~ COnSeNT 2022 ~

2nd International Workshop on
Consent Management in Online Services, Networks and Things

co-located with 31st WEB Conference
26 April 2022


The workshop took place from 10:45-17:15 CEST, with paper presentations, a keynote, and panel discussions. More information.


Consent of the Governed
by Robin Berjon (New York Times)
view the recorded keynote or read the keynote article
more info

Panel Discussion

The Web of Consent
Featuring: Robin Berjon (New York Times), Romain Gauthier (Didomi), Maximilian Hils (University of Innsbruck), and Stefano Rossetti (noyb). Moderator: Paulina Jo Pesch (Karlsruhe Institute of Technology)
watch recording


26 April 10:45--17:15 CEST


  • 10h45 - Opening and welcome (watch recording)
  • 11h15 - Xengie Doan, Annika Selzer, Arianna Rossi, Wilhelmina Maria Botes, and Gabriele Lenzini, "Conciseness, interest, and unexpectedness: user attitudes towards infographic and comic consent mediums"
    abstract | proceedings | preprints: [1],[2] | supplementary: [1],[2],[3] | slides | watch recording
  • 11h45 - Nils Wehkamp, "Internalization of privacy externalities through negotiation: Social costs of third-party web-analytic tools and the limits of the legal data protection framework "
    abstract | proceedings | preprints: [1],[2] | slides | watch recording
  • 12h15 - Lunch Break


Afternoon session 2


Robin Berjon - Consent of the Governed

view recorded keynote and article

Informed consent is rooted in human subjects research where it is used to operationalise autonomy. From there it was transplanted into a computing context but in the process it became separated from key assumptions that makes it work for research such an institutional review board to weed out unethical use or rare and voluntary participation. The result is a procedural ghost of consent that undermines personal autonomy irrespective of what user interface constraints are imposed on it, and a hyper-individualistic approach to privacy that is poorly adapted to life in a complex digital society.

All is not dark however and there is a future for consent built for people rather than for homo economicus. We can use the legal basis of consent as an implementation brick and evolve consent towards collective, socialised decisionmaking: consent of the governed.

About the Keynote Speaker

Robin is a `core web person', well known as the editor of HTML5 specification, experienced participant within W3C, co-author of Global Privacy Control specification, and current VP for data governance at New York Times. Robin was a panelist at the 1st edition of the COnSeNT workshop.

Panel Discussion: Web of Consent
Present and Future approaches to Consenting in websites

watch recording

COnSeNT 2022 will feature an exciting and insightful panel discussion on important topics regarding consent and consenting practices as they stand today and what things should look like for the future. Amongst other topics, the panel members will discuss important questions such as: Is the market standard fixable? Can we get rid of consent dialogues? What are the alternatives? What do we need to change about regulation?


Moderator: Paulina Jo Pesch (Postdoctoral Research Fellow - Karlsruhe Institute of Technology) - bio


Workshop Organisers

Programme Committee

  • Arianna Rossi (IRiSC, SnT, University of Luxembourg, LU)
  • Aurelie Pols (DPO CDP mParticle, GB)
  • Beatriz Esteves (Uni Politécnica de Madrid, ES)
  • Bernold Nieuwesteeg (Erasmus University Rotterdam, NL)
  • Christine Utz (Ruhr-Universität Bochum, DE) - invited
  • Daniel Woods (University of Innsbruck, AU)
  • Dave Lewis (Trinity College Dublin, IE)
  • Elena Montiel (Uni Politécnica de Madrid, ES)
  • Gareth Young (Trinity College Dublin, IE)
  • Irene Kamara (Tilburg university, NL)
  • Joao Paulo Barraca (Uni. de Aveiro Portugal, PT)
  • Khaled Mahbub (Birmingham City University, UK)
  • Kovila Coopamootoo (Newcastle University, UK)
  • Mark Josephs (Birmingham City University, UK)
  • Marija Slavkovik (University of Bergen, NO) - invited
  • Martin Degeling (Horst Goertz Institute for IT Security)
  • Maximilian Hils (University of Innsbruck, AU)
  • Michael Toth (Inria, FR)
  • Paul Grace (Aston University, UK)
  • Peter Novitzky (University College London, GB)
  • Piero Bonatti (Universita' di Napoli Federico II, IT)
  • Soheil Human (WU Vienna, AU)
  • Victor Rodriguez-Doncel (Uni Politécnica de Madrid)

Call for papers

Data Protection and privacy regulations are currently amongst the most prominent changes across the globe, and have triggered a change in how consent is obtained and used for Personal Data management. At the forefront, there’s the EU General Data Protection Regulation (2016) which brought dramatic changes to the Internet as we know it, and influence other regulationss such as the California Privacy Rights Act in 2020.

Regulations, such as the GDPR, dictate where consent is required, it is 'valid' only when obtained before processing data of an individual, and meets a number of requirements: it must be freely given, prior to any data collection, informed, specific, unambiguous, readable and accessible and revocable.

Pursuant to such requirements, both research and industry move towards the direction of increasing transparency, accountability, privacy by design to ensure the required legal compliance. This has led to standardized user centric consent solutions such as the Consent Receipt Specification (Kantara, 2018), the Internet Advertising Bureau’s Transparency and Consent Framework standard (IAB TCF, 2019), ISO/IEC 29184 Online privacy notices and consent (2020), and the Global Privacy Controls (GPC, 2020). Such efforts are aimed to comply with regulations and provide user empowerment.

