https://github.com/willfarrell/pass-sdlc

Privacy, Accessibility, Sustainability, Security Software Development Lifecycle (PASS-SDLC)
https://github.com/willfarrell/pass-sdlc

Last synced: about 1 month ago
JSON representation

Privacy, Accessibility, Sustainability, Security Software Development Lifecycle (PASS-SDLC)

• Host: GitHub
• URL: https://github.com/willfarrell/pass-sdlc
• Owner: willfarrell
• Created: 2022-05-27T16:16:39.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2023-09-14T03:25:04.000Z (over 2 years ago)
• Last Synced: 2025-08-01T03:52:34.082Z (7 months ago)
• Size: 10.7 KB
• Stars: 0
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          


  
PASS-SDLC

  Privacy, Accessibility, Sustainability, Security
Software Development Lifecycle



  Building with consumers through inclusive and ethical design.



## Privacy

- Meet the strictest internation approch to Privacy. GDPR / Bill C-11

- No 3rd party code that collects and/or shares Personaly Identifiable Information (PII)

- Additional layer of encryption within storage

- Write a privacy policy first to be a strict/short as possible. Privacy leads design/technology.

- Evaluate impact to privacy policy when adding new inputs/featues

## Accessibility

- [Web Content Accessibility Guidelines (WCAG)](https://www.w3.org/WAI/standards-guidelines/wcag/)

- Invest in UX and design to ensure it's easy to use

- Support i18n & i10n

- Uses Progressive Enhancement to ensure core functionality without JavaScript

- Works on older devices

- Works on on slow or intermitent networks

## Sustainability (Environmental)

- [Web Sustainability Guidelines (WSG)](https://w3c.github.io/sustyweb/#use-a-design-system-to-prioritize-interface-consistency)

- Use of green data centres

- Monitor carbon footprint for running the platform

- Estimate carbon footprint of visitors transmission of content

- Don't over resource (i.e. servers)

- Save-Data / Low bandwidth mode

## Security

- Follow industry best practices (i.e. [OWASP ASVS](https://github.com/OWASP/ASVS), [CIS](https://www.cisecurity.org))\

- Build to the highest standard possible, then document when a criteria needs to be loosen (maybe for UX). 

- Stay up to date

- Recieve a 3rd party audit periodically

What about performance? That's built into Accessibility & Sustainability.