September 7th

14:00-14:15 Welcome, introductions and opening remarks
14:15-15:00 Keynote: Achim Klabunde (European Data Protection Supervisor) Chair: Jose M. del Alamo
Privacy Engineering after the GDPR: new opportunities, new challenges
With the full applicability of the GDPR since May 2018, the discipline of privacy engineering has acquired a new level of relevance. The legal obligation of data protection by design and by default requires stringent criteria and techniques to assess, evaluate and measure the appropriateness of the technical implementation of personal data processing operations. Data protection supervisory authorities will need to be able to judge whether a specific operation is really using the state of the art in implementing personal data protection safeguards, and controllers will need to understand which technical approaches remain valid in the new legal context. Privacy engineers, who have developed very good solutions and methodologies over the years will need to convince regulators and judges that the state of the art should be defined by existing good practices.
15:00-15:15 Coffee Break
15:15-16:30 SESSION 1 Chair: Jose Such
-Kim Wuyts, Laurens Sion and Wouter Joosen: LINDDUN GO: A Lightweight Approach to Privacy Threat Modeling
-Lukasz Olejnik: Shedding light on web privacy impact assessment: A case study of the Ambient Light Sensor API
-Laurens Sion, Dimitri Van Landuyt and Wouter Joosen: The Never-Ending Story: On the Need for Continuous Privacy Impact Assessment
16:30-16:45 Coffee Break
16:45-17:35 SESSION 2 Chair: Kim Wuyts
-Kalle Hjerppe, Jukka Ruohonen and Ville Leppänen: Extracting Layered Privacy Language Purposes from Web Services
-Imane Fouad, Cristiana Santos, Feras Al Kassar, Nataliia Bielova and Stefano Calzavara: On compliance of cookie purposes with the purpose specification principle
17:35-17:45 Coffee Break
17:45-19:00 SESSION 3 Chair: Isabel Wagner
-Giuseppe Garofalo, Tim Van Hamme, Davy Preuveneers and Wouter Joosen: A Siamese Adversarial Anonymizer for Data Minimization in Biometric Applications
-Aidmar Wainakh, Alejandro Sanchez Guinea, Tim Grube and Max Mühlhäuser: Enhancing Privacy via Hierarchical Federated Learning
-Franklin Leukam Lako, Paul Lajoie-Mazenc and Maryline Laurent: Reconciling Privacy and Utility for Energy Services: an Application to Demand Response Protocols
19:00 Closing remarks