This artice is free to access.
This paper presents a framework designed to assist enterprises in implementing a forensic readiness capability for information privacy incidents. In particular, the framework provides guidance for specifying high-level policies, business processes and organizational functions, and for determining the device-level forensic procedures, standards and processes required to handle information privacy incidents.
Reddy, K., & Venter, H. (2009). A forensic framework for handling information privacy incidents. In IFIP Advances in Information and Communication Technology (Vol. 306, pp. 143–155). Springer New York LLC. https://doi.org/10.1007/978-3-642-04155-6_11