Call for Papers: Privacy Research Day 2022

For this new annual Privacy Research Day conference, the CNIL invites the scientific community to present academic publications and research projects in the field of privacy and personal data protection.

The CNIL is particularly interested in rigorous and empirical research from computer scientists and social scientists. Multidisciplinary research, including several fields, will be particularly encouraged.

CNIL is inviting contributions of the following types:

• Recently published research papers in international peer-reviewed conferences of journals;
• Research projects in advanced state or close to completion;
• Demonstrations of privacy-protective technologies (PETs).

Suggested topics include:

Video surveillance by AI

There are many more video surveillance streams available than people to watch them, what is the consequence of using AI to improve video protection? How are the algorithms trained? The risks of new discriminations? The new risks in terms of privacy?

Smartphones, the spies we love

In 10 years, smartphones have become an integral part of our daily lives and, despite the evolution of their OS, are collecting more and more data.

What are the new practices of players to collect data? How to analyze them and make them more transparent? How to apprehend bad actors? Are users aware of the risks they face? What were the design efforts for what consequences? Do users really have freedom of choice?

Data marketplaces

What are the practices of data resale? Is it possible to trace the sale of data? Are users aware that their data is being resold? What have been the consequences of data resales? What is the value of our data?

The exercise of rights and data protection in everyday life, what concrete implementation by individuals

The General Data Protection Regulation (GDPR) has created the right to portability, but the right to erasure and the right of access already existed in several EU countries (e.g. in French law).

What are the difficulties encountered in exercising these rights, especially the right to portability? What are the justifications? What are the problems encountered in responding to users' requests? Can we identify examples to follow? How can we facilitate the use of the law? What are the alternative strategies to exercising rights to protect one's data and privacy?

Economic incentives for compliance

The GDPR is perceived by some only as a cost while others see a factor of value creation and competitive advantage and by other.

What are the economic incentives for actors to comply? To what extent can these economic incentives become regulatory levers? What are the instruments available to the regulator for this (sunshine regulation)?

“I'm sorry Dave, I'm afraid I can't explain that”

While it is not present in the form we expected, nevertheless, artificial intelligence is well present in many aspects of our lives.

What are the effects of this wide adoption on our data protection, how does an AI inherit our data? How do we exercise our rights over an AI if it pools data? What are the effects on our freedoms and on the risks of discrimination? AI is often not as intelligent as we think, is it really artificial? What are the impacts on the processing of our data?

Surveillance at work, surveillance by peers

Surveillance in the workplace has been a major subject of complaints to the CNIL for many years, notably through surveillance cameras or vehicle geolocation devices. With the pandemic and the development of remote work, this subject has evolved in some organizations.

What are these new surveillance devices at work? How do they fit in with new forms of work organization? What are their effects on organizations and workers? How can employers be encouraged to comply with this issue? At the same time, easier access to technology is leading to increased surveillance of individuals among themselves, for example among neighbors or within couples. What are the dynamics of this peer surveillance?

Other topics proposed if the contributions relate to privacy protection, and in particular the following themes:

The environmental impact of data and data protection

The issue of the environmental footprint of digital technology has become a key issue in the public debate. What is the place of data protection in this debate? Are privacy by design architectures also greener? Can we protect our data and our environment?

New forms of data capture

What are the weak signals that allow us to learn more about users? How is user data collected without their knowledge? Are new hidden paths being used?

Other research related to personal data and privacy protection can be submitted.

Event Format

The conference will take place on June 28, 2022, in Paris, at the CNIL.

Several multidisciplinary thematic sessions will be organized, during which researchers will present their research, pointing out the stakes for privacy and personal data protection, policy and law in the EU. These presentations will be put in perspective with the reflections and work of the CNIL on this subject. Given the international scope of the event, the working language will be English.

It is expected that the attendance will mainly be composed of researchers and regulators.

Selection Criteria and Review Process

Submissions may be for research that has been previously presented (or is in the process of being reviewed) at conferences or has already been published (or is soon to be published).

Submissions must come from researchers who wish to present their own research, completed after January 1, 2020.

Proposals will be evaluated by CNIL experts, based on an assessment of the quality of the submissions, their relevance to CNIL's concerns, and the need to cover a diverse range of topics representing a variety of perspectives.

Researchers who submit their contributions will be notified on May 1, 2022, if they have been selected to present at this conference.

Important dates

• Submission deadline: April 1st, 2022
• Notification to researchers: May 1st, 2022
• Confirmation to present: May 15th, 2022
• Submission of all materials: June 14th, 2022
• Conference: June 28th, 2022

Submission Process

As part of your submission through the following form, please include the following information:

• First and last name, email address, phone number, job title, and affiliation of researcher(s) making the submission;
• A single point of contact for communications with the teams of the CNIL;
• The title of the research you propose to present along with an abstract summarizing your methodology, findings, and how your research differs from prior research in this area;
• Publication details for any research that has been previously published or accepted for publication;
• Your published or submitted for publication research paper or extended abstract if you submit a presentation of a project;
• Any additional information you would like to share (optional);
• A link to your professional webpage or a short bio (optional);
• Whether you would like your research paper/abstract to be published on CNIL’s website.  If you do not request confidential treatment of your submission, your research paper/abstract will be placed on the CNIL’s website of Privacy Research Day to be accessible to the conference’s participants.

Submit a paper

Contact details

For any questions, contact ip[@]cnil.fr