Privacy Design Strategies
This provides a framework for designing and evaluating privacy-friendly IT systems, addressing privacy concerns in software development.
The paper introduces privacy design strategies to help IT architects incorporate privacy by design early in software development, deriving eight strategies from data protection legislation that also classify privacy design patterns and technologies.
In this paper we define the notion of a privacy design strategy. These strategies help IT architects to support privacy by design early in the software development life cycle, during concept development and analysis. Using current data protection legislation as point of departure we derive the following eight privacy design strategies: minimise, hide, separate, aggregate, inform, control, enforce, and demonstrate. The strategies also provide a useful classification of privacy design patterns and the underlying privacy enhancing technologies. We therefore believe that these privacy design strategies are not only useful when designing privacy friendly systems, but also helpful when evaluating the privacy impact of existing IT systems.