Privacy Summits

The Liberty Public Policy Expert Group (PPEG) has run a programme of Privacy Summit events across the globe, with past events held in Berlin, Brussels, Washington DC, London, Basel, Yokohama, Tokyo and Stockholm.

The aim of these events has been to get privacy stakeholders from many different disciplines (IT, policy, regulation, legal, academic) round the table for a free-form, peer to peer discussion of strategic issues and possible solutions.

As the series unfolded, we quickly found that a major stumbling block was the lack of a shared terminology and model for the basic concepts of identity data and privacy. It was too easy for useful discussions of 'second-order' topics such as trust and privacy to get mired in largely unnecessary confusion over basic concepts and terminology. As a result, we used the Berlin and Brussels summits to generate reports which we believe help move towards such shared understanding.

In particular, the Brussels report sets out simple models which illustrate the different 'layers' of identity data, their application in different 'sectors' (such as employment, healthcare, tax and so on), and the relative roles of credentials, attributes and indices. The report then illustrates concepts such as identity 'contexts', the establishment of contexts which span sectors, and some of the ways in which architecture, technology and policy need to interact in order for the system as a whole to function correctly.

We used the Washington DC summit as an opportunity to test the usefulness of these models, and found that they quickly allowed us to establish a common level of understanding amongst all the participants. That enabled us to move on to a productive discussion of the 'second-order' topics and capitalise fully on the skills and experience of the assembled stakeholders.

In subsequent meetings, we complemented these simple 'identity and privacy' models with a further set which explain why a multi-stakeholder 'identity and privacy' discussion can be difficult to manage, what factors can prevent one from reaching the 'second-order' concepts mentioned above, and what to do about it. Again, we tested these models at the summits in London and Basel, and have continued to make use of them in subsequent meetings.

The report from the London and Basel meetings contains both sets of models, so as to make them available in a single convenient document.

Additional Resources

Privacy Summit Meeting at Net-ID Berlin - Summary Report

•  Privacy-Summit-Final.pdf 183.44 kB

070423 Privacy Summit Brussels Summary

Webcast: Liberty Alliance Privacy Summit #1 of 3-part series PDF

This is a .wmv file

London-Basel Privacy Summit Report February-March 2008

•  London-Basel-Report.pdf 610.42 kB