Do mobile app developers need to think about regulatory, security or privacy concerns?

WIth the popularity of apps, I was wondering if you think developers should think about regulatory, security or privacy concerns especially when developing apps for enterprise use.

Topics

Information Technology

Mobile Applications

Mobility

Security

Software Development

Answer This Question

Vanessa Ho

asked on Jan. 30, 2012

Recommended by:
Andrew Baker

Andrew Baker

Director, Service Operations, SWN Communications Inc.

Posted on Jan. 30, 2012

Yes, I think that developers of mobile and internet-connected applications need to be positively thinking about privacy and security issues, which will likely help them address any regulatory compliance issues. And this should be true whether or not the apps are intended for enterprise use, because of the following:

-- Security is something that has to be planned and developed in advance, so that it functions effectively and costs less than a bolted-on solution

-- Security and privacy are not just enterprise concerns

-- Whether or an app is intended for an enterprise audience, there's a good chance it will be used by enterprise employees, or connect enterprise infrastructure

The safer our applications, the better. Security needs to be built-in, rather than layered on afterwards.

-ASB: http://XeeMe.com/AndrewBaker

Show 1 more reply

Andrew Baker Replied on Jan. 30, 2012

Thanks, Vanessa. Please feel free to use my answer.

Vanessa Ho Replied on Jan. 30, 2012

Thanks Andrew. This is much appreciated

Craig Brennan

Business Analyst

Posted on Jan. 31, 2012

Absolutely. One of the major focuses of mobile development (phone, tablet, whatever) is to take already existing applications and make them tablet/phone-ready. If these applications display anything such as credit data (credit card numbers, credit scores, etc.) they are just as subject to compliance with the FCRA as the data that's displayed on the PC. The same goes in the health care industry with anything involving patient data (even as seemingly innocuous as a room #). HIPAA is ambiguous enough that most places trying to comply with it will over-compensate and err ont he side of caution. When you move from a wired environment to wireless, a lot of rules change about maintaining the same level of security.

Vanessa Ho Replied on Jan. 31, 2012

Thanks Craig for your response and you make some valid points. I am hoping that I can use your answer in an article that I am working on. It would be greatly appreciated and if you do agree, how you you like to be quoted in the article?