modified Delphi process

The modified Delphi process is a systematic method for building expert consensus. Originating from the RAND Corporation, the traditional Delphi method emphasizes expert anonymity, iterative rounds of questionnaires, controlled feedback, and statistical analysis. The 'modified' version often includes a preliminary literature review, a pre-developed draft for experts to react to, or a final face-to-face meeting to expedite consensus. This technique is recognized in ISO 31010:2019 (Risk management — Risk assessment techniques) as a valid tool for expert judgment, especially for emerging risks with insufficient data, such as evaluating novel privacy threats in a Privacy Information Management System (PIMS). It differs from standard expert interviews through its structured, anonymous, and iterative nature, which mitigates biases from dominant personalities and produces a more objective collective judgment for risk-based decision-making.

In enterprise risk management, the modified Delphi process follows clear steps. Step 1: 'Scoping and Panel Selection,' where a cross-functional expert panel (e.g., legal, IT security, R&D) is formed to address a defined problem, such as 'ranking the top five privacy risks associated with implementing generative AI.' Step 2: 'Iterative Rounds and Feedback Consolidation,' where a neutral facilitator sends an anonymous questionnaire. Responses are statistically and qualitatively summarized and returned to the panel in subsequent rounds, allowing experts to reconsider their initial judgments based on the group's aggregated, anonymous feedback. Step 3: 'Consensus and Reporting,' repeating rounds until opinions converge to a predefined threshold (e.g., >80% agreement). The final consensus report provides a defensible basis for actions like conducting a Privacy Impact Assessment (PIA) or updating corporate policies. A key measurable outcome is an auditable decision trail, which significantly improves compliance demonstration and audit success rates.

Taiwan enterprises face three primary challenges. First, 'Limited Expert Pool,' as finding a sufficient number of local, unbiased experts for niche domains like quantum computing security can be difficult. The solution is to broaden the search by collaborating with academic institutions, industry associations, and engaging international experts remotely. Second, 'Hierarchical Culture,' which may discourage junior experts from challenging senior opinions, even in an anonymous process. This can be mitigated by using a credible external facilitator to enforce process integrity and create psychological safety. Third, 'Resource Intensity,' as the full process can be time-consuming and costly for SMEs. To overcome this, enterprises should focus the method on high-impact, high-uncertainty risks and leverage digital platforms to streamline administration. A three-month pilot on a single critical issue is a recommended starting point.

Winners Consulting specializes in modified Delphi process for Taiwan enterprises, delivering compliant management systems within 90 days. Free consultation: https://winners.com.tw/contact