The Internet Privacy Engineering Network (IPEN) was launched in 2014. It is a practical initiative encouraging the development of methodologies and tools which can effectively foster privacy-enhancing technologies or PETs.

It supports the creation of engineer groups working on (re)-usable building blocks, design patterns and other tools for selected internet use cases where privacy is at stake.

IPEN welcomes participants from different areas such as data protection authorities, academia, open source and business development and other individuals who are committed to finding engineering solutions to privacy challenges.

The objective of the work should be to integrate data protection and privacy into all phases of the development process, from the requirements phase to production, as it is most appropriate for the development model and the application environment.

 It supports networking between engineer groups and existing initiatives for engineering privacy into the internet. This network facilitates exchange in order to coordinate work and avoid duplication, in addition to discussing which privacy oriented use cases should be addressed with priority.

 IPEN is building a repository of relevant resources, making its findings and knowledge base accessible to all participants, developers and privacy experts.

 A core group takes care of collection and distribution of information, liaises with other relevant initiatives, facilitates the dialogue on engineering solutions, and organises online and offline events.



The state of privacy 2017: mid-mandate report

The state of privacy 2017: mid-mandate report, Speech by Giovanni Buttarelli for the presentation of the 2016 EDPS Annual Report to the LIBE Committee, European Parliament

Available languages: English
Other Documents

IPEN Workshop 2016 publications

"Privacy engineering as a field" by José M. del Álamo, U Politicénica de Madrid
Available languages: English
"My tracking choices" by Claude Castelluccia - INRIA
Available languages: English
"Documenting consent" by Torgeir Hovden, Signatu
Available languages: English
"Top 10 Privacy Risks" by Florian Stahl, OWASP
Available languages: English
"Credential" by Nicolás Notario McDonnell
Available languages: English
PSA - the privacy by design approach of Deutsche Telekom by Frank Wagner, Deutsche Telekom AG
Available languages: English
What are DPAs expecting from Controllers to comply with Article 25 GDPR? by Felix Bieker, ULD Schleswig-Holstein
Available languages: English

Digital Festival

Digital Festival 2016 takes place at The Egg in Brussels on 21 June 2016. This festival of ideas provides an opportunity to challenge and better understand the impact and potential of digital technologies.

As part of the festival, the EDPS has organised a workshop entitled Data Protection by Design: Privacy as an engineering principle. As people become increasingly aware of the threat of mass surveillance, the demand for more privacy friendly technologies is increasing. In the EU, data protection by design and by default will soon become a legal obligation, under the new data protection rules to be applied by May 2018. The workshop will address the different approaches to privacy engineering, the current challenges faced and initiatives, such as the Internet Privacy Engineering Network (IPEN), which aim to overcome these challenges.

The workshop takes place from 2.45pm-4pm and will be moderated by EDPS IT specialist Achim Klabunde. Confirmed speakers include Aurelie Pols, Estelle Masse, Jetzabel Serna and Aristotelis Tzafalias. To attend, please register online for the Digital Festival.

Other Documents

IPEN Workshop 2015


Friday, 05 June 2015

Interdisciplinary Centre for Law and ICT, Catholic University of Leuven, Sint-Michielsstraat 6, 3000 Leuven (Belgium)

Hosted by KU Leuven, sponsored by project PARIS (PrivAcy pReserving Infrastructure for Surveillance), supported by PRIPARE project



Speakers list

Practical information

ICRI-ICT location and suggested accommodation

Confirmed speakers:

Keynotes presented by:

  • Giovanni Buttarelli, European Data Protection Supervisor
  • Wojciech Wiewiorowski, Assistant European Data Protection Supervisor
  • Willem Debeuckelaere, President of the Belgium DPA
  • Dr. Els Kindt, Head of Privacy Group ICRI-KU Leuven
  • Achim Klabunde, Head of IT Policy sector at EDPS


  • Prof. Fanny Coudert, KU Leuven
  • Prof. Bettina Behrendt, KU Leuven
  • Antonio Kung, Trialog, Paris
  • Prof. Kai Rannenberg, Goethe Universität Frankfurt
  • Christophe Stenuit, OGERIS
  • Eduard de Jong, ISO/IEC JTC 1/SC7, n-Count Technology B.V., QC Technology BV
  • Prof. Chris Mitchell, Royal Holloway, University of London
  • Michael O’Neill, Baycloud systems
  • Ninja Marnau, CISPA Legal Research and Government Relations
  • Cliff Beeckman, Commission for the Protection of Privacy
  • Brendan Van Alsenoy, Research Unit ICRI / CIR
  • Günes Acar, COSIC research group
  • Dr. Stefan Schiffner, ENISA Area Head Smart Security and Trust
  • Massimo Attoresi, EDPS Technology and Security officer and DPO
  • Fidel Santiago, EDPS Technology and Security officer
  • Fabio Polverino, Legal Officer, Policy and Consultation at EDPS
  • Prof. Susan Perry, American University of Paris
  • Pagona Tsormpatzoudi, ICRI/CIR iMinds
  • Markus Grete, Grete DV GmbG
  • Jan Schallaboeck, ULD Legal researcher


The registration process is closed.

If you have any problems or questions please write to

If you are interested in joining the IPEN mailing list, please subscribe here or send an email to, to which you can also submit any comments or questions. We look forward to collaborating with you.