tags:

views:

79

answers:

4
+2  Q: 

Outsourcing program development and retain privacy

Hi,

we are a small company and implement medium size programs for our clients, mostly in C++. Sometimes we are running out of time and we think about outsourcing the development of some parts of our programs. We are able to pay up to 50$ per hour if the programmer worths it.

But the problem that we face, is that of privacy. I mean, we want to be sure that the developer only concentrates on his/her tasks (for instance, implement, test and debug a function which does something specific) and that he/she does not play later or sells this information, because sometimes he/she needs to have a look at the whole code of the program, and we have had bad experiences with this.

What would you do in this case? I mean, apart from signing a contract, etc, which in some of the cases is not possible (programmers do not want to, etc), how would you deal with this situation?

Some possible options would be to send compiled as objects all the parts that this programmer does not need to touch. Another would be to obfuscate the code, etc

Thanks

+3  A: 

Make sure your contract restricts what the contractor can do with the source they have access to or other proprietary information they have access to. If you have employees, you have the same issues. Make sure a lawyer writes and/or reviews your contracts.

Jim Blizard  2009-11-12 15:38:02
+1 If the developer doesn't want to sign a contract, then they can't work for you. It's their choice, not yours.
Aaron Digulla  2009-11-12 15:41:28
+3  A: 

In many cases this is a design problem. If your code is reasonably decoupled and your requirements are well described you can let the outsider developers work against mocks/stubs. The problem is that having a clean, decoupled design, a well documented requirement, a set of unit tests and mocks/stubs requires a lot of time, a very scarce resource.

Manrico Corazzi  2009-11-12 15:38:42
That's a very good point. But note, debugging opens up a nasty can of worms.
dirkgently  2009-11-12 15:40:36
That depends on how strict is the "contract" (as in "design by contract") you provide to your outsourcers, and the quality of the tests you set up... but anyway planning things so that the components are indipendent can arise so many problems that you give it up all the same, in the end.
Manrico Corazzi  2009-11-12 15:51:33
+2  A: 

Thats what non-disclosure agreements are for. Some companies even make you sign one when you interview as in the interview they will have to reveal certain proprietary information to you in order to see if your a good fit.

Zoidberg  2009-11-12 15:42:01
ok, you all are right, but supposing they sign all the contracts of the world, how would you then proceed?
user  2009-11-12 15:48:58
Well, thats where the Lawyers come in. If you outsource, and someone wants to break a contract or non-disclosure agreement with you, they will do it, its the lawyers who go after them afterwards that keeps them from doing damage to you. THat being said, a technical solution would be that you provide the computer for doing the work, and the OS is setup by your IT department to guard against them removing code from the computer, or logging any large file transfers. I believe lots of monitoring tools exist.
Zoidberg  2009-11-12 16:01:15
+2  A: 

I'd recommend reading the chapters regarding government coding standards in Snow Crash.

More seriously. It's always a concern that they'll retain or misuse your code. I know several developers who have retained copies of code they've worked on from several jobs past.

The best advice I'd have is to try to reduce their need to see the whole codebase or sensitive data. By having solid test data and clean APIs you can do a lot to limit this. And of course, as mentioned by the others, a good contract is essential.

I'd recommend being cautious of having a too strict contract though, as if it ever did go to court it could potentially be thrown out. So make sure it's not overreaching.

Bryan McLemore  2009-11-12 15:47:49

related questions

My client is new to the software biz, what should they read to understand development projects and process?
IT Making Contact with Software Dev - Where to find good programmers
What types of software development tasks can be easily outsourced?
Where to Find Freelance Programmers
Does a business that is serious about its online strategy need an in house development team?
Tips for successful, long distance development?
Shortage of programmers?
How to find software development resources for a startup company?
sites for outsourced, task-orientated coding resources
Does outsourcing make you worry about the security of your job?
How to work with subcontractors
Should certification matter when hiring or outsourcing a person, or should we look further?
Outsourcing a project that needs an improvement in code quality
Outsourcing Classes by Supporting Unit Tests
How to safeguard an inside software development team from being outsourced?
Outsourcing and your job.
What is the one most important reason projects fail when done by external systems integrators?
Should you enforce coding practice on your third party development team?
Outsourcing
How do you handle poor quality code from a third party contractor in another country?
Hiring a Freelance Graphics Person
What to charge
Multi-site development
Is there a better alternative to rentacoder for developers?
Outsourcing