Dealing with Privacy for Protecting Information

Privacy is being a trending topic in cybersecurity context not only because it is related to current regulations such as GDPR, but also because it has an impact on every citizen within this digitalized world. In fact, there is a huge number of software systems managing or processing information related to individuals in somehow, and therefore software developments producing these systems must consider specific privacy measures. Privacy by design concept and shift left strategies are considering privacy as a special topic to be treated along the software development project. In this context, Very Small Companies are required to modify their development processes for including privacy. This paper provides a modification of the ISO/IEC 29110 basic profile, a set of activities for designing a privacy preserving approach, and the results of applying differential privacy mechanisms with an illustrative example.