As Agile developers, putting our users first means taking their privacy seriously. No team wants a surprise pivot to a compliance project that throws off its momentum. And no one enjoys reading a cringeworthy email that personal information has been leaked! Let’s take a look at a few examples of how we can improve our practice.
Let’s say you get a story to add analytics to a page and it asks for a user's first and last name along with activity detail. That should set off your "personal information" alarm. Personal information can be thought of as anything relatable to an individual. Other examples would be date of birth, email address and social security number. Specific laws might also have requirements about how you handle personal information, or break it into categories like “sensitive personal information.” Storing or sharing personal information presents a variety of technical and policy challenges. Erring on the side of less (or zero) data when collecting any personal information is usually a good place to start.
Clear notice and consent is another essential principle to build trust and help meet your compliance obligations. For example, don't just bury an "I Agree" button after a long stream of words. Consider providing a simple summary along with more detailed version, aka "layered notice". The October 2019 version of Twitter’s privacy policy does this by providing an overview of the policy in large type at the top, a list of key takeaways, and a navigable sidebar with links throughout the lengthier policy. Here’s another example from the Department of Health and Human Services for HIPAA-regulated entities. Mozilla goes further by providing an overview page with links to variations for its respective products, a set of principles, and FAQs. Much nicer than an ocean of legal jargon. Take a look at sites you frequently visit or work on. How easily can you understand how user data is handled?
The examples above are reminders of the need to pause before diving into code. Are you using data you've already collected in a different way? Is there new sharing? Even if you already have permission, explaining a new use will help build trust with your users. Maybe just a modal or popup acknowledgement is all that’s needed. However, make sure the options are meaningful. This recent thread highlighted a confusing UI that might leave you wondering whether there was any real notice or choice involved. Always try to get feedback.
While we have many responsibilities to juggle when developing complicated user interfaces, the examples above should demonstrate that integrating privacy into our process isn’t such a big step away from what we’re doing already: putting our users’ interests first. The broader concept of privacy by design isn’t just about design, it’s about adopting the right mindset throughout our workflow.