Information privacy is the major defining issue of today’s Internet enabled World.
To construct information systems from small mobile ‘apps’ to huge, heterogeneous, cloudified systems requires merging together skills from software engineering, legal, security and many other disciplines – including some outside of these fields! Only through properly modelling the system under development can we full appreciate the complexity of where personal data and information flows; and more importantly, effectively communicate this.
This book presents an approach based upon data flow modelling, coupled with standardised terminological frameworks, classifications and ontologies to properly annotate and describe the flow of information into, out of and across these systems. Also provided are structures and frameworks for the engineering process, requirements and audits; and even the privacy programme itself, but takes a pragmatic approach and encourages using and modifying the tools and techniques presented as the local context and needs require