General Data protection regulation: An Opp0rtunity for the HCI community?

chi-GDPR 2018
Part of chi 2018, moNtreal, Canada
april, 2018
Submit your paper here


Lorem ipsum dolor sit amet, consectetur adipiscing elit. Suspendisse varius enim in eros elementum tristique.
Duis cursus, mi quis viverra ornare, eros dolor interdum nulla, ut commodo diam libero vitae erat.
Aenean faucibus nibh et justo cursus id rutrum lorem imperdiet. Nunc ut sem vitae risus tristique posuere.


Lorem ipsum dolor sit amet, consectetur adipiscing elit. Suspendisse varius enim in eros elementum tristique.
Duis cursus, mi quis viverra ornare, eros dolor interdum nulla, ut commodo diam libero vitae erat.
Aenean faucibus nibh et justo cursus id rutrum lorem imperdiet. Nunc ut sem vitae risus tristique posuere.


Within HCI, researchers conduct studies in interdisciplinary projects involving massive volumes of data, Artificial Intelligence and Machine Learning capabilities. Awareness of the responsibility is thus emerging as a key concern for the HCI community. This Community will be impacted by the General Data Protection Regulation (GDPR) that will enter into force on the 25th of May 2018. From that date, each data controller and data processor will face an increase of its legal obligations (in particular its accountability) under certain conditions.

The GDPR encourages the adoption of Soft Law mechanisms, approved by the national competent authority on data protection, to demonstrate the compliance to the Regulation. Approved Guidelines, Codes of Conducts, Labeling, Marks and Seals dedicated to data protection, as well as certification mechanisms are some of the options proposed by the GDPR. There may be discrepancies between the realities of HCI fieldwork and the formal process of obtaining Soft Law approval by Competent Authorities dedicated to data protection. Given these issues, it is important for researchers to reflect on legal and ethical encounters in HCI research as a community. The GDPR will impact HCI activities and the ones related to HCI engagement, that result in gathering huge volumes of personal data.

This workshop will provide a forum for researchers to share experiences about Soft Law they have put in place to increase Trust, Transparency and Accountability among the shareholders. These discussions will be used to develop a white paper of practical Soft Law mechanisms (certification, labeling, marks, seals...) emerging in HCI research with the aim to demonstrate that the GDPR may be an opportunity for the HCI community.                                           


When: Sunday, 22 April 2018
: Room 524C

09:00 Welcome Address - Introduction to the workshop topic by the organizers and the schedule for the day.
09:15 Participant Presentations - 15 minutes (10 + 5 Q/A) per presentation.
10:30 Coffee Break
11:00 Participant Presentations (Cont.) - 15 minutes (10 + 5 Q/A) per presentation.
12:00 Lunch Break 
13:45 4 x Workgroups discussions and follow-up open discussion
14:45 Invited Talk by Dr. Enrico Costanza, UCL - (20 minutes + 10 minutes for discussion)
15:15 Short Coffee Break
15:30 Talk by Prof. Henry Lieberman, MIT - (20 minutes + 10 minutes for discussion)
16:00 Talk by Ilaria Liccardi, MIT - (20 minutes + 10 minutes for discussion)
16:30 Wrap-Up

Accepted papers

Some HCI Priorities for GDPR-Compliant Machine Learning
Michael Veale, Reuben Binns, Max Van Kleek

Owning the Wind
Henry Lieberman

An Empirical Analysis of Website Data Deletion and Opt-Out Choices
Hana Habib, Yixin Zou, Aditi Jannu, Chelse Swoopes, Alessandro Acquisti, Lorrie Faith Cranor,  Norman Sadeh-Koniecpol, Florian Schaub

Towards a User Centric Personal Data Protection Framework
Hind Benfenatki, Frédérique Biennier, Marco Winckler, Laurent Goncalves, Olivier Nicolas, Zohra Saoud

Enabling Privacy by Design in GDPR: An Analysis of Industry Tool Support
Smirity Kaushik, Yang Wang

Out of Unmundigkeit: The GDPR for User Enlightenment
Malin Eiband, Hanna Schneider, Fabius Steinberger

Algorithmic Transparency and Accountability in Practice
Jef Ausloos, David Geerts, Bieke Zaman, Peggy Valcke, Pierre Dewitte

Call for papers

We invite position papers related to HCI Policy regarding computational engagement, more specifically topics concerning soft-regulation and design of privacy / ethically- informed computational systems. Suggested areas include, but not limited to:

1. HCI Soft Law Regulation
    a. Data protection certification (Labels, Seals and Marks)
    b. Approved Codes of conducts (by Data Protection Supervisory Authority)
2. HCI Responsible Design
3. HCI Responsible Labels (or privacy labels)
4. Community’s Accountability (civil, administrative, criminal)
5. Safeguards
6. Policy-by-Design
    a. Safety and Security-by-Design   
    b. Privacy-by-Design
    c. Safeguards-by-Design
    d. Ethics-by-Design

Proposals based on autonomous and self-decision-making agents as well as proposals involving learning systems are welcome. We also encourage researchers involved in the control or in the processing of special categories of data, such as, children or health data to participate in this workshop.

