During this workshop our presenters will each highlight some of the policy recommendations co-created by a group of experts with UNICEF about data governance for EdTech used in schools as part of the UNICEF data governance for children project. We will then divide the participants into groups to provide feedback on the recommendations for the different stakeholders ...

Children have increasing access to the internet, which also exposes them to significant risks. The Regulation on Child Sexual Abuse Material (CSAM) represents a crucial step in addressing these dangers, aiming to protect children from online exploitation while respecting their privacy rights. This session will explore the current and upcoming regulations, examining their implications for fundamental rights and the ...

Compliance with the AI Act relies a great deal on robust risk management.  However, small and medium entreprises (SMEs) often do not have a risk management policy in place and it is difficult for them to identify, analyse, assess, and mitigate risks related to AI systems privacy and security. On the other hand, whichever methodology an organisation chooses, the underlying cybersecurity and privacy issues that accompany the use of AI systems remain technically the same. This session will ...

Generative AI development and deployment is exploding, but the recent EDPB Opinion 28/2024 and early enforcement actions (notably the fine against OpenAI by the Garante in Italy) signal that compliance with the GDPR must be taken seriously from the outset. Against this backdrop, our panel will explore how to build trust and avoid pitfalls when developing and deploying LLMs in Europe. We’ll examine the evolving legal landscape—and whether it leaves enough room for meaningful innovation....

As AI usage seems to proliferate, international regulations may be the way to go to develop cross-border compliance and cooperation. Featuring representatives from both sides of the Atlantic, as well as renowned global think tanks, this session will discuss how organizations can effectively align themselves with international regulations to achieve convergence and interoperability.  ...

This remarkable session brings together leading experts from Google, Microsoft, the German Data Protection Authority, the European AI Agency, and the Italian State Secretary to discuss how organizations and governments can navigate AI risks while ensuring compliance. From balancing innovation with regulation to addressing ethical concerns, this discussion will provide critical insights into the future of AI governance. 

The rapid expansion of Artificial Intelligence is reshaping the digital landscape, introducing both opportunities and challenges for consumer autonomy and data protection. AI has the potential to deliver highly relevant services, enhancing consumer engagement and satisfaction, but it can also generate outputs that may be misleading, inaccurate, or manipulative, potentially exacerbating consumer vulnerabilities and reducing consumer agency.

We will inaugurate the fourth edition of the Privacy Symposium at the Official Welcome Reception. This event marks the beginning of a week rich in insightful discussions and open exchange, set in the inspiring atmosphere of Venice. Guests will have the opportunity to admire the remarkable works of Tintoretto, one of the city’s most celebrated painters, while connecting with professionals from diverse backgrounds and engaging in fruitful discussions. The evening will be enriched by...

The session will begin with the presentation of research work on the evaluation of the benefits of compliance (combining costs, returns, gains of compliance analysis). The objective will be then to discuss on the KPIs that can be used to measure the positive returns of compliance by incorporating the perspectives of stakeholders who advocate, monitor, implement, control, or finance compliance actions. 

In this thought-provoking session, the panel will dive into the intriguing world of neuro privacy. As breakthroughs in neuroscience offer unprecedented insights into the human brain, important ethical questions arise regarding the collection, use, and potential misuse of neural data. The speakers will explore the intersection between neuroscience, privacy, and fundamental human rights, while focusing on the emerging challenges and potential solut...

The European Data Protection Supervisor (EDPS) plays a critical role in shaping the EU’s privacy agenda, as there is a growing need to balance technological advancements, international cooperation, and the complexity of data governance. Attendees of this session will develop a deeper understanding of the EDPS Roadmap, a strategic vision shaping Europe’s data protection landscape. From regulatory chall...

It is people, not laws, that drive privacy. What about privacy makes it universal across the world and throughout history? How do non-Western societies demonstrate how individuals, communities and civilizations instinctively cherish privacy? How did the Ancient Romans solve universal and timeless privacy problems around maintaining and verifying identity? In this session of the “Philosophy of Privacy” stream, hear ...

