Development of a Manual on the Application of Information Technology for the Audit of the Implementation of the Personal Data Protection Act of Rajabhat University

Abstract

Background and Aims: The enforcement of the Personal Data Protection Act B.E. 2562 (PDPA) has resulted in the need for higher education institutions to improve their personal data management systems to comply with legal requirements. However, Rajabhat University still faces the problem of uncertainty in its operations. Lack of tools to support audits and systematic evidence collection. The objectives of this research were to 1) develop a manual on the application of information technology for the audit of the implementation of the Personal Data Protection Act of Rajabhat University, 2) assess the appropriateness of the application manual of information technology for the audit of the implementation of the Personal Data Protection Act of Rajabhat University by experts, and 3) experiment with the application of information technology for the audit of the implementation of the Personal Data Protection Act of Rajabhat University.

Methodology: The research uses the research and development model by designing a manual based on the PAOR (Plan–Action–Observation–Reflection) process. 9 experts to assess the suitability of the manual and management. Lecturers and staff from 17 departments of Mahasarakham Rajabhat University totaling 34 people to try out the manual. Analyze data with mean and standard deviation.

Results: It was found that 1) the developed manual consists of 6 units: introduction, planning, action, monitoring and observation, reflection and improvement, and sample documentation, in accordance with the 28 PDPA activities, and the integration of information technology at all stages of the PAOR process, 2) the results of the expert suitability assessment were at the highest level (mean = 4.72, SD = 0.45), and 3) the results of the trial showed the highest overall user satisfaction (average = 4.63, SD = 0.59), especially in terms of process clarity. Having sample supporting documents and the ability to apply them in real practice.

Conclusion: The information technology application manual developed can be used as a tool to support the audit of the implementation of the PDPA of Rajabhat University effectively. Reduce operational ambiguity Promote systematic evidence collection and support reporting in accordance with the requirements of the law, which is an important mechanism to enhance the readiness of higher education institutions for personal data protection.