Requisitos de Privacidade no Ciclo de Vida do Software: Uma Análise Bibliométrica e de Redes de Colaboração Global e Brasileira
Resumo
Contexto: A transformação digital e os regulamentos vigentes (GDPR/LGPD) exigem a integração da privacidade ao longo de todo o Ciclo de Vida do Produto de Software (SPLC). Objetivos: Investigar e comparar a produção científica global e brasileira sobre privacidade de dados no SPLC. Método: Análise bibliométrica e de redes sociais aplicada a 496 documentos da base de dados SCOPUS (2002-2025). Resultados: EUA e Europa lideram globalmente com redes coesas; o Brasil cresce pós-LGPD (2018), mas sua rede de pesquisa é altamente fragmentada em clusters isolados. 70% das publicações analisadas concentram-se em anais de conferências. Tematicamente, a literatura global evidencia discussões sobre IA, enquanto a nacional concentra-se em estudos empíricos. Conclusões: A literatura prioriza as fases iniciais do desenvolvimento, o que sugere uma lacuna de pesquisa nas etapas finais do SPLC e evidencia a necessidade de hubs colaborativos mais integrados no cenário nacional.
Referências
Almagribi, A. B., Ardianto, F., Taufan, A., and Kristomo, D. (2025). How is Software Engineering Linked to Business? A Scopus-Based Bibliometric and Visualization. The Indonesian Journal of Computer Science, 14(1).
Andrade V.C., Freitas, C.O.A, Reinehr S., and Malucelli A. (2023). Personal Data Privacy in Software Development Processes: A Practitioner’s Point of View. IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom).
ANPD (2025). Autoridade Nacional de Proteção de Dados. Comunicado de Incidente de Segurança (CIS). [link].
Baldassarre, M.T., Caivano, D., Dimauro, G., Romano, S., and Scanniello, G. (2021). On internet of-things devices in ambient assisted living solutions. In: International Conference on Information Systems Development.
Canedo, E.D., Calazans, A.T.S., Masson, E.T.S., Costa, P.H.T., and Lima, F. (2020). Perceptions of ICT practitioners regarding software privacy. Entropy.
Cerqueira, D.A., Mello, R.M., and Travassos, G.H. (2023). Um checklist para inspeção de privacidade e proteção de dados pessoais em artefatos de software. CIbSE 2023 - XXVI Ibero-American Conference on Software Engineering.
Campanile, L., Iacono, M., and Mastroianni, M. (2022). Towards privacy-aware software design in small and medium enterprises. IEEE DASC/PiCom/CBDCom/CyberSciTech.
Cartaxo, B., Pinto, G., and Soares, S.(2018). The role of rapid reviews in supporting decision making in software engineering practice. In: Proceedings of the 22nd International Conference on Evaluation and Assessment in Software Engineering 2018 (EASE ’18), pp. 24–34. Association for Computing Machinery (ACM).
CNJ. Conselho Nacional de Justiça. Comunicado de Incidente de Segurança. (2025). Disponível em: [link].
Conceição, F., Dias Lousã, M. J., and Pereira de Morais, J. C. (2026). Security and Risk in Software Development Projects: A Bibliometric Review.
GDPR. (2016). General Data Protection Regulation. [link].
Hansen, M., Köhntopp, K., and Pfitzmann, A. (2002). The open source approach - Opportunities and limitations with respect to security and privacy. Computers and SecurityVolume 21, Issue 5, Pages 461 – 471.
Hosseini, M., Jahanshahlou F., Akbarzadeh M.A., Zarei M., and Vaez-Gharamaleki Y. (2024). Formulating research questions for evidence-based studies. Journal of Medicine, Surgery, and Public Health.
Iris, R., Dov, D., and Shmuel, K. (2002). OPM/Web - Object-process methodology for developing Web applications. Annals of Software EngineeringVolume 13, Issue 1-4, Pages 141 - 161.
ITRC. (2024). Identity Theft Resource Center. ITRC H1 Data Breach Analysis. [link].
Kalloniatis, C., Kavakli, E., and Stefanos, G. (2008). Addressing privacy requirements in system design: The PriS method. Requirements Engineering.
LGPD (2018), Presidência da República. Lei Geral de Proteção de Dados (LGPD - Lei nº 13.709, de 14 de agosto de 2018). [link].
Muhammad, G., Pratama, A.R., Shaloom, C., and Cassandra, C. (2023). Cybersecurity Awareness Literature Review: A Bibliometric Analysis. 2023 International Conference on Informatics, Multimedia, Cyber and Informations System (ICIMCIS).
Öztürk, O., Kocaman, R., and Kanbach, D. (2024). How to design bibliometric research: an overview and a framework proposal. Review of Managerial Science. DOI: 10.1007/s11846-024-00738-0.
Peixoto M., Ferreira D., Cavalcanti M., Silva C., Vilela J., Araújo J., and Gorschek T (2023). The perspective of Brazilian software developers on data privacy. The Journal of Systems \& Software
Piras, L., Al-Obeidallah, M. G., Praitano, A., Tsohou, A., Mouratidis, H., Gallego-Nicasio Crespo, B., ... & Zorzino, G. G. (2019). DEFeND architecture: a privacy by design platform for GDPR compliance. In International conference on trust and privacy in digital business (pp. 78-93). Cham: Springer International Publishing.
Rodrigues, N.S, Mariano, A.M, and Ralha, C.G. (2023). Author name disambiguation literature review with consolidated meta-analytic approach. International Journal on Digital Libraries.
Santanna, J., Weber, C., Prado, J.M.K., and Ardigo, J.D. (2023). A questão da privacidade no regime de informação contemporâneo no contexto da Ciência da Informação. Revista Ibero-Americana de Ciência da Informação.
Saraiva, J., Soares, S. (2023). Privacy and Security documents for Agile Software Engineering: An experiment of LGPD Inventory adoption. 2023 ACM/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM).
Shapiro, S.S. (2010). Privacy by design: moving from art to practice. Communications of the ACM v. 53, n. 6, p. 27–29.
Silva, D. G., Countinho, C., and Costa, C. J. (2025). A Bibliometric Analysis of Free Open-Source Software Adoption (2001-2023). Procedia Computer Science, 263, 1-8.
Singh, V.K., Singh, P., Karmakar M., Leta J., and Mayr P. (2021). The journal coverage of Web of Science, Scopus and Dimensions: A comparative analysis. Scientometrics. SWEBOK (2024). Guide to the Software Engineering Body of Knowledge v4.0. IEEE Computer Society.
Toval, A., Olmos, A., and Piattini, M. (2002). Legal Requirements Reuse: A Critical Success Factor for Requirements Quality and Personal Data Protection. Proceedings of the IEEE Joint International Conference on Requirements Engineering (RE’02).
UNCTAD (2026). United Nations Conference on Trade and Development. Data protection and privacy legislation worldwide. [link].
Valero-Ancco, V. N., Lujano-Ortega, Y., Calderon-Quino, K. M., Gutierrez, F. S., Pari-Orihuela, M., and Bustinza-Choquehuanca, S. (2025). Personal Data Protection in the Era of Digital Surveillance: A Bibliometric Analysis of Scientific Production (2014–2024). Revista Electrónica de Ciencia Penal y Criminología, 27(1).
Wasserman, S. and Faust, K. (1994). Social Network Analysis: Methods and Applications. Cambridge University Press, Cambridge. ISBN 0521387078.
