The 5th Annual
Privacy Law Scholars Conference
June 7-8, 2012

Hosted by the George Washington University Law School
at the Marvin Center, Washington, DC



The George Washington University Law School and Berkeley Law School will be holding the fifth annual Privacy Law Scholars Conference (PLSC) on June 7-8, 2012. The PLSC aims to assemble a wide array of privacy law scholars and practitioners from around the world to discuss current issues and foster greater connections between academia and practice. It will bring together privacy law scholars, privacy scholars from other disciplines (economics, philosophy, political science, computer science), and practitioners (industry, legal, advocacy, and government). Our goal is to enhance ties within the privacy law community and to facilitate dialogue between the different parts of that community (academy, government, industry, and public interest).

The PLSC is an annual event, alternating between Berkeley and GW Law Schools. Click below for the websites of:

1st Annual PLSC of 2008, held at GW Law School on June 12-13, 2008.

2nd Annual PLSC of 2009, held at Berkeley Law School on June 4-5, 2009.

3rd Annual PLSC of 2010, held at GW Law School on June 3-4, 2010.

4th Annual PLSC of 2011, held at Berkeley Law School on June 2-3, 2011.

Hosts: The GW Law School and the Berkeley Center for Law & Technology.

Organizers: Daniel J. Solove and Chris Hoofnagle

Participants: A list of participants is below.

Schedule: See below.


George Washington University Marvin Center
800 21st Street Northwest
Washington, DC 20052-0029
(202) 994-7470

Hotel Accommodations: We have negotiated a special rate at the Ritz-Carlton for $299/night. The hotel is nearby GW University's Marvin Center, where the conference will be held.  The hotel is about a 5 minute walk to the Marvin Center.

The Ritz-Carlton, Washington, D.C.
1150 22nd Street, NW
Washington, DC 20037

Please book by May 18th in order to receive the special rate.
To book online:
Group Code:   WULWULA

If you want to call to reserve, please call 1-800-241-3333. 


Microsoft has invited you (and your spouses/partners) to a pre-PLSC reception at the company's new offices, located at 901 K St.  NW, Washington DC. 20001.  Microsoft is on the 11th floor.  The reception will include members DC privacy stakeholder community.  The reception is from 6 PM - 8 PM on Wednesday, June 6th.  There will be a happy hour buffet with wine and beer.  Please RSVP to:  dcrsvp@microsoft.com


Metropolitan Club of the City of Washington
1700 H Street, NW

Cocktails: 6 PM
Dinner: 7 PM

(Located 5 minutes walking distance from GW Law School)

DRESS CODE: The dress code requires wearing a suit, jacket or blazer and neck tie for men and commensurate attire for women. 


The organizers of this conference thank the following sponsors their generous support:



Paper titles, authors, and abstracts are listed in the schedule below. There will be 6 concurrent workshop session time slots, with 8 papers being workshopped concurrently during each time slot.

Because we have so many participants this year, 6 papers will be chosen for encore sessions.  Prior to PLSC, we'll ask you to vote on which paper should we workshopped twice.

Prior to the conference, please select the workshop you want to attend (A, B, C, D, E, F, G, or H) for each of the 8 time slots below.

Please select and download the papers for the workshops you wish to attend.



IAPP Privacy Scholarship Award

We are delighted to announce the winners of the IAPP Privacy Scholarship Award:

* Alessandro Acquisti & Christina Fong, Will Johnny Facebook Get a Job? An Experiment in Hiring Discrimination via Online Social Networks

* Ira Rubinstein & Nathan Good, Privacy by Design: A Counterfactual Analysis of Google and Facebook Privacy Incidents



8:00 AM to 9:15 AM Breakfast (Grand Ballroom)

