Data, data, everywhere: quantifying software developers' privacy attitudes

Dirk van der Linden; Irit Hadar; Matthew Edwards; Awais Rashid

Data, data, everywhere: quantifying software developers' privacy attitudes

Dirk van der Linden, Irit Hadar, Matthew Edwards, Awais Rashid

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

Abstract

Understanding developers' attitudes towards handling personal data is vital in order to understand whether the software they create handles their users' privacy fairly.

We present the results of a study adapting an existing user-focused privacy concern scale to a software development context and running it with a sample of 123 software developers, in order to validate it and develop a model for measuring the extent to which a software developer is (dis)favorable to ensuring their users' privacy. The developed scale exceeds thresholds for internal reliability (α>.8), composite reliability (CR>.8), and convergent validity (AVE>.6).

Our findings identified a model consisting of three factors that allows for understanding of developers' attitudes, including: (1) informed consent, (2) data minimization, and (3) data monetization.

Through analysis of results from the scale's deployment, we further discuss mismatches between developers' attitude and their self-perceived extent of properly handling their users' privacy, and the importance of understanding developers' attitude towards data monetization.

Original language	English
Title of host publication	Proceedings of the 9th International Workshop on Socio-Technical Aspects in SecuriTy (STAST)
Publisher	Springer
Publication status	Published - 2019

Research Groups and Themes

Cyber Security

Handle.net

Persistent link

Why Johnny doesn't write secure software? Secure software development by the masses
Rashid, A. (Principal Investigator) & Hallett, J. (Researcher)
1/10/18 → 31/12/21
Project: Research

Cite this

@inproceedings{b0c93cd6944f46c09548ef6a5e705847,

title = "Data, data, everywhere: quantifying software developers' privacy attitudes",

abstract = "Understanding developers' attitudes towards handling personal data is vital in order to understand whether the software they create handles their users' privacy fairly. We present the results of a study adapting an existing user-focused privacy concern scale to a software development context and running it with a sample of 123 software developers, in order to validate it and develop a model for measuring the extent to which a software developer is (dis)favorable to ensuring their users' privacy. The developed scale exceeds thresholds for internal reliability (α>.8), composite reliability (CR>.8), and convergent validity (AVE>.6). Our findings identified a model consisting of three factors that allows for understanding of developers' attitudes, including: (1) informed consent, (2) data minimization, and (3) data monetization. Through analysis of results from the scale's deployment, we further discuss mismatches between developers' attitude and their self-perceived extent of properly handling their users' privacy, and the importance of understanding developers' attitude towards data monetization.",

author = "\{van der Linden\}, Dirk and Irit Hadar and Matthew Edwards and Awais Rashid",

year = "2019",

language = "English",

booktitle = "Proceedings of the 9th International Workshop on Socio-Technical Aspects in SecuriTy (STAST)",

publisher = "Springer",

address = "United States",

}

TY - GEN

T1 - Data, data, everywhere: quantifying software developers' privacy attitudes

AU - van der Linden, Dirk

AU - Hadar, Irit

AU - Edwards, Matthew

AU - Rashid, Awais

PY - 2019

Y1 - 2019

N2 - Understanding developers' attitudes towards handling personal data is vital in order to understand whether the software they create handles their users' privacy fairly. We present the results of a study adapting an existing user-focused privacy concern scale to a software development context and running it with a sample of 123 software developers, in order to validate it and develop a model for measuring the extent to which a software developer is (dis)favorable to ensuring their users' privacy. The developed scale exceeds thresholds for internal reliability (α>.8), composite reliability (CR>.8), and convergent validity (AVE>.6). Our findings identified a model consisting of three factors that allows for understanding of developers' attitudes, including: (1) informed consent, (2) data minimization, and (3) data monetization. Through analysis of results from the scale's deployment, we further discuss mismatches between developers' attitude and their self-perceived extent of properly handling their users' privacy, and the importance of understanding developers' attitude towards data monetization.

AB - Understanding developers' attitudes towards handling personal data is vital in order to understand whether the software they create handles their users' privacy fairly. We present the results of a study adapting an existing user-focused privacy concern scale to a software development context and running it with a sample of 123 software developers, in order to validate it and develop a model for measuring the extent to which a software developer is (dis)favorable to ensuring their users' privacy. The developed scale exceeds thresholds for internal reliability (α>.8), composite reliability (CR>.8), and convergent validity (AVE>.6). Our findings identified a model consisting of three factors that allows for understanding of developers' attitudes, including: (1) informed consent, (2) data minimization, and (3) data monetization. Through analysis of results from the scale's deployment, we further discuss mismatches between developers' attitude and their self-perceived extent of properly handling their users' privacy, and the importance of understanding developers' attitude towards data monetization.

M3 - Conference Contribution (Conference Proceeding)

BT - Proceedings of the 9th International Workshop on Socio-Technical Aspects in SecuriTy (STAST)

PB - Springer

ER -

Data, data, everywhere: quantifying software developers' privacy attitudes

Abstract

Research Groups and Themes

Handle.net

Fingerprint

Projects

Why Johnny doesn't write secure software? Secure software development by the masses

Cite this