As of May 25^th  2018, the General Data Protection Regulation (GDPR) started to apply after a long-lasting legislative process. With this regulation, the EU has legislated for a robust solution, which addresses individual rights and relevant obligations of service providers, and is directly applicable to all EU Member States. Additionally, the forthcoming Regulation on Privacy and Electronic Communications is expected to give new impetus to the way privacy is protected in electronic communications.

Despite the undisputable importance of the aforementioned legal developments, the practical implementation of privacy and data protection requirements is not always easy. This is largely due to the lack of proper integration of these requirements in the ‘heart’ of systems operation ‘by design’ and ‘by default’. At the same time, in an era of new technological challenges, such as Internet of Things and Artificial Intelligence, personal data may be processed by an unknown chain of entities, often leading to loss of control on the individuals’ side, detailed profiling or other unexpected processing of data. Therefore, examining what is at stake and where threats thereto originate from becomes of paramount importance.

In the light of the above, ENISA, DG CONNECT, the University of Rome Tor Vergata and LUISS University are organizing the Annual Privacy Forum (APF) 2019.

In APF 2019, we invite papers presenting original work on the themes of data protection and privacy and their repercussions on technology, business, government, law, society, policy and law enforcement. An inter-disciplinary approach is high in demand to contribute to bridging the gap between research, business models and policy, much like proposing new models and interpretations.

Submission can be made through Easychair at https://easychair.org/conferences/?conf=apf2019.

Research – Opinion Papers

APF 2019 seeks contributions from policy makers and implementers, Data Protection Authorities, industry, consultants, researchers, NGOs and as well as civil society. Opinion and interpretation papers are expected to reflect the views of the author(s). Submissions can be up to 8000 words long, excluding bibliography and appendices. Both research and opinion papers should deal with at least one of the following aspects:

• Implementation Aspects:
  • Privacy "by design" and "by default" paradigms
  • Adoption of PETs in contemporary digital services
  • State-of-the-art and development of PETs
  • Technical solutions for data portability and procedural issues
  • Technical solutions for preventing online and mobile tracking
  • Technical solutions for the enforcement and the implications of the subject’s right, e.g. right to erasure, access and correction
  • Information and consent in online environments: practical solutions and implementations
    

• Modelling of data protection and privacy requirements, such as:
  • Machine readable representations and automatic evaluation of policies
  • Enabling transparency: technological and organizational challenges
  • Aspects of privacy in artificial intelligence, autonomous agents, Internet of Things
  • Practical implementation of GDPR and ePrivacy requirements
    

• Sustainable business models and trustworthiness assessment for privacy friendly online services
  • Aspects of privacy impact and risk assessment
  • Security measures for the protection of personal data
  • Data protection certification
  • Economics of privacy and personal data

•  Issues of third countries interest

Student Papers

In order to encourage the participation of young researchers, the submission of papers by students is encouraged. These papers will be treated as thoroughly as full papers, but can be shorter (up to 4000 words) and reflect novel thinking that might not have been fully elaborated just yet.

Short Papers

In addition to student papers, short papers are invited as this call is open to anyone who has a sketch of an idea, opinion or a call for collaboration. Short papers should be up to 4000 words and should not overlap with work published elsewhere.

Review and Publication

Submissions of original work are invited; papers must not overlap substantially with work already published or simultaneously submitted to a journal or a proceedings bearing venue. Submissions must be drafted in English and need to comply with the Springer LNCS style guide, which can be found here and here. 

All submissions will be thoroughly reviewed by our PC members. We aim at minimal 3, average 4, reviews per paper. Authors must submit their papers according to conditions and within the deadline indicated below.

Proceedings will be published by Springer LNCS.

Submission can be made through Easychair at https://easychair.org/conferences/?conf=apf2019.

Important Dates