Privacy Design Strategies

In this paper we define the notion of a privacy design strategy. These strategies help to support privacy by design throughout the full software development life cycle, even before the design phase. Using current data protection legislation as point of departure we derive the following eight privacy design strategies: minimise, hide, separate, aggregate, inform, control, enforce, and demonstrate. We show that these design strategies provide a useful classification of privacy design patterns and the underlying privacy enhancing technologies, by validating them against two different models of ICT systems, as well as existing privacy principles.