Integrating A Practice Perspective To Privacy By Design

The goal of privacy by design (PbD) is to consider privacy aspects during all steps of a software and system design process in order to foster the development of privacy friendly technology. Current PbD approaches mainly focus on technological aspects of privacy in software engineering and rarely include viable approaches that take into account the context in which software systems are built and used. The future context of use however plays a crucial role for the effectiveness of privacy and security measures. Therefore, we propose to use a socio-technical design approach based on the established method of STWT (socio-technical walkthrough). This method allows multiple stake-holders to reflect on process models they design collaboratively over multiple sessions. Based on a privacy focused analysis of models from previous workshops we adapt the STWT and corresponding modeling guidelines to incorporate aspects relevant for privacy by design.