A holistic list of privacy-preserving measures for system development life cycles

Tools

Hills, Alida and Da Veiga, Adéle and Loock, Mariaan and Renaud, Karen; Guarda, Teresa and Portela, Filipe and Gatica, Gustavo, eds. (2025) A holistic list of privacy-preserving measures for system development life cycles. In: Advanced Research in Technologies, Information, Innovation and Sustainability. Communications in Computer and Information Science . Springer, CHL, pp. 283-300. ISBN 9783031840784 (https://doi.org/10.1007/978-3-031-84078-4_20)

[thumbnail of Hills-etal-ARTIIS-2024-A-holistic-list-of-privacy-preserving-measures]
Preview
 Text. Filename: Hills-etal-ARTIIS-2024-A-holistic-list-of-privacy-preserving-measures.pdf
Accepted Author Manuscript
License: Creative Commons Attribution 4.0 logo
Download (965kB)| Preview

Abstract

Personal information, as a key resource for companies, must be kept confidential as per the relevant data protection regulations. The same data protection regulations provide employees and customers the right to control their personal information. IT software is used to create, edit, store, and delete this personal information. However, cyber-attacks, security concerns, and data breaches relating to the personal information of customers and employees occur at an alarming rate, violating the confidentiality and privacy of said customers and employees. Privacy by Design (PbD) should be embedded into traditional Information Technology (IT) software development life cycles (SDLCs) to minimise data loss or breaches of personal information to aid in ensuring end-to-end privacy and confidentiality of personal data. Moreover, IT software must comply with data protection regulations to minimise data loss or breaches of personal information. A scoping literature review was conducted to gain insight into PbD and data protection regulations principles that are embedded into IT SDLC phases. Relevant articles were analysed using a qualitative approach. Privacy-preserving measures are identified that can be used to meet the PbD and data protection regulations requirements. The contribution of this paper is a holistic list of privacy-preserving measures that can be utilised to embed privacy considerations data protection regulations into the IT SDLC phases.

ORCID iDs

Hills, Alida, Da Veiga, Adéle, Loock, Mariaan and Renaud, Karen ORCID logoORCID: https://orcid.org/0000-0002-7187-6531; Guarda, Teresa, Portela, Filipe and Gatica, Gustavo
  • Item type:Book Section
    ID code:90879
    Dates:
    Date
    Event
    13 March 2025
    Published
    12 March 2025
    Published Online
    15 July 2024
    Accepted
    10 June 2024
    Submitted
    Subjects:?? QA76-890 ??
    Department:Faculty of Science > Computer and Information Sciences
    Depositing user: Pure Administrator
    Date deposited:17 Oct 2024 11:08
    Last modified:14 Apr 2025 08:51
    Related URLs:
    URI:https://strathprints.strath.ac.uk/id/eprint/90879
CORE (COnnecting REpositories)