The last few years have seen a significant increase in digital solutions that support privacy friendly electronic identification and authentication: mobile identity wallets, zero knowledge proofs, verifiable credentials, age assurance applications, and so forth. Legislators are also increasing their support for these solutions. But are they actually trustworthy from a privacy perspective? This session will explore the potential, and the pitf...

Personal data defines identity. However, in a world where surveillance is invisible, data is power, and sharing is an everyday activity, does true privacy still exist? And if we lose it, do we also lose something essential about ourselves? This session will bring together experts to explore the philosophical and practical implications around the nature of privacy and what it truly means for our digital selves, fund...

After a productive day of engaging sessions, what better way to refresh than by enjoying a traditional Aperol Spritz at the Privacy Professionals’ Meet-up? Join us for a relaxed evening of conversation and connection over this iconic Italian cocktail. It’s a unique opportunity to get to know other participants of the Privacy Symposium, while enjoying a taste of the dolce vita in true Venetian style.

As cases regarding restrictions on freedom of expression seem to intensify, the question of democracy and exposure to opposing opinions rises to the forefront. Attendees at this session will hear perspectives from representatives of fundamental rights agencies and Council of Europe as well as officials from the US Department of Justice and UN Human Rights Council. The panel will provide a full picture of how we can address restrictions on freedom...

The right to transparent, free, unbiased and pluralistic information is a pillar in democratic societies, allowing citizens to think critically and challenge their own perspectives before making decisions and judgements. With insights from academics and practitioners, this panel promises to be an interesting debate at the intersection of freedom of expression, democracy and data regulation.  

Age assurance is a growing requirement for online safety, but one that comes with clear interdependencies with data protection. Requirements for highly effective age assurance have to be considered alongside data minimisation requirements under the GDPR. The limitations of working in silos must be overcome, and one way of doing so is via a multistakeholder dialogue that brings data protection regulators, safety regulators, academics, companies an...

Growing up in the digital age means that children are exposed to data collection before they even learn to read. This insightful session explores ways in which a safer online space can be created for the next generations, and how to enforce meaningful protection, while balancing innovation with responsibility and empowering young users to navigate the internet safely.  Key questions

Marking the halfway point of the conference, have a relaxing evening at the Privacy Professionals’ Meet-up.  Enjoy a refreshing spritz while engaging with other privacy experts. After a productive day of sessions, this is an excellent occasion to meet with other participants and speakers, resume discussions, and enjoy a relaxing evening.

This session will take a deep dive into the evolving process of assessing AI’s impact on fundamental rights, transitioning from traditional Data Protection Impact Assessments (DPIA) to the Fundamental Rights Impact Assessment (FRAIA). The speakers will explore how to practically apply these assessments in AI development and deployment, ensuring that privacy and human rights remain at the forefront. 

We must see bias out that door. This session dives into the challenges of mitigating bias, ensuring fairness and explainability by design. Learn how to approach fairer and more inclusive models that prioritise ethics and accountability. 

As we near the conclusion of the Privacy Symposium, take a moment to unwind at the Privacy Professionals’ Meet-up. After a day filled with insightful sessions and valuable connections, this is the perfect occasion to engage with fellow privacy experts and speakers, revisit inspiring conversations, and enjoy a relaxing evening over a refreshing spritz. 

The Privacy Symposium is delighted to invite you to a unique musical experience on Thursday, 15 May at 6:30 PM, where the Quartetto Pegreffi will take the audience on a musical journey inspired by Venice’s atmosphere. The concert will present a selection of pieces ranging from refined baroque elegance to rich impressionistic colours. The programme reflects the ambience and charm of the surroundings, offering a moment of pause and appreciation in the midst of the Privacy Symposium....

This workshop is designed to practice the conformity assessment procedure of AI systems in accordance with the emerging AI Act. The workshop is structured to provide theoretical knowledge and hands-on experience, focusing on the Act's obligations and requirements concerning intended use, data governance, transparency, and the technical and organizational measures implemented to ensure compliance.