ذاکرحسینی، سیدمحمد. (1399). بررسی عملکرد فرآیند حسابرسی مبتنی بر دانش حسابرسان از فناوری‌اطلاعات. چشم انداز حسابداری و مدیریت, 3(33), 73-98.

محمودی پرچینی، مرتضی؛ ریاضی، لادن و پور ابراهیمی، علیرضا . (1403). مقایسه قوانین حفاظت‌داده‌های شخصی: مقررات‌عمومی منحصر به فرد تحت مقررات حفاظت‌داده‌های عمومی اتحادیه اروپا (GDPR ) و قوانین ایالات متحده. فصلنامه علوم خبری، 13(4)، 204-224. 

شریفی کیا، محمد علی و شعبانی جهرمی، فریده . (1401). شرط شخصی تلقی شدن داده‌ها در فضای سایبر بررسی تطبیقی مقررات‌عمومی اروپایی حفاظت از داده و حقوق ایران. مجله علمی "حقوق خصوصی"، 19(1)، 221-245.

Alunge, R. (2021). Breach of security vs personal data breach: effect on EU data subject notification requirements. International Data Privacy Law, 11(2), 163-181.

Amoo, O. O., Atadoga, A., Osasona, F., Abrahams, T. O., Ayinla, B. S., & Farayola, O. A. (2024). GDPR's impact on cybersecurity: A review focusing on USA and European practices. International Journal of Science and Research Archive, 11(1), 1338-1347.

Belen-Saglam, R., Altuncu, E., Lu, Y., & Li, S. (2023). A systematic literature review of the tension between the GDPR and public blockchain systems. Blockchain: Research and Applications, 4(2), 100129.

Bertolaccini, L., Falcoz, P. E., Brunelli, A., Batirel, H., Furak, J., Passani, S., & Szanto, Z. (2023). The significance of general data protection regulation in the compliant data contribution to the European Society of Thoracic Surgeons database. European Journal of Cardio-Thoracic Surgery, 64(3), ezad289.

Bowyer, A., Holt, J., Go Jefferies, J., Wilson, R., Kirk, D., & David Smeddinck, J. (2022, April). Human-GDPR interaction: practical experiences of accessing personal data. In Proceedings of the 2022 CHI Conference on Human Factors in Computing Systems (pp. 1-19).

Casutt, N., & Ebert, N. (2020, October). Data protection officers: Figureheads of privacy or merely decoration. In Proc. 16th Eur. Conf. Manage., Leadership Governance (p. 39).

Custers, B., Dechesne, F., Sears, A. M., Tani, T., & Van der Hof, S. (2018). A comparison of data protection legislation and policies across the EU. Computer Law & Security Review, 34(2), 234-243.

Dashti, S., & Ranise, S. (2020). Tool-assisted risk analysis for data protection impact assessment. Privacy and Identity Management. Data for Better Living: AI and Privacy: 14th IFIP WG 9.2, 9.6/11.7, 11.6/SIG 9.2. 2 International Summer School, Windisch, Switzerland, August 19–23, 2019, Revised Selected Papers 14, 308-324.

Demetzou, K. (2019). Data Protection Impact Assessment: A tool for accountability and the unclarified concept of ‘high risk’in the General Data Protection Regulation. Computer Law & Security Review, 35(6), 105342.

Dounis, N. P. (2017). GDPR Regulatory Compliance and the Role of Internal Audit: Theoretical and Practical Approach. Int'l. In-House Counsel J., 11, 1.

Duli, B. (2021). Data transfers between the EU and US: the impact of schrems I and schrems II for cross-border data flows, privacy, and national security (Doctoral dissertation).

Fahey, E., & Terpan, F. (2023). The future of the EU-US privacy shield. In The Routledge Handbook of Transatlantic Relations (pp. 221-236). Routledge.

Fakeyede, O. G., Okeleke, P. A., Hassan, A. O., Iwuanyanwu, U., Adaramodu, O. R., & Oyewole, O. O. (2023). Navigating data privacy through IT audits: GDPR, CCPA, and beyond. International Journal of Research in Engineering and Science, 11(11).

Fedyk, A., Hodson, J., Khimich, N., & Fedyk, T. (2022). Is artificial intelligence improving the audit process?. Review of Accounting Studies, 27(3), 938-985.

Framework, B. E. (2015). The National Institute of Standards and Technology (NIST).

Geradin, D., Bania, K., & Karanikioti, T. (2022). The interplay between the Digital Markets Act and the General Data Protection Regulation. Available at SSRN 4203907.

Gilman, M. E. (2020). Five privacy principles (from the GDPR) the United States should adopt to advance economic justice. Ariz. St. LJ, 52, 368.

Gobeo, A., Fowler, C., & Buchanan, W. J. (2022). GDPR and Cyber Security for Business Information Systems. River Publishers.

Goshadze, K. (2020). The Data Protection Officer (DPO)-Ensuring Greater Data Protection Compliance. Law & World, 14, 41.

Hijmans, H., & Raab, C. D. (2018). Ethical Dimensions of the GDPR. Commentary on the General Data Protection Regulation, Cheltenham: Edward Elgar (2018, Forthcoming).

Hoofnagle, C. J., Van Der Sloot, B., & Borgesius, F. Z. (2019). The European Union general data protection regulation: what it is and what it means. Information & Communications Technology Law, 28(1), 65-98.

1. G. P. Team (2025). EU general data protection regulation (GDPR): an implementation and compliance guide. Packt Publishing Ltd.

