones, 2018. "Ascribing responsibility for online security and data breaches," Managerial Auditing Journal, Emerald Group Publishing Limited, vol. 33(4), pages 436-446, March.
    3. Raj, Alok & Dwivedi, Gourav & Sharma, Ankit & Lopes de Sousa Jabbour, Ana Beatriz & Rajak, Sonu, 2020. "Barriers to the adoption of industry 4.0 technologies in the manufacturing sector: An inter-country comparative perspective," International Journal of Production Economics, Elsevier, vol. 224(C).
    4. Kathleen M. Eisenhardt & Nathan R. Furr & Christopher B. Bingham, 2010. "CROSSROADS---Microfoundations of Performance: Balancing Efficiency and Flexibility in Dynamic Environments," Organization Science, INFORMS, vol. 21(6), pages 1263-1273, December.
    5. Yang Chen & Yi Wang & Saggi Nevo & Jiafei Jin & Luning Wang & Wing S Chow, 2014. "IT capability and organizational performance: the roles of business process agility and environmental factors," European Journal of Information Systems, Taylor & Francis Journals, vol. 23(3), pages 326-342, May.
    6. Olt, Christian M. & Gerlach, Jin & Sonnenschein, Rabea & Buxmann, Peter, 2019. "On the Benefits of Senior Executives’ Information Security Awareness," Publications of Darmstadt Technical University, Institute for Business Studies (BWL) 118053, Darmstadt Technical University, Department of Business Administration, Economics and Law, Institute for Business Studies (BWL).
    7. Kalaiarasan, Ravi & Olhager, Jan & Agrawal, Tarun Kumar & Wiktorsson, Magnus, 2022. "The ABCDE of supply chain visibility: A systematic literature review and framework," International Journal of Production Economics, Elsevier, vol. 248(C).
    8. Kelly D. Martin & Patrick E. Murphy, 2017. "The role of data privacy in marketing," Journal of the Academy of Marketing Science, Springer, vol. 45(2), pages 135-155, March.
    9. repec:eme:maj000:maj-11-2017-1692 is not listed on IDEAS
    10. Laura Bitomsky & Olga Bürger & Björn Häckel & Jannick Töppel, 2020. "Value of data meets IT security – assessing IT security risks in data-driven value chains," Electronic Markets, Springer;IIM University of St. Gallen, vol. 30(3), pages 589-605, September.
    11. Sabina Tasheva & Bo Bernhard Nielsen, 2022. "The role of global dynamic managerial capability in the pursuit of international strategy and superior performance," Journal of International Business Studies, Palgrave Macmillan;Academy of International Business, vol. 53(4), pages 689-708, June.
    12. Saim Kashmiri & Cameron Duncan Nicol & Liwu Hsu, 2017. "Birds of a feather: intra-industry spillover of the Target customer data breach and the shielding role of IT, marketing, and CSR," Journal of the Academy of Marketing Science, Springer, vol. 45(2), pages 208-228, March.
    13. Abraham, Rene & Schneider, Johannes & vom Brocke, Jan, 2019. "Data governance: A conceptual framework, structured review, and research agenda," International Journal of Information Management, Elsevier, vol. 49(C), pages 424-438.
    14. Hussain, Matloub & Papastathopoulos, Avraam, 2022. "Organizational readiness for digital financial innovation and financial resilience," International Journal of Production Economics, Elsevier, vol. 243(C).
    15. Sergiy D. Dmytriyev & R. Edward Freeman & Jacob Hörisch, 2021. "The Relationship between Stakeholder Theory and Corporate Social Responsibility: Differences, Similarities, and Implications for Social Issues in Management," Journal of Management Studies, Wiley Blackwell, vol. 58(6), pages 1441-1470, September.
    16. Soundararajan, Vivek & Sahasranamam, Sreevas & Khan, Zaheer & Jain, Tanusree, 2021. "Multinational enterprises and the governance of sustainability practices in emerging market supply chains: An agile governance perspective," Journal of World Business, Elsevier, vol. 56(2).
