How Do IT Companies Address Ambiguity Resolution in Legal Requirements Specification? - A study focused on data protection laws
This page provides supplementary material for the research study:
“How Do IT Companies Address Ambiguity Resolution in Legal Requirements Specification? - A study focused on data protection laws”
The study investigates how software development companies deal with ambiguity in legal requirements, particularly those related to data protection regulations (e.g., GDPR and LGPD).
The results are based on semi-structured interviews with professionals from multiple organizations, aiming to identify factors and practices that influence how ambiguity is addressed during requirements elicitation and specification.
Supplementary Material
The following materials were used in the empirical study and are available for transparency and replication purposes.
Interview Script
Access the interview protocol used during the study.
Informed Consent Form (English)
Consent form provided to participants in English.
Download the Informed Consent Form
Informed Consent Form (Portuguese)
Original consent form used during data collection.
Download the Consent Form (Portuguese)
Interview-Based Study
The analysis identified several factors that influence ambiguity resolution in legal requirements specification. These factors were grouped into different categories.
Technical Factors
Organizational Factors
Personal Factors
Project-Related Factors
Central Story
The following model summarizes the core categories and their relationships, describing how IT companies address ambiguity in legal requirements specification.
Figure – Core categories and relationships identified in the study.
Replication Package
This repository serves as a replication package containing materials used in the study to support transparency and reproducibility of the research.
Researchers interested in replicating or extending this work are encouraged to use these materials.