Kasirzadeh, A., & Clifford, D. (2021, July). Fairness and data protection impact assessments. In Proceedings of the 2021 AAAI/ACM Conference on AI, Ethics, and Society (pp. 146-153).

King, D. (2019). Data classification: A means to an end. Journal of Data Protection & Privacy, 2(4), 324-330.

Knoke, F., & Nwankwo, I. (2022). Managing Data Protection Compliance through Maturity Models: A Primer. Eur. Data Prot. L. Rev., 8, 536.

La Torre, M., Botes, V. L., Dumay, J., & Odendaal, E. (2021). Protecting a new Achilles heel: the role of auditors within the practice of data protection. Managerial Auditing Journal, 36(2), 218-239.

Lachaud, E. (2020). ISO/IEC 27701 standard: Threats and opportunities for GDPR certification. Eur. Data Prot. L. Rev., 6, 194.

Leocádio, D., Malheiro, L., & Reis, J. (2024). Artificial Intelligence in Auditing: A Conceptual Framework for Auditing Practices. Administrative Sciences, 14(10), 238.

Li, Z. S., Werner, C., Ernst, N., & Damian, D. (2022). Towards privacy compliance: A design science study in a small organization. Information and Software Technology, 146, 106868.

Mahmodi Parchini, M. , Riazi, L. and Pour Ebrahimi, A. (2025). Comparison of Personal Data Protection Laws: Unique General Regulations under the European Union's General Data Protection Regulation (GDPR) and United States Laws. News Science Quarterly (NS), 13(4), 204-224. (In Persian)

Nannini, L., Bonel, E., Bassi, D., & Maggini, M. J. (2024). Beyond phase-in: assessing impacts on disinformation of the EU Digital Services Act. AI and Ethics, 1-29.

Nissenbaum, H. (2020). Protecting privacy in an information age: The problem of privacy in public. In The ethics of information technologies (pp. 141-178). Routledge.

Pandit, H. J. (2023). Making sense of Solid for data governance and GDPR. Information, 14(2), 114.

Regulation, G. D. P. (2019). GDPR. 2019.

Reis, O., Eneh, N. E., Ehimuan, B., Anyanwu, A., Olorunsogo, T., & Abrahams, T. O. (2024). Privacy law challenges in the digital age: a global review of legislation and enforcement. International Journal of Applied Research in Social Sciences, 6(1), 73-88.

Rhahla, M., Allegue, S., & Abdellatif, T. (2021). Guidelines for GDPR compliance in Big Data systems. Journal of Information Security and Applications, 61, 102896.

Rosenberger, A., Shvartzshnaider, Y., & Sanfilippo, M. (2021). Digital Contact Tracing in the EU: Data Subject Rights and Conflicting Privacy Governance. Proceedings of the Association for Information Science and Technology, 58(1), 819-821.

Saltarella, M., Desolda, G., & Lanzilotti, R. (2021, July). Privacy design strategies and the GDPR: A systematic literature review. In International Conference on Human-Computer Interaction (pp. 241-257). Cham: Springer International Publishing.

Sargiotis, D. (2024). Data Governance Frameworks: Models and Best Practices. In Data Governance: A Guide (pp. 165-195). Cham: Springer Nature Switzerland.

Sayankar, V. N. (2013). A Review on Information Systems Audit. Research Journal of Engineering and Technology, 4(3), 103-106.

Seo, J., Kim, K., Park, M., Park, M., & Lee, K. (2018). An analysis of economic impact on IoT industry under GDPR. Mobile Information Systems, 2018(1), 6792028.

Sharifi Kia, M. A. and Shabani Jahromi, F. (2022). The Condition of Considering the Data Personal in Cyberspace Comparative Review of European General Data Protection Regulation and Iranian law. Private Law, 19(1), 221-245. (In Persian)

Sim, J., Kim, B., Jeon, K., Joo, M., Lim, J., Lee, J., & Choo, K. K. R. (2023). Technical requirements and approaches in personal data control. ACM Computing Surveys, 55(9), 1-30.

Sovrano, F., Sapienza, S., Palmirani, M., & Vitali, F. (2022). Metrics, explainability and the European AI act proposal. J, 5(1), 126-138.

Tamburri, D. A. (2020). Design principles for the General Data Protection Regulation (GDPR): A formal concept analysis and its evaluation. Information Systems, 91, 101469.

Tankard, C. (2016). What the GDPR means for businesses. Network Security, 2016(6), 5-8.

Trakman, L., Walters, R., & Zeller, B. (2020). Digital consent and data protection law–Europe and Asia-Pacific experience. Information & Communications Technology Law, 29(2), 218-249.

Turillazzi, A., Taddeo, M., Floridi, L., & Casolari, F. (2023). The digital services act: an analysis of its ethical, legal, and social implications. Law, Innovation and Technology, 15(1), 83-106.

Zakerhosseini, S. (2020). Review the performance of the audit process based on auditors' knowledge of information technology. Journal of Accounting and Management Vision, 3(33), 73-98. (In Persian)

Zhou, L., Wub, Y., Wang, H., Yao, Y., Wangd, Y., & Jiao, Z. (2024, October). Information Protection Impact Assessment in China. In Proceedings of the 4th International Conference on Management Science and Software Engineering (ICMSSE 2024) (Vol. 244, p. 88). Springer Nature.

Zichichi, M., Ferretti, S., D’Angelo, G., & Rodríguez-Doncel, V. (2022). Data governance through a multi-DLT architecture in view of the GDPR. Cluster Computing, 25(6), 4515-4542.