Introduction

This guideline provides practical, step-by-step guidance for embedding security and privacy principles into software development. It aims to ensure that government software systems are secure, resilient, and protect personal data throughout their entire lifecycle.

With increasing digitalization of government services, the Government of Rwanda (GoR) recognized the need for a standardized approach to software security and privacy. This guideline consolidates the principles of Privacy by Design (PbD) and Security by Design, aligning with Law No 058/2021 on Data Protection and national minimum cybersecurity standards. It was developed to promote proactive, consistent, and auditable practices across all government software projects.

Initiation

Requirements and acquisition

Architecture and design

Development

Testing

Deployment

Operations and Maintenance

Upgrade / Decommission

Introduction

No Comments