Abstract
With the advent of regulations protecting users such as the General Data Protection Regulation, security and privacy concerns are playing a new role in small settings such as in very small entities. Their relevance is increasing, and privacy is being considered a Troy horse in software developments. In fact, privacy is a part of software architectural decisions, and they must be considered as a technical debt. The contributions of this paper are the following: a privacy debt definition with a principal and an interest, privacy-related activities to be considered within the ISO/IEC 29110 basic profile, and the use of the net present value within this context. All these contributions help us to integrate privacy debt and VSE's software developments.
Original language | English |
---|---|
Article number | e2437 |
Journal | Journal of software: Evolution and Process |
Volume | 35 |
Issue number | 8 |
DOIs | |
Publication status | Published - Aug 2023 |
Keywords
- ISO/IEC 29110
- privacy
- security
- technical debt