• The Korean Journal of Archival Studies
• /
• no.79
• /
• pp.169-203
• /
• 2024

The records managed in special archives are core records of our society produced and managed by actual power players in the decision-making process. The Public Records Management Act stipulates that the transfer period of non-public records under its jurisdiction may be extended to 30 years after the end of the year of production only to special archives, and that the transfer period may be extended if it is necessary to continue to use them for business performance even after 30 years. In order to understand the exceptional procedures and implementation of this special records management system, an analysis of not only the meaning of special records but also the characteristics, scope, and types of special records must be preceded. In addition, the implementation method of the special records maintained by the institution must be analyzed. It also needs to be reviewed. Therefore, this paper first analyzed the transfer status of special records revealed in the National Archives' white paper and statistical data and examined the types, categories, and characteristics of special records and special archives. Second, we reviewed the establishment of special archives by 2023 and changes in operating methods according to the organizational system.

• Journal of Convergence Society for SMB
• /
• v.6 no.2
• /
• pp.25-30
• /
• 2016

Personal Information Protection Act does not apply to certain personal information processings and personal information management as well as the data subject's right to access to their personal information collected by public authorities pursuant to Statistics Act. Such exclusion may lead to problems such as misuse and mishandling of personal information by data controllers as well as infringement upon the data subejct's right to control over their personal information. This study is to find solutions to the above problems, considering the public interests of statistics and the facilitation of the collection and the use of statistics. Ultimately, the study is to suggest recommendations for the Personal Information Protection Act to ensure the data subject's rights to request access and rectification as well as safe management of the collected personal information.

• The Journal of Asian Finance, Economics and Business
• /
• v.9 no.6
• /
• pp.53-67
• /
• 2022

The study's goal is to look at the factors that influence people's willingness to whistleblow in the Malaysian public sector by applying two elements from the Moral Intensity Theory: the magnitude of consequences and societal consensus with professional commitment as an additional variable. The cross-sectional study used primary data collection through questionnaires adopted from previous studies. The survey questionnaires were distributed to target respondents from 27 ministries in Malaysian public sectors selected based on their grade positions in the departments ranging from Grade 29 and above. The findings revealed that societal consensus and professional commitments significantly impact the intention to whistleblow. The findings imply that closed people's opinions may have certain persuasive elements that influence the act of whistleblowing as a moral and ethical activity, thereby increasing their whistleblowing intention. The results also suggest that when individuals are more committed to their career and organization, they will act ethically and under the professional norm, hence, they will be inclined to whistleblow. On the other hand, the magnitude of consequences suggested an insignificant relationship with the intention to whistleblow. The results could facilitate the government in curbing the whistleblowing issue by defining its root before the implementation of necessary policies.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.14 no.1
• /
• pp.437-454
• /
• 2020

According to the privacy regulations of the health insurance portability and accountability act (HIPAA), patients' control over electronic health data is one of the major concern issues. Currently, remote access authorization is considered as the best solution to guarantee the patients' control over their health data. In this paper, a new biometric-based key management scheme is proposed to facilitate remote access authorization anytime and anywhere. First, patients and doctors can use their biometric information to verify the authenticity of communication partners through real-time video communication technology. Second, a safety channel is provided in delivering their access authorization and secret data between patient and doctor. In the designed scheme, the user's public key is authenticated by the corresponding biometric information without the help of public key infrastructure (PKI). Therefore, our proposed scheme does not have the costs of certificate storage, certificate delivery, and certificate revocation. In addition, the implementation time of our proposed system can be significantly reduced.

