Privacy Champions in Software Teams: Understanding Their Motivations, Strategies, and Challenges

要旨

Software development teams are responsible for making and implementing software design decisions that directly impact end-user privacy, a challenging task to do well. Privacy Champions---people who strongly care about advocating privacy---play a useful role in supporting privacy-respecting development cultures. To understand their motivations, challenges, and strategies for protecting end-user privacy, we conducted 12 interviews with Privacy Champions in software development teams. We find that common barriers to implementing privacy in software design include: negative privacy culture, internal prioritisation tensions, limited tool support, unclear evaluation metrics, and technical complexity. To promote privacy, Privacy Champions regularly use informal discussions, management support, communication among stakeholders, and documentation and guidelines. They perceive code reviews and practical training as more instructive than general privacy awareness and on-boarding training. Our study is a first step towards understanding how Privacy Champions work to improve their organisation's privacy approaches and improve the privacy of end-user products.

著者
Mohammad Tahaei
University of Edinburgh, Edinburgh, United Kingdom
Alisa Frik
International Computer Science Institute, Berkeley, California, United States
Kami Vaniea
University of Edinburgh, Edinburgh, United Kingdom
DOI

10.1145/3411764.3445768

論文URL

https://doi.org/10.1145/3411764.3445768

動画

会議: CHI 2021

The ACM CHI Conference on Human Factors in Computing Systems (https://chi2021.acm.org/)

セッション: Developers / Authentication / Privacy Risks from Children to Adults

[A] Paper Room 12, 2021-05-12 17:00:00~2021-05-12 19:00:00 / [B] Paper Room 12, 2021-05-13 01:00:00~2021-05-13 03:00:00 / [C] Paper Room 12, 2021-05-13 09:00:00~2021-05-13 11:00:00
Paper Room 12
11 件の発表
2021-05-12 17:00:00
2021-05-12 19:00:00
日本語まとめ
読み込み中…