APF 2025 Logo

Annual Privacy Forum 2025

22-23 October 2025 | Frankfurt a.M., Germany

Conference Programme 2025

Theme: Bridging the Gap between Research, Business Models and Policy

Day 1 - Wednesday, October 22nd, 2025
08:00 – 09:00 Registration - Welcome Coffee
09:00 – 10:00 Opening Remarks and Keynote
Moderator: Kai Rannenberg
  • Ulrich Schielein, Goethe University Frankfurt
  • Fabienne Tegeler, ENISA
  • Wojciech Wiewiórowski, European Data Protection Supervisor
  • Luca Tagliaretti, European Cybersecurity Competence Centre
10:00 - 11:00 Panel Session I: Digital Sovereignty
Moderator: Meiko Jensen
  • Marit Hansen, ULD
  • Jaap-Henk Hoepman, Radboud University & Karlstad University
  • Robert Riemann, EU OS Project Lead & Vrije Universiteit Brussel
  • Ina Schiering, Ostfalia University of Applied Sciences
11:00 – 11:30 Coffee Break
11:30 - 12:30 Paper Session I
Chair: Michael Friedewald
Interfacing Human Brains: What could go wrong? Marta Beltran
Turning to Online Forums for Legal Information: A Case Study of GDPR’s Legitimate Interests Lin Kyi, Cristiana Santos, Sushil Ammanaghatta Shivakumar, Franziska Roesner and Asia Biega
12:30 – 14:00 Lunch Break
14:00 - 15:00 Invited Talk
Privacy Litigation as Private Enforcement – Theory vs. Reality
Moderator: Kai Rannenberg
Thomas Bindl (EuGD), Christian Däuble (Spirit Legal)
15:00 – 16:00 Paper Session II
Chair: Nils Gruschka
Simple now, Complex later: The Questionable Efficacy of Diluting GDPR Article 30(5) Harshvardhan J. Pandit
“I will never pay for this” Perceptions of fairness and factors affecting behaviour on ‘pay-or-ok’ models Victor Morel, Farzaneh Karegar and Cristiana Santos
16:00 – 16:30 Coffee Break
16:30 – 17:00 Paper Session III
Chair: Liina Kamm
Illuminating the DPIA Blackbox – A Survey of Data Protection Impact Assessment Practices in Organisations Malte Hansen, Greta Runge, Nils Gruschka and Meiko Jensen
17:15 - 18:15 Panel Session II: Communities in Privacy and Data Protection
Moderator: Petros Efstathopoulos
  • Michael Friedewald, Fraunhofer ISI & Plattform Privatheit
  • Kai Rannenberg, Goethe University Frankfurt
  • Stefan Schiffner, Bonn Rhein Sieg University of Applied Sciences
  • Prokopios Drogkaris, ENISA
18:30 Social Event
Day 2 - Thursday, October 23rd, 2025
08:30 – 09:00 Registration - Welcome Coffee
09:00 - 09:45 Invited Talk
Data Protection and Cybersecurity – Friends or Foes?
Moderator: Narges Arastouei
Jens Bender (Federal Commissioner for Data Protection and Freedom of Information, Germany)
09:45 - 10:45 Panel Session III: The experience from EUDPR and the challenges ahead
Moderator: Massimo Attoresi
  • Laura Nuñez Barez, CEPOL
  • Prokopios Drogkaris, ENISA
  • Gloria Folguera Ventura, EUIPO
  • Roberta Maggio, ERCEA DPO
10:45 - 11:15 Coffee Break
11:15 – 12:15 Paper Session IV
Chair: Ina Schiering
Anonymity-washing Szilvia Lestyán, William Letrone, Ludovica Robustelli and Gergely Biczók
Information Inference Diagrams: Complementing Privacy and Security Analyses Beyond Data Flows Sebastian Rehms, Stefan Köpsell, Verena Klös and Florian Tschorsch
12:15 – 13:15 Lunch Break
13:15 - 14:00 Invited Talk
State of play GDPR – A supervisory perspective
Moderator: Kai Rannenberg
Meike Kamp (Berlin Commissioner for Data Protection and Freedom of Information)
14:00 – 15:00 Paper Session V
Chair: Stefan Schiffner
“Abort the login”: Understanding Phishing Susceptibility through Warning Design in the Context of 2FA Agnieszka Kitkowska, Jorina Freya Gerken, Zhaoying Wang and Bruce Ferwerda
Expert Strategies to Assist Laypeople in Making Decisions and Adopting Privacy-Enhancing Technologies Shirin Shams, Sebastian Jakob Schillinger and Delphine Reinhardt
15:00 - 15:30 Coffee Break
15:30 - 16:30 Keynote
On principles, non-functional properties and technical experiments – Building solid techno-legal bridges in Privacy Engineering
Moderator: Meiko Jensen
Frank Pallas (Paris Lodron University of Salzburg)
16:30 – 17:00 APF 2025 Closing Remarks