• Journal of Korean Library and Information Science Society
• /
• v.54 no.2
• /
• pp.111-130
• /
• 2023

With the arrival of the knowledge information society, records as assets have become increasingly important. As defined in ISO 30300, records must be actively utilized to contribute to organizational management and generate added value. To create added value through records, their utilization must be prioritized. While countries like the UK, New Zealand, and Australia recognize records as assets and propose record assetization policies, specific measures for managing records as assets have yet to be suggested. To address this gap, we analyze Directive (EU) 2019/1024, established by the EU, to facilitate commercial use and promote accessible public information. We derive seven characteristics from the analysis and extract insights from Italian policies and actual implementation cases that reflect them in accordance with the regulations of the EU guidelines. In addition, the correlation between the Public Data Act and the Public Records Act in Korea was revealed, and points that could reflect Directive (EU) 2019/1024 in Korea were derived. Through this study, it is expected that public data will be treated as information assets and serve as a stepping stone for preparing information assetization policies for records.

• Journal of the Korean BIBLIA Society for library and Information Science
• /
• v.2 no.1
• /
• pp.132-177
• /
• 1974

Toe public library may perform a social good only when its objectives are adequate to the community's needs. The present purpose of the public library in the Korean Library Act has no direct concern for our social needs from its very beginning because it was not created in response to our social needs but transplanted from American principles. It is, therefore. difficult to expect socially useful output of our public library programs under the present purpose which may be inadequate to our social tradition and needs. This study purposes to examine validity of the present purpose of the public library in the Korean Library Act, in the light of our community needs and our own library tradition. The methods employed to achieve the purpose of the study are (1) to survey needs of the library frequenters through questionnaire, and interviews with the public librarians in Seoul, (2) to gather the statistical data relevant to, and supporting, the hypothesis, and (3) to compare our social background with that of the United States of which the American purpose, a model for our present purpose, came out. The conclusion is as follows: A. The idea to induce people to pull themselves upward by providing for all the members of the community access to the world's best books shelved in the public library should be abandoned. The reasons are (1) that the idea is alien in our public library tradition, (2) that little demand of the community goes with the idea, and (3) that reading outside the library has come into wide practice, thanks to recent increase in individual income and that in publications. B. That the public library maintains fiction and other recreational reading materials is meaningless in the light of the community needs. These are the two explanations supporting the thesis. (1) The "uplift" theory has proved inoperative and people apparently do not progress from, light fiction to more respectable fare. (2) The conviction that fiction and other recreational reading materials keep the middling classes from the "vicious" entertainments maintaining order in the community by giving them a harmless source of recreation has lost its significance as the modern society provides a number of choices in recreation: television is an obvious example. C. The nature of the informational needs of the community has radically changed, so radically as to require substantial changes in the outlook, collections, and services of the public library, which is :slow in adopting itself to the new social surroundings in Korea. D. 92.2 per Cent of the present frequenters of the public library are high school and college students. Since the library is to meet the existing community needs it should turn its attention to the student group, and develop the means to serve it better, not the "theoretical group of specialists who do not come to "the public library. E. In revision of the purpose of the public library, priority of each objective should be given. The priorities in the last analysis are research and information. culture, recreation in that order.

• Journal of Distribution Science
• /
• v.21 no.6
• /
• pp.31-38
• /
• 2023

Purpose: This paper investigates how companies respond to government regulations and disasters in a risk-managed society, and aims to initiate discussions on the future prospects and challenges. Specifically, it explores how companies can plan to respond to such disasters in the future, and stresses that the law should be to protect people's lives and ensure safety, rather than to punish companies. Research design, data and methodology: The study methodology is based on a review of existing literature, as well as trend analysis through big data analysis. The research analyzes the discourse in our society regarding the enactment of the Serious Accident Punishment Act. Results: This study supports that the Serious Accident Punishment Act should be implemented in a manner that does not impede corporate activities, but rather helps to ensure the safety of citizens' daily lives. The authors call for collaboration between communities, labor unions, and companies in achieving a cooperative governance system for a safer society. Conclusions: It highlights the importance of addressing disasters and government regulations in the context of a risk-managed society, and offers insights for both companies and policymakers on how to navigate these challenges. By prioritizing safety and cooperation, we can work towards building a safer and more resilient society

• Journal of Information Technology Services
• /
• v.22 no.3
• /
• pp.29-47
• /
• 2023