9:15 AM to 10:30 AM Workshop Session #1

A Colin J. Bennett & Deirdre K. Mulligan,Codes for Codes of Conduct:  International Lessons for US Privacy Policy Robert Gellman Grand Ballroom
B Woodrow Hartzog, The Life, Death, and Revival of Implied Confidentiality Patricia Abril 308
C Meg Leta Ambrose, It's About Time: Privacy, Information Life Cycles, and the Right to be Forgotten Stephen Lau 301
D Michael Froomkin, Lessons Learned Too Well Jordan Kovnot 310
E Kirsty Hughes, A Behavioural Understanding of Privacy and its Implications for Privacy Law Bruce Boyden 302

Pedro Giovanni Leon, Justin Cranshaw, Lorrie Faith Cranor, Jim Graves, Manoj Hastak, Blase Ur and Guzi Xu, Noticing the Notice and Understanding What it Means

Mary Culnan 307
G Clare Sullivan, Digital Identity and Privacy Bryan Choi 311
ENCORE Jules Polonetsky & Omer Tene, Exposing Big Data: There is an App for That Bryan Cunningham Continental Ballroom

10:30 AM to 11 AM Break

11:00 AM to 12:15 PM Workshop Session #2

A Nick Doty & Deirdre Mulligan, The Technical Standard-Setting Process and Regulating Internet Privacy: A Case Study of Do Not Track Jon Peha 308
B Neil Richards, Social Reading and Intellectual Privacy Tommy Crocker Grand Ballroom
C Chris Jay Hoofnagle & Jan Whittington, The Price of "Free" David Medine 310
D Andrew Selbst, Contextual Expectations of Privacy James Grimmelmann 301
E Torin Monahan & Priscilla M. Regan, Fusion Centers Information Sharing: Revisiting Reliance on Suspicious Activity Reports Ron Lee 302
F Jennifer King, How Come I'm Allowing Strangers to Go Through My Phone?": Smart Phones and Privacy Expectations Scott Peppet 307
G Scott Mulligan and Alexandra Grossman, SOPA, PIPA, HADOPI and Privacy, the Alphabet Soup Experience: What America Might (or Might Not) Learn from the Europeans About Protecting Consumers' Privacy and Internet Freedom from Intrusive Monitoring by Third Parties (and the Government) Jason Schultz 311
ENCORE Ira Rubinstein & Nathan Good, Privacy by Design: A Counterfactual Analysis of Google and Facebook Privacy Incidents Danny Weitzner Continental Ballroom

12:15 PM to 1:45 PM Lunch (Grand Ballroom)

1:45 PM to 2:00 PM Voting on IAPP Paper Award (Grand Ballroom)

2:00 PM to 3:15 PM Workshop Session #3

A Susan Freiwald & Sylvain Métille, Simply More Privacy Protective: Law Enforcement Surveillance in Switzerland as Compared to in the United States Stephen Henderson 301
B Peter Swire, Backdoors Orin Kerr 308
C Laura Moy & Amanda Conley, Paying the Wealthy for Being Wealthy: The Hidden Costs of Behavioral Marketing Marc Groman 302
D Ian Kerr, Privacy and the Bad Man: Or, How I Got Lucky With Oliver Wendell Holmes Jr. Tal Zarsky 307
E William McGeveran, The Law of Friction: Privacy and Consent in Social Media Felix Wu Grand Ballroom
F Margot E. Kaminski, Real Masks and Anonymity: Comparing State Anti-Mask Laws to the Doe Anonymous Online Speech Standard Ryan Calo 311
G Alessandro Acquisti & Christina Fong, Will Johnny Facebook Get a Job? An Experiment in Hiring Discrimination via Online Social Networks Robert Sprague Continental Ballroom
ENCORE Fred Stutzman & Woodrow Hartzog, Obscurity by Design Katherine Strandberg 310

3:15 PM to 6:00 PM Free Time

6:00 PM to 7:00 PM Reception

7:00 PM Dinner

Location of Reception & Dinner:

Metropolitan Club of the City of Washington
1700 H Street, NW

(Located 5 minutes walking distance from GW Law School)

The club has been at its present site at 1700 H Street, NW, for more than one hundred years and will celebrate its sesquicentennial in 2013. As one of Washington's oldest and most valued private institutions, it has been a destination for many local, national and international leaders, including nearly every U.S. President since Abraham Lincoln. Since its founding in 1863, at the height of the Civil War, by six Treasury Department officials, it has pursued its primary goal of furthering "literary, mutual improvement, and social purposes."  

