What is missing when building privacy-first apps?

Many developers understand the need for encrypted data at rest and in transit. As a result, when someone builds a product claiming to be privacy-first, they cite having the data encrypted at these endpoints in their backend. But, when their app's data needs to be processed, it's all done in plaintext until it either needs to be transferred or isn't needed. The processing of data is where there's a gap in the way developers currently build their apps. I've written a short piece on how multiparty computation can help with securing data while it's being used. I'm curious to hear how other programmers handle data when they build privacy-first apps. Also curious to hear what being a privacy-first app means to you! TIA! submitted by /u/badcryptobitch [link] [comments]