With the recent advancement of information and communication technologies such as artificial intelligence, big data, cloud computing, and 5G, data is being produced and digitized in unprecedented amounts. As a result, data has emerged as a critical resource for the future economy, and overseas countries have been revising laws for data protection and utilization. In Korea, the 'Data 3 Act' was revised in 2020 to introduce institutional measures that classify personal information, pseudonymized information, and anonymous information for research, statistics, and preservation of public records. Among them, it is expected to increase the added value of data by combining pseudonymized personal information, and to this end, "the Expert Data Combination Agency" and "the Expert Data Agency" (hereinafter referred to as the Expert Data Processing Agency) system were introduced. In comparison to these domestic systems, we would like to analyze similar overseas systems, and it was recently confirmed that the Vermont government in the United States enacted the first "Data Broker Act" in the United States as a measure to protect personal information held by data brokers. In this study, we aim to compare and analyze the roles and functions of the "Expert Data Processing Agency" and "Data Broker," and to identify differences in designated standards, security measures, etc., in order to present ways to contribute to the activation of the data economy and enhance information protection.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.21 no.5
• /
• pp.169-179
• /
• 2011

Recent personal data breach incidences draw the public's attention to their privacy and personal rights. The new personal data protection law effective in September 2009 imposes additional legal responsibility on personal data controllers and processors. For instance, if a data breach occurs, this new law requires that the processors must notify individuals (data subjects) and data protection authorities of the nature of incidents. This research reviews the U.S. forty six state laws and related acts, and offers a framework for managing incidents. This framework includes five major components: (1) type of personal data required to be reported and notified, (2) the ultimate subject notifying data subjects, (3) event occurrence and notification time phases, (4) notification message details, and (5) direct/indirect communication media. Along with this framework, we also offer directions for effective/manageable guidelines on data breach notification act.

• The Korean Society of Law and Medicine
• /
• v.13 no.1
• /
• pp.359-395
• /
• 2012

In a broad term, health and medical data means all patient information that has been generated or circulated in government health and medical policies, such as medical research and public health, and all sorts of health and medical fields as well as patients' personal data, referred as medical data (filled out as medical record forms) by medical institutions. The kinds of health and medical data in medical records are prescribed by Articles on required medical data and the terms of recordkeeping in the Enforcement Decree of the Medical Service Act. As EMR, OCS, LIS, telemedicine and u-health emerges, sharing and protecting digital health and medical data is at issue in these days. At medical institutions, health and medical data, such as medical records, is classified as "sensitive information" and thus is protected strictly. However, due to the circulative property of information, health and medical data can be public as well as being private. The legal grounds of health and medical data as such are based on the right to informational self-determination, which is one of the fundamental rights derived from the Constitution. In there, patients' rights to refuse the collection of information, to control recordkeeping (to demand access, correction or deletion) and to control using and sharing of information are rooted. In any processing of health and medical data, such as generating, recording, storing, using or disposing, privacy can be violated in many ways, including the leakage, forgery, falsification or abuse of information. That is why laws, such as the Medical Service Act and the Personal Data Protection Law, and the Guideline for Protection of Personal Data at Medical Institutions (by the Ministry of Health and Welfare) provide for technical, physical, administrative and legal safeguards on those who handle personal data (health and medical information-processing personnel and medical institutions). The Personal Data Protection Law provides for the collection, use and sharing of personal data, and the regulation thereon, the disposal of information, the means of receiving consent, and the regulation of processing of personal data. On the contrary, health and medical data can be inspected or delivered of the copies, based on the principle of restriction on fundamental rights prescribed by the Constitution. For instance, Article 21(Access to Record) of the Medical Service Act, and the Personal Data Protection Law prescribe self-disclosure, the release of information by family members or by laws, the exchange of medical data due to patient transfer, the secondary use of medical data, such as medical research, and the release of information and the release of information required by the Personal Data Protection Law.