Authors:
Vita Barletta
1
;
Giuseppe Desolda
1
;
Domenico Gigante
1
;
Rosa Lanzilotti
1
and
Marco Saltarella
2
Affiliations:
1
Computer Science Department, University of Bari Aldo Moro, Via Edoardo Orabona, 4, 70125 Bari BA, Italy
;
2
FINCONS SpA, Via Orfeo Mazzitelli, 258/E, 70124 Bari (BA), Italy
Keyword(s):
Privacy Design Patterns, GDPR, ISO 9241-210, Code Vulnerabilities.
Abstract:
Privacy is becoming an increasingly important factor in software production. Indeed, besides increasing software quality, privacy is a mandatory aspect of national and supranational regulations like GDPR. However, several aspects like lack of knowledge on privacy and data protection regulations ambiguities limit the adoption of proper privacy implementation mechanisms during the software lifecycle. To fill this gap, this paper presents a framework, MATERIALIST, which aims to guide developers in choosing privacy design patterns to be used during software development. In particular, this paper focuses on the selection of privacy design patterns starting from the GDPR requirements. In this way, what is currently prescribed by GDPR in a non-technical way becomes a practical solution that software developers can adopt during their work.