Jaap-Henk Hoepman

Making Privacy by Design concrete

The General Data Protection Regulation (GDPR) requires companies, among many other things, to apply Privacy by Design. As a concept Privacy by Design has been around for a few decades, but for many it has remained vague how to really apply it in practice.

Privacy Design Strategies make privacy by design more concrete. They translate complex and vague legal norms into more concrete technical requirements that are easier for engineers to understand and to design for. In this talk I will explain the Privacy Design Strategies, show how they were derived, and give examples of how they can be applied.

Jaap-Henk studied computer science at the Rijksuniversiteit Groningen, the Netherlands, and obtained his PhD at the University of Amsterdam based on work done at the Centre for Mathematics and Computer Science (CWI).

For several years he worked for the security group of KPN Research, the research division of one of the main Dutch telcos. He then returned to academia as an assistant professor at the Faculty of Computer Science of the University of Twente. From 2006 to 2013 he was senior scientist in the security group of TNO ICT, Groningen.

Currently he is an associate professor at the Institute for Computing and Information Sciences of the Radboud University Nijmegen, member of iHub, Radboud University’s interdisciplinary research hub on Security, Privacy, and Data Governance, and principal scientist of the Privacy & Identity Lab. He is also an associate professor in the IT Law section of the Transboundary Legal Studies department of the Faculty of Law of the University of Groningen. His research interests focus on privacy by design, and privacy friendly protocols for identity management and the Internet of Things.

He often speaks on international conferences and helps to familiarize and evangelize these complex concepts to the general public and to experts.