Consent Management as a discipline is only now becoming prominent as an emerging fruit of the many challenges across various domains - legal, technological, sociological, usability, privacy, and security. The current implementation of consent and its management on the Internet is still in its infancy when handling multiple requirements stemming from users, devices, businesses, publishers, consent management platforms, content providers, third-parties, regulators, and information itself. Furthermore, new uses of personal data, including business models and a data-driven economiy, require clarity on the topic of Consent.

The COnSeNT Workshop will offer an international forum for researchers and practitioners, across all areas, to exchange and bring perspectives, lessons learned and new insights to the state of the art and practice of Consent Management. It will provide a forum to share, discuss, and present novel ideas and solutions related to the areas of Consent, and its impact and relevance to the larger domains of privacy and security.

We welcome technical, techno-legal or socio-technical papers, work-in-progress reports, industry insights and multi-disciplinary perspectives describing advances in all areas related to Consent including, but not limited to:

  • Security and Trust of current Consent practices
  • Network Protocols for Consent management
  • Non-repudiation and Demonstrability of Consent
  • Threat and Adversary modelling in Consent
  • Consent Notices and User behaviour
  • Novel technical approaches to collecting and managing Consent
  • Data-driven Economies and Consent
  • Use of dark patterns in consent collection
  • Personal Data Economics and Models
  • Usability in Consent
  • Large-scale capture of Consent
  • Accountability and Demonstration of Consent
  • Consent management platforms
  • Behavioral economics and Consent
  • Consent in IoT and embedded devices
  • Machine Learning Approaches to Consent
  • Assistive technologies for Consent
  • Incorporating Human-centric technologies for consent
  • Consent management through browser signalling
  • Uniformization of consent across different laws and regulations
  • Visualisation techniques for consent
  • Standards and Frameworks for information and processes associated with Consent

In addition to the above, we welcome submissions on the following 'special topics' that are relevant to recent proposals, interests, and advances regarding consent:

  • Feasibility and Strategies towards a Cookie-less Web (e.g. Phasing out of 1st/3rd Party Cookies)
  • Approaches to privacy-preserving or client-side advertising on the Web based on consent
  • Consent mechanisms for novel proposals for localised processing, such as FLOC,
  • User interactions and consent for automation (i.e. AI)
  • Internet/Web protocols and standards for Consent
  • Role of web browsers in adopting consent mechanisms

Submission Instructions

Submissions must use the official ACM format with double-column format. ACM provides templates for MS-WORD and LaTeX, and has an official template for use in Overleaf.

Full papers must be at most 8 pages of main content, with additional 4 pages for references and supplementary material (e.g. appendix). Papers must not have more than 12 pages for all content. Papers that do not meet the size and formatting requirements will not be reviewed. All papers must be in PDF format and submitted through EasyChair.

The review process is single-blind. Papers do not need to be anonymised prior to submission for review

Workshop proceedings will be published in the ACM Web Conference Companion Volume.

Key dates

  • submission deadline: 10 09 03 February 2022 AoE
  • notification by: 03 March 2022
  • camera-ready by: 08 March 2022

EasyChair Submissions Link (submissions are now closed)

Workshop Registration

COnSeNT 2022 is co-located with the Web Conference. Attendance for the workshop is through the Web conference's registration process. Information here is provided for convenience. Please check the conference registration page for updates and accurate information.

FullConferenceAuthor ACM/SIGWEB Members250 €
FullConferenceAuthor Non-ACM/Non-SIGWEB Members300 €
FullConferenceRegular ACM/SIGWEB Members130 €
FullConferenceRegular Non-ACM/Non-SIGWEB Members180 €
FullConferenceStudents /ACM retired60 €
Monday & Tuesday onlytwo days tickets100 €

All fees are in Euros, VAT included (20% French VAT).

Previous Editions of COnSeNT

COnSeNT 2021 took place on 07-SEP-2021 and was co-located with the IEEE Euro S&P conference. More information about the papers presented, access recordings of the keynote and panel discussions is available here.

📰 Updates/News 📰

18-SEP: Posted links to video recordings

06-SEP: Posted links to proceedings for papers, keynote, and organiser's introduction

03-MAY: Posted links to slides for presented papers

26-APR: Post event details, keynote recording link, panel recording information

25-APR: Joining links and panel details.

11-APR: Program schedule and paper details.

14-MAR: Keynote description, registration information.

03-MAR: Notification of decisions and reviews sent to authors.

09-FEB: Deadline extension from 09-FEB to 10-FEB. Rest of dates (notification, camera-ready) stay the same.

28-JAN: Deadline extension from 03-FEB to 09-FEB. Rest of dates (notification, camera-ready) stay the same.

Funding Acknowledgements: This workshop and its organisers have received funding under the following programmes: Irish Research Council Government of Ireland Postdoctoral Fellowship Grant#GOIPD/2020/790; The ADAPT SFI Centre for Digital Media Technology is funded by Science Foundation Ireland through the SFI Research Centres Programme and is co-funded under the European Regional Development Fund (ERDF) through Grant # 13/RC/2106_P2.

Designed by BootstrapMade     v20220303-2101