Dress Code: The dress code requires wearing a suit, jacket or blazer and neck tie for men and commensurate attire for women. 



8:00 AM to 9:00 AM Breakfast (Grand Ballroom)

9:00 AM to 10:15 AM Workshop Session #4

A Dennis Hirsch, Dutch Treat? The Collaborative Dutch Approach to Privacy Regulation and the Lessons it Holds for U.S. Privacy Nikolaus Peifer 301
B Stuart Shapiro, Categorical Denial: Deconstructing Personally Identifiable Information Lance Hoffman 308
C Jules Polonetsky & Omer Tene, Exposing Big Data: There is an App for That Ed Felten Grand Ballroom
D Charles Raab, Beyond the Privacy Paradigm: Implications for Regulating Surveillance Julie Cohen 302
E Danielle Citron, Hate 3.0 Rebecca Green 310
F Jens Grossklags, Na Wang & Heng Xu: A Field Study of Social Applications' Data Practices and Authentication and Authorization Ross Anderson 307
G Laura K. Donohue, Technological Leap, Statutory Gap, and Constitutional Abyss: Remote Biometric Identification Comes of Age Babak Siavoshy 311
ENCORE Alessandro Acquisti & Christina Fong, Will Johnny Facebook Get a Job? An Experiment in Hiring Discrimination via Online Social Networks Thomas Smedinghoff Continental Ballroom

10:15 AM to 10:45 AM Break

10:45 AM to 12:00 PM Workshop Session #5

A David Thaw, Comparing Management-Based Regulation and Prescriptive Legislation: How to Improve Information Security Derek Bambauer 301
B Fred Stutzman & Woodrow Hartzog, Obscurity by Design Travis Breaux 308
C Richard Warner & Robert H. Sloan, Behavioral Advertising: From One-Sided Chicken to Informational Norms Aaron Massey 302
D Jane Yakowitz, The New Intrusion Jon Mills 311
E Paul Ohm, Branding Privacy Deven Desai Continental Ballroom
F Wendy Seltzer, Privacy, Feedback, and Option Value Michael Zimmer 307
ENCORE Neil Richards, Social Reading and Intellectual Privacy danah boyd 310

12:00 PM to 12:50 PM Lunch (Grand Ballroom)

12:50 PM to 1:00 PM Remarks by Dean Paul Berman, GW Law School (Grand Ballroom)

1:00 PM to 2:00 PM Keynote by Jeff Jonas, IBM (Grand Ballroom)

2:00 PM to 3:15 PM Workshop Session #6


Winston Maxwell & Christopher Wolf, The Global Reality of Governmental Access to Data in the Cloud

Nathan Sales 301
B Cynthia Dwork & Deirdre K. Mulligan, Aligning Classification Systems with Social Values through Design Joseph Turow 302
C Ira Rubinstein & Nathan Good, Privacy by Design: A Counterfactual Analysis of Google and Facebook Privacy Incidents Annie Anton 308
D DISCUSSION: From Jones to Drones: How to Define Fourth Amendment Doctrine for Searches in Public Kevin Bankston, Jim Dempsey, Greg Nojeim, Harley Geiger, Marcia Hofmann, Peter Swire & Babak Siavoshy Continental Ballroom
E Andrea M. Matwyshyn, Repossessing the Disembodied Self: Rolling Privacy and Secured Transactions Diane Zimmerman 307
ENCORE Michael Froomkin, Lessons Learned Too Well Anne McKenna 310

3:30 PM Closing Remarks (Grand Ballroom)




Click here for bios of all participants.

