Privacy Champions in Software Teams: Understanding Their Motivations, Strategies, and Challenges

TitlePrivacy Champions in Software Teams: Understanding Their Motivations, Strategies, and Challenges
Publication TypeConference Paper
Year of Publication2021
AuthorsTahaei, M., Frik A., & Vaniae K.
Published inProceedings of the 2021 CHI Conference on Human Factors in Computing Systems
Page(s)1-15
Date Published05/2021
Abstract

Software development teams are responsible for making and implementing software design decisions that directly impact end-user privacy, a challenging task to do well. Privacy Champions—people who strongly care about advocating privacy—play a useful role in supporting privacy-respecting development cultures. To understand their motivations, challenges, and strategies for protecting end-user privacy, we conducted 12 interviews with Privacy Champions in software development teams. We find that common barriers to implementing privacy in software design include: negative privacy culture, internal prioritisation tensions, limited tool support, unclear evaluation metrics, and technical complexity. To promote privacy, Privacy Champions regularly use informal discussions, management support, communication among stakeholders, and documentation and guidelines. They perceive code reviews and practical training as more instructive than general privacy awareness and on-boarding training. Our study is a first step towards understanding how Privacy Champions work to improve their organisation’s privacy approaches and improve the privacy of end-user products.

URLhttps://dl.acm.org/doi/pdf/10.1145/3411764.3445768?casa_token=8vYO7j_t75AAAAAA:bRuQ-cjL78lwEY90ZNoVWzmXGd4UHnF3UDegUOeMp6JaF9FGmBIfDPRuY08SSZUBOetKnUm2P55Y
DOI10.1145/3411764.3445768