The Internet Privacy Engineering Network (IPEN) was launched in 2014. It is a practical initiative encouraging the development of methodologies and tools which can effectively foster privacy-enhancing technologies or PETs.

It supports the creation of engineer groups working on (re)-usable building blocks, design patterns and other tools for selected internet use cases where privacy is at stake.

IPEN welcomes participants from different areas such as data protection authorities, academia, open source and business development and other individuals who are committed to finding engineering solutions to privacy challenges.

The objective of the work should be to integrate data protection and privacy into all phases of the development process, from the requirements phase to production, as it is most appropriate for the development model and the application environment.

 It supports networking between engineer groups and existing initiatives for engineering privacy into the internet. This network facilitates exchange in order to coordinate work and avoid duplication, in addition to discussing which privacy oriented use cases should be addressed with priority.

 IPEN is building a repository of relevant resources, making its findings and knowledge base accessible to all participants, developers and privacy experts.

 A core group takes care of collection and distribution of information, liaises with other relevant initiatives, facilitates the dialogue on engineering solutions, and organises online and offline events.




In the September 2017 edition of the EDPS Newsletter we cover the EDPS Opinion on the digital single gateway, the investigation of complaints relating to medical data and the latest developments in privacy engineering.


The state of privacy 2017: mid-mandate report

The state of privacy 2017: mid-mandate report, Speech by Giovanni Buttarelli for the presentation of the 2016 EDPS Annual Report to the LIBE Committee, European Parliament

Available languages: English
Other Documents

IPEN Workshop 2016 publications

"Privacy engineering as a field" by José M. del Álamo, U Politicénica de Madrid
Available languages: English
"My tracking choices" by Claude Castelluccia - INRIA
Available languages: English
"Documenting consent" by Torgeir Hovden, Signatu
Available languages: English
"Top 10 Privacy Risks" by Florian Stahl, OWASP
Available languages: English
"Credential" by Nicolás Notario McDonnell
Available languages: English
PSA - the privacy by design approach of Deutsche Telekom by Frank Wagner, Deutsche Telekom AG
Available languages: English
What are DPAs expecting from Controllers to comply with Article 25 GDPR? by Felix Bieker, ULD Schleswig-Holstein
Available languages: English