Patricia Abril, University of Miami

Alessandro Acquisti, CMU
Joseph Alhadeff, Oracle
Meg Leta Ambrose, University of Colorado
Marvin Ammori, New America Foundation
Ross Anderson, Cambridge
Mark Andrejevic, University of Queensland
Annie Anton, North Carolina State University
Axel Arnbak, Institute for Information Law, University of Amsterdam
Stewart Baker, Steptoe & Johnson
Derek Bambauer, Brooklyn Law School
Kevin Bankston, CDT
Khaliah Barnes, Electronic Privacy Information Center (EPIC)
Martha Barnett, TLO, Inc.
Carol Bast, University of Central Florida
Robin Bayley, Linden Consulting, Inc.
Steven Bellovin, Columbia University
Colin Bennett, University of Victoria
Ellen Blackler, The Walt Disney Company
Jody Blanke, Mercer University
Marc Blitz, Oklahoma City University School of Law
Dominika Blonski, NYU
Courtney Bowman, Palantir Technologies
danah boyd, Microsoft Research/New York University
Bruce Boyden, Marquette University Law School
Travis Breaux, Carnegie Mellon University
Julie Brill, Federal Trade Commission
Jeffrey Brown, Cybercrime Review
Aaron Burstein, NTIA
Ryan Calo, Stanford Law School
Lisa Madelon Campbell, Competition Bureau Canada
Robert Cannon, FCC
Tim Casey, Calif. Western School of Law
Wade Chumney, Georgia Institute of Technology
Danielle Citron, University of Maryland School of Law
Andrew Clearwater, Center for Law and Innovation
Bret Cohen, Hogan Lovells
Jules Cohen, Microsoft
Julie Cohen, Georgetown Law
Amanda Conley, O'Melveny & Myers
Chris Conley, ACLU of Northern California
Lorrie Cranor, Carnegie Mellon University
Thomas Crocker, University of South Carolina School of Law
Mary Culnan, Bentley University
Bryan Cunningham, Palantir
Doug Curling, New Kent Capital
Deven Desai, Thomas Jefferson School of Law
Pam Dixon, World Privacy Forum
Dissent Doe, PogoWasRight.org
Laura Donohue, GULC
Nick Doty, UC Berkeley School of Information
Cynthia Dwork, Microsoft Research
Mark Eckenwiler, USDOJ
Elizabeth Eraker, Google Inc.
Adrienne Felt, University of California, Berkeley
Ed Felten, Federal Trade Commission
Darleen Fisher, National Science Foundation
David Flaherty, University of Western Ontario
Roger Ford, NYU School of Law
Tanya Forsheit, InfoLawGroup LLP
Kristina Foster, NPS
Susan Freiwald, University of San Francisco School of Law
Allan Friedman, Brookings Institution
Michael Froomkin, U.Miami School of Law
Simson Garfinkel, Naval Postgraduate School
Robert Gellman, Privacy Consultant
Tomas Gomez-Arostegui, Lewis & Clark
Nathan Good, Good Research
David Gordon, Carnegie Mellon University
Jennifer Granick, Attorney
John Grant, Palantir Technologies
Jim Graves, Carnegie Mellon University
Kim Gray, IMS Health
Rebecca Green, William & Mary Law School
James Grimmelmann, NYLS
Marc Groman, Federal Trade Commission
Jens Grossklags, The Pennsylvania State University
Alexandra Grossman, Skidmore College
Elizabeth Ha, UC Berkeley
Joseph Hall, New York University
Jim Harper, The Cato Institute
Woodrow Hartzog, Cumberland School of Law, Samford University
Allyson Haynes, Charleston School of Law
Stephen Henderson, The University of Oklahoma College of Law
Evan Hendricks, Privacy Times, Inc.
Mike Hintze, Microsoft
Dennis Hirsch, Capital Law School
Lance Hoffman, GW Cyber Security Policy & Research Inst
