Abstract. In a Connected Society, the importance of database privacy and security increases considerably. Security must be considered as a fundamental requirement in Information Systems (IS) development, and has to be taken into consideration at all stages of the development, instead of being an isolated and marginal requirement considered once the IS is already finished. We propose a methodology for designing secure databases, which allows to design secure databases taking into account constraints regarding sensitive information from the requirements phase.