    17. Labrecque, Lauren I. & Markos, Ereni & Swani, Kunal & Peña, Priscilla, 2021. "When data security goes wrong: Examining the impact of stress, social contract violation, and data type on consumer coping responses following a data breach," Journal of Business Research, Elsevier, vol. 135(C), pages 559-571.
    18. Kathleen M. Eisenhardt & Jeffrey A. Martin, 2000. "Dynamic capabilities: what are they?," Strategic Management Journal, Wiley Blackwell, vol. 21(10‐11), pages 1105-1121, October.
    19. Kristin Masuch & Maike Greve & Simon Trang, 2021. "What to do after a data breach? Examining apology and compensation as response strategies for health service providers," Electronic Markets, Springer;IIM University of St. Gallen, vol. 31(4), pages 829-848, December.
    20. Romanus Izuchukwu Okeke & Max Hashem Eiza, 2023. "The Application of Role-Based Framework in Preventing Internal Identity Theft Related Crimes: A Qualitative Case Study of UK Retail Companies," Information Systems Frontiers, Springer, vol. 25(2), pages 451-472, April.
    21. Constance E. Helfat & Margaret A. Peteraf, 2015. "Managerial cognitive capabilities and the microfoundations of dynamic capabilities," Strategic Management Journal, Wiley Blackwell, vol. 36(6), pages 831-850, June.
    22. Papanagnou, Christos & Seiler, Andreas & Spanaki, Konstantina & Papadopoulos, Thanos & Bourlakis, Michael, 2022. "Data-driven digital transformation for emergency situations: The case of the UK retail sector," International Journal of Production Economics, Elsevier, vol. 250(C).
    23. Hemphill, Thomas A. & Longstreet, Phil, 2016. "Financial data breaches in the U.S. retail economy: Restoring confidence in information technology security standards," Technology in Society, Elsevier, vol. 44(C), pages 30-38.
    24. Neetu Singh & Upkar Varshney, 2020. "IT-based reminders for medication adherence: systematic review, taxonomy, framework and research directions," European Journal of Information Systems, Taylor & Francis Journals, vol. 29(1), pages 84-108, January.
    25. repec:eme:maj000:maj-11-2017-1693 is not listed on IDEAS
    26. Papadopoulos, Thanos & Baltas, Konstantinos N. & Balta, Maria Elisavet, 2020. "The use of digital technologies by small and medium enterprises during COVID-19: Implications for theory and practice," International Journal of Information Management, Elsevier, vol. 55(C).
    27. Goel, Sanjay & Chen, Vicki, 2008. "Can business process reengineering lead to security vulnerabilities: Analyzing the reengineered process," International Journal of Production Economics, Elsevier, vol. 115(1), pages 104-112, September.
    28. Marshall Fisher & Ananth Raman, 2022. "Innovations in retail operations: Thirty years of lessons from Production and Operations Management," Production and Operations Management, Production and Operations Management Society, vol. 31(12), pages 4452-4461, December.
    29. Carol Hsu & Jae-Nam Lee & Detmar W. Straub, 2012. "Institutional Influences on Information Systems Security Innovations," Information Systems Research, INFORMS, vol. 23(3-part-2), pages 918-939, September.
    30. Yang, Gangqiang & Nie, Yiming & Li, Honggui & Wang, Haisen, 2023. "Digital transformation and low-carbon technology innovation in manufacturing firms: The mediating role of dynamic capabilities," International Journal of Production Economics, Elsevier, vol. 263(C).
    31. David J. Teece, 2007. "Explicating dynamic capabilities: the nature and microfoundations of (sustainable) enterprise performance," Strategic Management Journal, Wiley Blackwell, vol. 28(13), pages 1319-1350, December.
    32. Shelby R. Curtis & Jessica Rose Carre & Daniel Nelson Jones, 2018. "Consumer security behaviors and trust following a data breach," Managerial Auditing Journal, Emerald Group Publishing Limited, vol. 33(4), pages 425-435, April.
