Building on the success of the 1st edition Annual Privacy Forum - APF’2012

The 2nd edition of APF will be jointly organized by the European Union Agency for Network and Information Security (ENISA), EC DG CONNECT and as local organizer the Systems Security Laboratory (SSL) of the University of Piraeus. The event will take place on 20th and 21st of May 2014 during the Greek Presidency of the Council of the EU.

Venue: Royal Olympic Hotel, Athens center                                                               

#APF14 #privacy


DAY I,  20th of May


8:30- 9:00  Registration & welcome pack

9:00- 9:40  Opening

Chair & welcome address: Prof. Sokratis K. Katsikas,  University of Piraeus        

  • Menelaos Daskalakis, SG for Telecommunications and Posts, Hellenic Ministry of Infrastructure, Transport & Networks, Representative of Greek Presidency of the Council of the EU

  • Paul Timmers, Director Sustainable & Secure Society, EC DG CONNECT

  • Silvia-Adriana Ticau, Member of the European Parliament

  • Prof. Udo Helmbrecht, Executive Director, ENISA

9:40- 11:00   Keynotes

Chair: Prof. Reinhard Posch, Graz University of Technology

    • Gerold Hubner, Chief Product Security Officer, SAP
    • Peter Fleischer, Global Privacy Counsel, Google

11:00- 11.15  Tea and coffee break

11:15-12:45   Paper session "Privacy by design"

Chair: Danezis George, University College London

  • Privacy by Design: From Technologies to Architectures (Position Paper) , Thibaud Antignac and Daniel Le Metayer
  • PEARs: Privacy Enhancing Architectures,  Antoino Kung
  • Privacy-Preserving Statistical Data Analysis on Federated Databases,  Dan Bogdanov, Liina Kamm, Sven Laur, Pille Pruulmann-Vengerfeldt, Riivo Talviste and Jan Willemson Presentation
  • Privacy By Encrypted Databases, Patrick Grofig, Isabelle Hang, Martin Harterich, Florian Kerschbaum, Mathias Kohler, Andreas Schaad, Axel Schroepfer and Walter Tighzert Presentation


The EU Data Protection Reform: updated perspectives and the challenges of Big Data, Giovanni Buttarelli, Assistant Supervisor, EDPS

13:00- 14:00  Lunch

14:00- 14:30  Opinion papers


APF position papers

Chair: Athena Bourka, NIS expert, ENISA

  •  “On the concept of pseudonymous data as introduced by the European Parliament”, Romain Robert,  BE DPA

  • “Personal data breach notification: some lessons learnt pending the new data protection regulation”, Manuel Garcia Sanchez, ES DPA

  • “Data Loss Prevention Systems: Security vs Privacy”, Konstantinos Limniotis and Georgia Panagopoulou, GR DPA

  •  “ORG Information System in the System of Basic Registers - Czech Republic”, Eva Vrbova , CZ DPA

14:30- 15:45  Panel "Privacy for the Cloud"

Chair: Ilias Chantzos, Symantec 

  •  Agnieszka Wodecka, Software & Services, Cloud Unit, EC DG CONNECT
  •  Nicolas Dubois, Data Protection Unit, EC DG Justice
  •  Ilias Chantzos, Senior Director, Government Affairs EMEA, Symantec
  •  Caspar Bowden, privacy advocate


15:45- 16:00  Tea and coffee break

16:00-17:30   Paper session "Analysis of architectures"

Chair: Alberto Crespo, Atos Spain S.A

  • Accountable surveillance practices: is the EU moving in the right direction?, Fanny Coudert
  • TAM-VS: A Technology Acceptance Model for Video Surveillance, Erik Krempel and Jurgen Beyerer
  • Towards a Multidisciplinary Framework to Include Privacy in the Design of Video Surveillance Systems, Zhendong Ma, Denis Butin, Francisco Jaime, Fanny Coudert, Antonio Kung, Claire Gayrel, Antonio Mana, Christophe Jouvray, Nathalie Trussart, Nathalie Grandjean, Victor Manuel Hidalgo, Mathias Bossuet, Fernando Casado and M. Carmen Hidalgo
  • A framework for privacy analysis of ICN architectures, Nikos Fotiou, Somaya Arianfar, Mikko Sarela and George Polyzos Presentation

