本篇個案描述企業組織在佈署企業資料防護(Data Loss Prevention, DLP)產品時的過程中所面臨的問題，案例中主角肩負企業內部電子化活動推行任務，從上而下必須全面通盤考量各項資訊工作對企業內部所帶來的效益及風險成本。然而當內部員工逐漸改變了以往的紙本作業型態，對於電子化依賴的程度日漸增加，本中主角逐漸意識到企業E化後所相伴而來的資訊安全隱憂，面對企業資訊安全問題、員工隱私問題、外部法令保護、成本投入等多角度的交錯環節，本文主角該如何做出決策選擇，其中分寸拿捏都將是不同情境的考驗。
本篇論文採用哈佛式教學個案撰寫方式，主要內容包含個案本文及教學指引兩大部分。教學指引部分是對個案中的教學議題做深入說明，主要教學議題包含：資料防護管理、隱私權、資安法規、資訊安全及資訊治理。每個議題將就學術文獻及個案分析進行探討，透過個案學習過程希冀以案例驗證理論，再由理論分析來引領實務實施，能協助企業當面臨資訊安全議題時，在不同的時空背景下歸納出更適合且符合期待之決策。

This case describes the problems caused by deploying a data loss prevention
(DLP) system in an organization. The protagonist in this case was esponsible for the implementation tasks of e-business systems, so he needed to consider both benefit and cost risks within the overall tasks. However, when organization staffs gradually changed their work process without any papers, he consciously recognized that the enterprise shall face security issues caused by the deployment of e-business information systems, including the complicated problems of enterprise information security, employee’s personal privacy, external law regulation, and deployment cost. This is a big challenge for him to make right decisions in such complicated situations.

This writing of this case study utilizes Harvard case-based teaching method, and comprises two parts: case text and teaching guide. The teaching guide provides detailed material of each of teaching topics in this case. The topics include data loss prevention management, personal privacy, information security regulation, information security governance. Each of them is described from literature and analysis of case study. Through this case study, it hopes to well integrate both of theories and practices. It also helps enterprises make appropriate decisions on the issues of information security.

1. Mason, Richard O., Florence M. Mason, and Mary J.Culnan(1995), Ethics
of Information Management, Sage Publications.
2. Warren, Samuel D. and Brandeis, Louis D.(1890), The Right to Privacy,
Harvard Law Review, No.4, pp.193-220.
3. William L. Prosser (1960).Privacy (California Law Review).pp.388-389
4. Kenneth J. Arrow(1985).Information Asymmetry.pp.295
5. R. Mason(1996), "Four ethical issues of the information age",MIS
Quately,March, p.511