    33. Cenamor, Javier & Parida, Vinit & Wincent, Joakim, 2019. "How entrepreneurial SMEs compete through digital platforms: The roles of digital platform capability, network capability and ambidexterity," Journal of Business Research, Elsevier, vol. 100(C), pages 196-206.
    34. Ou, Carol & Zhang, Xiaowei & Angelopoulos, Spyros & Davison, Robert & Janse, Noury, 2022. "Security breaches and organization response strategy : Exploring consumers’ threat and coping appraisals," Other publications TiSEM 9ac0c2eb-87e8-4c1d-a0b0-c, Tilburg University, School of Economics and Management.
    35. David J. Teece & Gary Pisano & Amy Shuen, 1997. "Dynamic capabilities and strategic management," Strategic Management Journal, Wiley Blackwell, vol. 18(7), pages 509-533, August.
    36. Yang, Yefei & Yee, Rachel W.Y., 2022. "The effect of process digitalization initiative on firm performance: A dynamic capability development perspective," International Journal of Production Economics, Elsevier, vol. 254(C).
    37. Kessler, Melanie & Arlinghaus, Julia C. & Rosca, Eugenia & Zimmermann, Manuel, 2022. "Curse or Blessing? Exploring risk factors of digital technologies in industrial operations," International Journal of Production Economics, Elsevier, vol. 243(C).
    38. Felipe Caro & A. Gürhan Kök & Victor Martínez-de-Albéniz, 2020. "The Future of Retail Operations," Manufacturing & Service Operations Management, INFORMS, vol. 22(1), pages 47-58, January.
    39. Jacob Haislip & Jee-Hae Lim & Robert Pinsker, 2021. "The Impact of Executives’ IT Expertise on Reported Data Security Breaches," Information Systems Research, INFORMS, vol. 32(2), pages 318-334, June.
    40. Confente, Ilenia & Siciliano, Giorgia Giusi & Gaudenzi, Barbara & Eickhoff, Matthias, 2019. "Effects of data breaches from user-generated content: A corporate reputation analysis," European Management Journal, Elsevier, vol. 37(4), pages 492-504.
    41. Sumantra Sarkar & Anthony Vance & Balasubramaniam Ramesh & Menelaos Demestihas & Daniel Thomas Wu, 2020. "The Influence of Professional Subculture on Information Security Policy Violations: A Field Study in a Healthcare Context," Information Systems Research, INFORMS, vol. 31(4), pages 1240-1259, December.
    42. Chatterjee, Subimal & Gao, Xiang & Sarkar, Sumantra & Uzmanoglu, Cihan, 2019. "Reacting to the scope of a data breach: The differential role of fear and anger," Journal of Business Research, Elsevier, vol. 101(C), pages 183-193.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Quan Anh Nguyen & Gillian Sullivan Mort, 0. "Conceptualising organisational-level and microfoundational capabilities: an integrated view of born-globals’ internationalisation," International Entrepreneurship and Management Journal, Springer, vol. 0, pages 1-23.
    2. Anja Schulze & Stefano Brusoni, 2022. "How dynamic capabilities change ordinary capabilities: Reconnecting attention control and problem‐solving," Strategic Management Journal, Wiley Blackwell, vol. 43(12), pages 2447-2477, December.
    3. Xiaoming He & Yaqun Yi & Zelong Wei, 2019. "New product development capabilities in China: the moderating role of TMT cooperative behavior," Asian Business & Management, Palgrave Macmillan, vol. 18(2), pages 73-97, April.
    4. Sullivan, Yulia & Fosso Wamba, Samuel, 2024. "Artificial intelligence and adaptive response to market changes: A strategy to enhance firm performance and innovation," Journal of Business Research, Elsevier, vol. 174(C).
    5. Seyedesmaeil Mousavi & Bart Bossink & Mario van Vliet, 2019. "Microfoundations of companies' dynamic capabilities for environmentally sustainable innovation: Case study insights from high‐tech innovation in science‐based companies," Business Strategy and the Environment, Wiley Blackwell, vol. 28(2), pages 366-387, February.
