The primary purpose of this study is to construct a set of technical considerations, detail, supplementary protection of personal information management mechanisms and lacking for a public section as a case study to verify the enforceability of this management mechanism. This research mainly through literature, generate a set of personal data protection law based management mechanism in the first phase; The second phase uses the Delphi expert survey to confirm the suitability of this mechanism and the correct classification; Finally the third phase using a case study approach to evaluate the enforceability of this mechanism.