Agile Teams’ Perception in Privacy Requirements Elicitation: LGPD’s compliance in Brazil

Canedo, Edna Dias; Calazans, Angélica Toffano Seidel; Cerqueira, Anderson Jefferson; Costa, Pedro Henrique Teixeira; Masson, Eloisa Toffano Seidel

doi:10.1109/re51729.2021.00013

Cited by 15 publications

(18 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In software development, RV frequently occurs due to a variety of factors. Several studies have examined these factors, including poor communication [1][2][3][4][5][6][7][8][9], a lack of stakeholder engagement [5,8,10], and inadequate expertise [10][11][12][13]. Anjum et al [4] outlined several of them that lead to changes in requirements; for instance, if developer teams need to fix bugs or if the functionality needs to be improved, requirements may need to be changed.…”

Section: Causes Of Requirement Volatilitymentioning

confidence: 99%

Causes and Mitigation Practices of Requirement Volatility in Agile Software Development

Mohammad,

Kollamana

2024

Informatics

View full text Add to dashboard Cite

One of the main obstacles in software development projects is requirement volatility (RV), which is defined as uncertainty or changes in software requirements during the development process. Therefore, this research tries to understand the underlying factors behind the RV and the best practices to reduce it. The methodology used for this research is based upon qualitative research using interviews with 12 participants with experience in agile software development projects. The participants hailed from Austria, Nigeria, the USA, the Philippines, Armenia, Sri Lanka, Germany, Egypt, Canada, and Turkey and held roles such as project managers, software developers, Scrum Masters, testers, business analysts, and product owners. Our findings based on our empirical data revealed six primary factors that cause RV and three main agile practices that help to mitigate it. Theoretically, this study contributes to the body of knowledge relating to RV management. Practically, this research is expected to aid software development teams in comprehending the reasons behind RV and the best practices to effectively minimize it.

show abstract

Section: Causes Of Requirement Volatilitymentioning

confidence: 99%

Causes and Mitigation Practices of Requirement Volatility in Agile Software Development

Mohammad,

Kollamana

2024

Informatics

View full text Add to dashboard Cite

show abstract

“…Neste sentido, a LGPD se aplica tanto as organizações brasileiras quanto às estrangeiras, mesmo aquelas que não estão fisicamente no Brasil, mas que prestam serviços que envolvam dados pessoais, a fim de garantir a privacidade, ou seja, a capacidade de cada indivíduo controlar seus próprios dados (CANEDO et al, 2021;KALLONIATIS;KAVAKLI;GRITZALIS, 2008;PELLOSO PIURCOSKY et al, 2019).…”

Section: A Lei Geral De Proteção De Dadosunclassified

“…Para que ocorra esse controle é importante que as organizações levem em consideração, na criação de Políticas de Controle de Acesso (PCA) e outros documentos, os princípios da LGPD que norteiam a proteção de dados gerais, a saber: finalidade, adequação, necessidade, acesso livre, qualidade dos dados, transparência, segurança, prevenção, não discriminação e prestação de contas (BRASIL, 2018;CANEDO et al, 2021).…”

Section: A Lei Geral De Proteção De Dadosunclassified

Framework Conceitual Utilizando BPM para Identificação e Tratamento de Dados Pessoais e Sensíveis de Doadores de um Serviço de Hemoterapia

Pires¹,

Costa²,

Santos³

et al. 2023

Anais Da 2ª Conferência Brasileira De Planejamento Experimental E Análise De Dados: ConBraPA 2022

View full text Add to dashboard Cite

Resumo: Os estoques de bolsas de sangue para atender à população de pacientes que necessitam ser transfundidos é uma das principais preocupações dos serviços de hemoterapias dos Hospitais Públicos. A complexidade de gerenciamento da cadeia de suprimento de sangue abrange desde a captação de doadores de sangue até a dispensação das bolsas de sangue para serem transfundidas. Entender os processos da cadeia e manter a segurança dos dados pessoais e sensíveis dos doadores passa a ser uma das premissas para as organizações públicas de saúde. Objetivo: a pesquisa tem como objetivo a criação e aplicação de um framework conceitual que utiliza as abordagens e os conceitos de Business Process Management para apoiar o gerenciamento e a segurança dos dados pessoais de DS. Materiais e Métodos: o método adotado foi a revisão de literatura com base em artigos científicos e o uso do BPM na construção do framework conceitual e aplicá-lo em um serviço de hemoterapia de um Hospital Público Federal (HPF) -Brasil. Resultados: por meio do mapeamento do processo de doação de sangue e utilizando o framework conceitual, foram evidenciadas possíveis falhas que podem expor os dados pessoais e sensíveis de candidatos à doação de sangue que estariam em desconformidade com a Lei Geral de Proteção de Dados. Conclusão: A utilização do framework conceitual com BPM para modelar um processo organizacional facilita a identificação das vulnerabilidades dos dados pessoais e sensíveis do cidadão que circulam neste processo e estão em desacordo com as normas da Lei.

show abstract

“…Requirements elicitation focuses on discovering and understanding users' and stakeholders' needs (Palomares et al, 2021;Rueda et al, 2020) in order to translate them into features in the software (Lane et al, 2016). The success of software development depends on proper requirements elicitation (Canedo et al, 2021;Martins et al, 2019). The need to model a business process to help organizations arose due to the large and growing volume of information they possess; parallel to this, the elicitation of requirements has become one of the most critical phases in software development (Ahmed & Matulevicius, 2014;Aysolmaz et al, 2018;Aysolmaz & Demirörs, 2014;de la Vara et al, 2013).…”

Section: Requirements Elicitationmentioning

confidence: 99%

Business Process Modeling Supporting the Requirements Elicitation of an Audit System

Canedo

Bandeira

Gonçalves

et al. 2023

International Journal of Electronic Government Research

Self Cite

View full text Add to dashboard Cite

Requirements elicitation is a highly relevant part of the software development process. Due to the several techniques that exist to perform it, it is necessary to understand the complexity of this activity for it to be well performed, thus ensuring the quality of the final product. In addition, it is also worth emphasizing that the existence of well-defined processes is essential for the stakeholders' needs to be correctly identified in the initial stages of the software development process. This paper presents an experience report of the requirements elicitation and business process modeling teams. The teams used the best practices and reference frameworks to understand, model, and perform business process enhancements to the Brazilian Unified Health System General Audit Office (AUDSUS) audit system by using the business process model and notation (BPMN). Thus, all software requirements were specified based on the modeled business processes, providing a faster software development process and a more efficient information flow between stakeholders and the teams involved.

show abstract

Agile Teams’ Perception in Privacy Requirements Elicitation: LGPD’s compliance in Brazil

Cited by 15 publications

References 50 publications

Causes and Mitigation Practices of Requirement Volatility in Agile Software Development

Causes and Mitigation Practices of Requirement Volatility in Agile Software Development

Framework Conceitual Utilizando BPM para Identificação e Tratamento de Dados Pessoais e Sensíveis de Doadores de um Serviço de Hemoterapia

Business Process Modeling Supporting the Requirements Elicitation of an Audit System

Contact Info

Product

Resources

About