17:30- 19:00  Panel "Software defined and Information-Centric networks and their impact on privacy"

Chair:  Prof. Panagiotis Demestichas, University of Piraeus  

  • Prof. George Polyzos, Department of Informatics, Athens University of Economics and Busines Presentation

  • Prof Antonio Lioy, Politecnico di Torino, project SECURED

  • George Agapiou, OTE, project UNIFY

  • Tasos Kourtis, NCSR Demokritos, Project T-NOVA



20:00  Conference dinner

Welcome talk ISACA

Ron Hale, CISM, ISACA/ITGI, Acting CEO and Chief Knowledge Officer

Christos K. Dimitriadis, CISM, CISA, CRISC, INTRALOT Group Head of Information Security, Compliance and Innovation


 *APF Dinner will be offered at . The group departure will be organised at 19:10 in front of the hotel. Opening toast from 19:45.



 DAY II, 21st of May


8:30- 9:00  Tea and coffee

9:00-10:30 Paper session "Identity management"

Chair: Kai Rannenberg, CEPIS

  •  Auctioning Privacy- Sensitive Goods, Nicola Jentzsch
  • Privacy-ABCs to Leverage Identity Management as a Service, Ahmad Sabouri and Ronny Bjones
  • My Data, Your Data, Our Data: Managing Privacy Preferences in Multi-owners Personal Data, Stefania Gnesi, Ilaria Matteucci, Corrado Moiso, Paolo Mori, Marinella Petrocchi and Michele Vescovi 
  • Towards electronic identification and trusted services for biometric authenticated transactions in the Single Euro Payments Area, Nicolas Buchmann, Christian Rathgeb, Harald Baier and Christoph Busch Presentation

10:30- 10:45  Tea and coffee break

10:45- 11:45 Keynotes

Chair & welcome note: Christos K. Dimitriadis, INTRALOT

  • Peter Schaar, Chairman European Academy for Freedom of Information and Data Protection, EAID Presentation
  • Yves LeRoux, Chair of the ISACA Privacy Task Force

11:45- 12:00 Status update on data protection regulation, Nicolas Dubois, EC DG Justice

12:00- 13:00 Panel "Privacy and confidentiality of communications in the EU— risks and vulnerabilities, market and policy solutions"

Chair: Rosa Barcelo, EC DG CONNECT

  • Zsuzsanna Belenyessy, Legal officer, EDPS
  • Christian Horchert, IT–Security consultant
  • Prof  Joachim Posegga, Institute for IT Security and Security Law (ISL), University of Passau Presentation
  • Jenny Paschen, LL.M. Global Privacy Counsel, Vodafone


The panel discussion will discuss these risks and vulnerabilities. Furthermore, it explores market and policy solutions to the perceived lack of privacy and security of networks and devices.  What is the role of research? What should companies do?  standards? mandatory requirements?

13:00- 14:00  Lunch

14:00- 15:30   Panel "Privacy by design"

Chair: Prof. Bart Preneel, KU Leuven

  • Daniel Le Métayer, Head of the LICIT Exploratory Action, Directeur de Recherche, INRIA 
  • Danezis George, Reader Security and Privacy Engineering, University College London
  • David Francis, UK Cyber Security Officer Huawei Technologies Presentation
  • Eleni Kosta, Assistant Professor of Technology Regulation, Tilburg University


15:30- 15:45  Wrap up APF 2014 &  Announcement APF 2015 

Demosthenes Ikonomou, Head of Information Security & Data Protection Unit,  ENISA

CSP Forum  handover

Martin Muehleck, EC DG CONNECT 

Antonio Kung, PRIPARE project coordinator

Networking break

CSP Forum  WELCOME Registration