Integrating privacy debt and VSE's software developments

Izaskun Santamaria, Xabier Larrucea*, Borja Fernandez-Gauna

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

Abstract

With the advent of regulations protecting users such as the General Data Protection Regulation, security and privacy concerns are playing a new role in small settings such as in very small entities. Their relevance is increasing, and privacy is being considered a Troy horse in software developments. In fact, privacy is a part of software architectural decisions, and they must be considered as a technical debt. The contributions of this paper are the following: a privacy debt definition with a principal and an interest, privacy-related activities to be considered within the ISO/IEC 29110 basic profile, and the use of the net present value within this context. All these contributions help us to integrate privacy debt and VSE's software developments.

Original languageEnglish
Article numbere2437
JournalJournal of software: Evolution and Process
Volume35
Issue number8
DOIs
Publication statusPublished - Aug 2023

Keywords

  • ISO/IEC 29110
  • privacy
  • security
  • technical debt

Fingerprint

Dive into the research topics of 'Integrating privacy debt and VSE's software developments'. Together they form a unique fingerprint.

Cite this