Abstract
Privacy related elements have become an essential part of any information system. Previous studies reveal a scarcity of research on privacy in software processes, few engineering practices and a lack of methodological support to address privacy requirements in software systems. Introducing Privacy-by-Design (PbD) into software developments is an advantageous solution to tackle privacy related concerns. This paper presents an integration of PbD goals into the ISO/IEC 29110 Basic profile for small software development organizations. The most frequently encountered privacy goals as well as privacy addressing practices from previous methodological proposals were taken into account and included in the form of tasks, work products and roles. As a practical example, we describe a real life project development of a health care system that motivated the creation of the ISO/IEC 29110 PbD extension.
| Original language | English |
|---|---|
| Title of host publication | Proceedings - 2018 International Conference on the Quality of Information and Communications Technology, QUATIC 2018 |
| Publisher | Institute of Electrical and Electronics Engineers Inc. |
| Pages | 56-64 |
| Number of pages | 9 |
| ISBN (Electronic) | 9781538658413 |
| DOIs | |
| State | Published - 26 Dec 2018 |
| Event | 11th International Conference on the Quality of Information and Communications Technology, QUATIC 2018 - Coimbra, Portugal Duration: 4 Sep 2018 → 7 Sep 2018 |
Publication series
| Name | Proceedings - 2018 International Conference on the Quality of Information and Communications Technology, QUATIC 2018 |
|---|
Conference
| Conference | 11th International Conference on the Quality of Information and Communications Technology, QUATIC 2018 |
|---|---|
| Country/Territory | Portugal |
| City | Coimbra |
| Period | 4/09/18 → 7/09/18 |
Bibliographical note
Publisher Copyright:© 2018 IEEE.
Keywords
- GDPR
- Privacy by design
- Software development
- Software engineering
- Very small entity