Ethical Considerations
Because the platform holds student and staff data, a set of ethical standards was observed throughout development and deployment, not just bolted on at the end.
Data privacy and confidentiality — user information, particularly for students and mentors, is stored securely and accessible only to authorized roles. Sensitive data is never exposed publicly.
Non-disclosure agreement — a formal NDA between the development team and DeSIC keeps internal processes, user data, and incubation strategies confidential during and after the project.
User consent — students and staff who participated in testing or gave feedback were informed of the project's purpose and their rights, with consent obtained before any data was collected or used.
No-harm principle — the system is designed to avoid exposing users to risk or exploiting personal information, aiming for transparency and support rather than manipulation.
Security and integrity — authentication, role-based access control, and audit logging work together to protect the platform against misuse, unauthorized access, or data breaches.
Related pages
- Non-Functional Requirements for how these principles translate into concrete security requirements.
- Data Model for how audit history is captured structurally rather than bolted on separately.