What is it about?
Catalonian startups struggle with GDPR compliance, especially smaller, younger, and non-tech firms. Using the TOE framework, we show that staff training mediates the impact of regulatory and technical complexities on compliance costs. We urge policymakers to provide clearer regulations, accessible technical support, and tailored training for startups.
Featured Image
Photo by S O C I A L . C U T on Unsplash
Why is it important?
This study is one of the first studies to explore GDPR compliance challenges specifically faced by tech startups in Catalonia, using the TOE framework to reveal how factors like firm size, age, and sector shape regulatory adoption. The results of the study inform policymakers and startups alike about the importance of simplifying regulatory language and creating affordable and accessible GDPR training initiatives for startups.
Perspectives
This project began with a simple question: how are tech startups really coping with GDPR? The more we spoke with founders and analyzed their responses, the clearer it became that we need to rethink how we support innovation under regulation. We hope this article invites researchers, policymakers, and entrepreneurs to collaborate more deeply in shaping a startup ecosystem to become more compliant and competitive.
Dr. Yelena Smirnova
University of Barcelona
Read the Original
This page is a summary of: Tech startups and general data protection regulation: an empirical exploration of compliance challenges, Journal of Small Business and Enterprise Development, April 2025, Emerald,
DOI: 10.1108/jsbed-09-2024-0495.
You can read the full text:
Contributors
The following have contributed to this page