    6. Maria Elisavet Balta & Thanos Papadopoulos & Konstantina Spanaki, 2024. "Business model pivoting and digital technologies in turbulent environments," Post-Print hal-04513406, HAL.
    7. Altintas, Gulsun & Ambrosini, Véronique & Gudergan, Siegfried, 2022. "MNE dynamic capabilities in (un)related diversification," Journal of International Management, Elsevier, vol. 28(1).
    8. Schriber, Svante & Löwstedt, Jan, 2018. "Managing asset orchestration: A processual approach to adapting to dynamic environments," Journal of Business Research, Elsevier, vol. 90(C), pages 307-317.
    9. Carlo Salvato & Roberto Vassolo, 2018. "The sources of dynamism in dynamic capabilities," Strategic Management Journal, Wiley Blackwell, vol. 39(6), pages 1728-1752, June.
    10. Thomas, V.J. & Bliemel, Martin & Shippam, Cynthia & Maine, Elicia, 2020. "Endowing university spin-offs pre-formation: Entrepreneurial capabilities for scientist-entrepreneurs," Technovation, Elsevier, vol. 96.
    11. Zhao, Nanyang & Hong, Jiangtao & Lau, Kwok Hung, 2023. "Impact of supply chain digitalization on supply chain resilience and performance: A multi-mediation model," International Journal of Production Economics, Elsevier, vol. 259(C).
    12. Ferraris, Alberto & Degbey, William Y. & Singh, Sanjay Kumar & Bresciani, Stefano & Castellano, Sylvaine & Fiano, Fabio & Couturier, Jerome, 2022. "Microfoundations of Strategic Agility in Emerging Markets: Empirical Evidence of Italian MNEs in India," Journal of World Business, Elsevier, vol. 57(2).
    13. Quan Anh Nguyen & Gillian Sullivan Mort, 2021. "Conceptualising organisational-level and microfoundational capabilities: an integrated view of born-globals’ internationalisation," International Entrepreneurship and Management Journal, Springer, vol. 17(4), pages 1781-1803, December.
    14. Oliveira, Mariana & Zancul, Eduardo & Salerno, Mario Sergio, 2024. "Capability building for digital transformation through design thinking," Technological Forecasting and Social Change, Elsevier, vol. 198(C).
    15. Atzmon, Morane Batya & Vanderstraeten, Johanna & Albers, Sascha, 2022. "Small-firm growth-enabling capabilities: A framework for young technology-based firms," Technovation, Elsevier, vol. 117(C).
    16. Lauri Paavola, 2021. "The role of (dynamic) capabilities in the transformation of a multi-organizational setting," Journal of Evolutionary Economics, Springer, vol. 31(2), pages 715-748, April.
    17. Szymanski, Mike & Fitzsimmons, Stacey R. & Danis, Wade M., 2019. "Multicultural managers and competitive advantage: Evidence from elite football teams," International Business Review, Elsevier, vol. 28(2), pages 305-315.
    18. Hélène Laurell & Leona Achtenhagen & Svante Andersson, 2017. "The changing role of network ties and critical capabilities in an international new venture’s early development," International Entrepreneurship and Management Journal, Springer, vol. 13(1), pages 113-140, March.
    19. Jim Andersén, 2023. "Green resource orchestration: A critical appraisal of the use of resource orchestration in environmental management research, and a research agenda for future study," Business Strategy and the Environment, Wiley Blackwell, vol. 32(8), pages 5506-5520, December.
    20. Kazadi, Kande & Lievens, Annouk & Mahr, Dominik, 2016. "Stakeholder co-creation during the innovation process: Identifying capabilities for knowledge creation among multiple stakeholders," Journal of Business Research, Elsevier, vol. 69(2), pages 525-540.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:eee:proeco:v:271:y:2024:i:c:s0925527324000598. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Catherine Liu (email available below). General contact details of provider: http://www.elsevier.com/locate/ijpe .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.