Perceptions of ICT Practitioners Regarding Software Privacy

Perceptions of ICT Practitioners Regarding Software Privacy

During software development activities, it is important for Information and Communication Technology (ICT) practitioners to know and understand practices and guidelines regarding information privacy, as software requirements must comply with data privacy laws and members of development teams should...

Full description

Bibliographic Details
Main Authors: Edna Dias Canedo, Angelica Toffano Seidel Calazans, Eloisa Toffano Seidel Masson, Pedro Henrique Teixeira Costa, Fernanda Lima
Format: Article
Language:English
Published: MDPI AG 2020-04-01
Series:Entropy
Subjects:
data privacy
ICT practitioners’ perception
general law of personal data protection
software development process
privacy requirements
Online Access:https://www.mdpi.com/1099-4300/22/4/429
id doaj-9cbb3ae6d2814572b4be7c2f1482412a
record_format Article
spelling doaj-9cbb3ae6d2814572b4be7c2f1482412a2020-11-25T02:28:54ZengMDPI AGEntropy1099-43002020-04-012242942910.3390/e22040429Perceptions of ICT Practitioners Regarding Software PrivacyEdna Dias Canedo0Angelica Toffano Seidel Calazans1Eloisa Toffano Seidel Masson2Pedro Henrique Teixeira Costa3Fernanda Lima4Department of Computer Science, University of Brasília (UnB), P.O. Box 4466, Brasília-DF 70910-900, BrazilUniversity center—UniCEUB, Brasília-DF 70790-075, BrazilUniversity center—UniCEUB, Brasília-DF 70790-075, BrazilDepartment of Computer Science, University of Brasília (UnB), P.O. Box 4466, Brasília-DF 70910-900, BrazilDepartment of Computer Science, University of Brasília (UnB), P.O. Box 4466, Brasília-DF 70910-900, BrazilDuring software development activities, it is important for Information and Communication Technology (ICT) practitioners to know and understand practices and guidelines regarding information privacy, as software requirements must comply with data privacy laws and members of development teams should know current legislation related to the protection of personal data. In order to gain a better understanding on how industry ICT practitioners perceive the practical relevance of software privacy and privacy requirements and how these professionals are implementing data privacy concepts, we conducted a survey with ICT practitioners from software development organizations to get an overview of how these professionals are implementing data privacy concepts during software design. We performed a systematic literature review to identify related works with software privacy and privacy requirements and what methodologies and techniques are used to specify them. In addition, we conducted a survey with ICT practitioners from different organizations. Findings revealed that ICT practitioners lack a comprehensive knowledge of software privacy and privacy requirements and the Brazilian General Data Protection Law <i>(Lei Geral de Proteção de Dados Pessoais, LGPD, in Portuguese)</i>, nor they are able to work with the laws and guidelines governing data privacy. Organizations are demanded to define an approach to contextualize ICT practitioners with the importance of knowledge of software privacy and privacy requirements, as well as to address them during software development, since LGPD must change the way teams work, as a number of features and controls regarding consent, documentation, and privacy accountability will be required.https://www.mdpi.com/1099-4300/22/4/429data privacyICT practitioners’ perceptiongeneral law of personal data protectionsoftware development processprivacy requirements
collection DOAJ
language English
format Article
sources DOAJ
author Edna Dias Canedo
Angelica Toffano Seidel Calazans
Eloisa Toffano Seidel Masson
Pedro Henrique Teixeira Costa
Fernanda Lima
spellingShingle Edna Dias Canedo
Angelica Toffano Seidel Calazans
Eloisa Toffano Seidel Masson
Pedro Henrique Teixeira Costa
Fernanda Lima
Perceptions of ICT Practitioners Regarding Software Privacy
Entropy
data privacy
ICT practitioners’ perception
general law of personal data protection
software development process
privacy requirements
author_facet Edna Dias Canedo
Angelica Toffano Seidel Calazans
Eloisa Toffano Seidel Masson
Pedro Henrique Teixeira Costa
Fernanda Lima
author_sort Edna Dias Canedo
title Perceptions of ICT Practitioners Regarding Software Privacy
title_short Perceptions of ICT Practitioners Regarding Software Privacy
title_full Perceptions of ICT Practitioners Regarding Software Privacy
title_fullStr Perceptions of ICT Practitioners Regarding Software Privacy
title_full_unstemmed Perceptions of ICT Practitioners Regarding Software Privacy
title_sort perceptions of ict practitioners regarding software privacy
publisher MDPI AG
series Entropy
issn 1099-4300
publishDate 2020-04-01
description During software development activities, it is important for Information and Communication Technology (ICT) practitioners to know and understand practices and guidelines regarding information privacy, as software requirements must comply with data privacy laws and members of development teams should know current legislation related to the protection of personal data. In order to gain a better understanding on how industry ICT practitioners perceive the practical relevance of software privacy and privacy requirements and how these professionals are implementing data privacy concepts, we conducted a survey with ICT practitioners from software development organizations to get an overview of how these professionals are implementing data privacy concepts during software design. We performed a systematic literature review to identify related works with software privacy and privacy requirements and what methodologies and techniques are used to specify them. In addition, we conducted a survey with ICT practitioners from different organizations. Findings revealed that ICT practitioners lack a comprehensive knowledge of software privacy and privacy requirements and the Brazilian General Data Protection Law <i>(Lei Geral de Proteção de Dados Pessoais, LGPD, in Portuguese)</i>, nor they are able to work with the laws and guidelines governing data privacy. Organizations are demanded to define an approach to contextualize ICT practitioners with the importance of knowledge of software privacy and privacy requirements, as well as to address them during software development, since LGPD must change the way teams work, as a number of features and controls regarding consent, documentation, and privacy accountability will be required.
topic data privacy
ICT practitioners’ perception
general law of personal data protection
software development process
privacy requirements
url https://www.mdpi.com/1099-4300/22/4/429
work_keys_str_mv AT ednadiascanedo perceptionsofictpractitionersregardingsoftwareprivacy
AT angelicatoffanoseidelcalazans perceptionsofictpractitionersregardingsoftwareprivacy
AT eloisatoffanoseidelmasson perceptionsofictpractitionersregardingsoftwareprivacy
AT pedrohenriqueteixeiracosta perceptionsofictpractitionersregardingsoftwareprivacy
AT fernandalima perceptionsofictpractitionersregardingsoftwareprivacy
_version_ 1724835722806951936

Similar Items