The length of the papers should be 4-6 pages. The authors should not include the ACM CHI copyright statement in their papers. The use of supplied template is mandatory:

Position papers should be submitted to

The organizers will work for initiating a special issue in ACM transactions on Computer Human Interaction (ToCHI), where extended versions of the papers can be considered for publication.  

Registration and Venue:   All workshop participants must register for both the workshop and at least one day of the main conference. Further details about workshop location and registration will be announced on CHI website and here.  

Important Dates:  
Position Paper Submission:  extended to February 17th, 2018
Notification of acceptance:  March 10th, 2018
Early Bird Conference Registration: To appear soon
Camera ready paper: April 5th, 2018
Participate in the workshop: April 21st/22nd, 2018 (To be decided soon)
Selected high quality papers: write-up an extended version and submit the paper on a special issue of ACM Transactions on Computers Human Interaction (ToCHI ,provisional deadline: early 2019)  

For further information contact the workshop chairs at


Eva Thelisson is expecting her Ph.D on Data Protection with a special emphasis on the General Data Protection Regulation, in December 2017. She’s got a double background in Law and Economy with a major on Governance related issues. She recently presented two papers at the International Conference on Artificial Intelligence (IJCAI) in Melbourne, Australia in August 2017. She’s got more than 13 years professional experience in the UK (London), Switzerland (Geneva, Bern) and France (Paris), working for multinational companies, governments and international organizations.
Hanan SALAM holds a PhD in Artificial Intelligence and a Bsc and Msc in Computer Science and Telecommunications Engineering. She is an initiator and the head of educational program of Women in AI. She is currently the head of research and development at A.I. Mergence, a startup in robotics and Artificial Intelligence specialized in intelligent autonomous robots for home security. She is also a lecturer at sorbonne university and she conducts research in specific areas of applied Artificial Intelligence. She has published several international peer-reviewed conferences and journals on social robotics and intelligent affective computing. She is an advocate of technology for common good and is currently investigating how blockchain technology could transform Artificial Intelligence and vice-versa.
Kshitij Sharma received his Ph.D. in Computer Science from the Ecole Polytechnique Fédérale de Lausanne (EPFL, Switzerland). He is a Postdoctoral researcher at the CHILI lab in EPFL and at the Faculty of Business and Economics (HEC) in the University of Lausanne, Switzerland. His research interests include eye-tracking, MOOCs, collaborative learning, big data analysis, interaction design and children, and statistics. He has authored several peer-reviewed academic publications on these topics.
Virginia Dignum is an Associate Professor at the Faculty of Technology, Policy and Management, at Delft University of Technology. She received her Ph.D in 2004 from the Utrecht University, on a ‘A Model for Organizational Interaction’. In 2006, she was awarded the prestigious Veni grant from NOW (Dutch Organization for Scientific Research), for her work on agent-based organizational framework. Her research focuses on the complex interconnections and interdependencies between people, organizations and technology. Her current research encompasses the analysis and formalization of structures and dynamics of organization, Design and evaluation of human-agent teamwork, Ethics of artificial Intelligence Systems, Value sensitive software development.


Enrico Costanza joined UCLIC, the UCL Interaction Centre as a lecturer in Human-Computer Interaction in September 2016. He moved to UCL from the University of Southampton, where he was a Lecturer in Electronics and Computer Science from 2010. Before Southampton, he gained 7 years of research experience across the EPFL Media and Design Lab (Switzerland), MIT Media Lab (USA), MIT Media Lab Europe (Ireland) and the University of York (UK). He holds a PhD in Computer and Communication Sciences from EPFL (2010), an MS in Media Art and Science from MIT (2006) and an MEng in Electronics and Communications Engineering from the University of York (2003).
Ilaria Liccardi is investigating people's behavior with respect to privacy issues that arise from today's technologies. Her research aims to understand why people willingly share their personal information either directly (i.e. consciously posting information online) or indirectly (i.e. granting access to services or apps). She focuses in particular on investigating the perceived concern (or more often lack of concern) about possible harms and risks resulting from information sharing behavior. Her research often involves longitudinal in-the-wild experiments aimed at collecting in-situ actions in order to examine realistic usage and extrapolate people's privacy behaviors. She aims to understand the circumstances under which we should help people to safeguard their information, with the goal that her research should help guide the development of policies and regulations.
about CHI-GDPR

We invite position papers related to HCI Policy regarding computational engagement, more specifically topics concerning design and soft-regulation of ethically- informed computational systems. Proposals based on autonomous and self-Decision-making Agents as well as proposal involving learning systems are welcome. We also encourage to participate in this workshop papers involving special categories of data, such as, children and health data.