Marcia Hofmann, Electronic Frontier Foundation
Chris Hoofnagle, UC Berkeley Law
Jane Horvath, Apple Inc.
Kirsty Hughes, University of Cambridge
Trevor Hughes, IAPP
Stuart Ingis, Venable LLP
Jeff Jonas, IBM
Margot Kaminski, Information Society Project at Yale Law School
ian kerr, uOttawa
Orin Kerr, GW Law School
Jennifer King, UCB School of Information
Anne Klinefelter, University of North Carolina School of Law
Jacqueline Klosek, Goodwin Procter LLP
Christina Kühnl, Attorney
Rick Kunkel, University of St. Thomas
Stephen Lau, University of California, Office of the President
Travis LeBlanc, California Attorney General's Office
Ron Lee, Arnold & Porter LLP
Pedro Leon, Carnegie Mellon University
Catherine Lotrionte, Georgetown University
Mark MacCarthy, Georgetown University
Alexander Macgillivray, Twitter
Mary Madden, Pew Internet Project
Peder Magee, FTC
laureli mallek, Attorney
Carter Manny, Univ. of Southern Maine
Alice Marwick, Microsoft Research
Keith Marzullo, NSF
Aaron Massey, North Carolina State University
Kristen Mathews, Proskauer Rose LLP
Andrea Matwyshyn, Wharton School, University of Pennsylvania
Jonathan Mayer, Stanford University
William McGeveran, University of Minnesota Law School
Anne McKenna, ToomeyMcKenna Law Group, LLC
Joanne McNabb, California Office of Privacy Protection
Edward McNicholas, Sidley Austin LLP
David Medine, Attorney
Sylvain Métille, id est attorneys
Ed Mierzwinski, USPIRG
Douglas Miller, AOL Inc.
Jon Mills, University of Florida
Tracy Mitrano, Cornell University
Manas Mohapatra, Federal Trade Commission
Laura Moy, Institute for Public Representation
Deirdre Mulligan, UC Berkeley School of Information
Scott Mulligan, Skidmore College
Kirk Nahra, Wiley Rein LLP
Arvind Narayanan, Stanford University
Helen Nissenbaum, New York University
Paul Ohm, University of Colorado Law School
Christopher Parsons, University of Victoria, Department of Political Science
Brian Pascal, Palantir Technologies
Heather Patterson, UC Berkeley School of Law
Jon Peha, Carnegie Mellon University
Nikolaus Peifer, University of Cologne
Stephanie Pell, SKP Strategies, LLC
Scott Peppet, University of Colorado Law School
Vince Polley, KnowConnect PLLC
Jules Polonetsky, Future of Privacy Forum
Robert Quinn, AT&T
Charles Raab, University of Edinburgh
Jeffrey Rabkin, Stroz Friedberg LLC
Alan Raul, Sidley Austin LLP
Priscilla Regan, George Mason University
Joel Reidenberg, Fordham Law School
Virginia Rezmierski, University of Michigan
Neil Richards, Washington University School of Law
Sasha Romanosky, Carnegie Mellon University
Dana Rosenfeld, Kelley Drye & Warren LLP
Alan Rubel, University of Wisconsin, Madison
Ira Rubinstein, NYU School of Law
Nathan Sales, George Mason Law School
Albert Scherr, UNH School of Law
Viola Schmid, Technical University of Darmstadt
Andrew Selbst, NYU Information Law Institute
Wendy Seltzer, Yale ISP
Andrew Serwin, Foley & Lardner LLP
Stuart Shapiro, MITRE Corporation
Katie Shilton, University of Maryland
Babak Siavoshy, Berkeley Samuelson Clinic
Robert Sloan, University of Illinois at Chicgo
Tom Smedinghoff, Edwards Wildman
Christopher Soghoian, Center for Applied Cybersecurity Research, Indiana University
Daniel Solove, George Washington University Law School
Ashkan Soltani, Independent Researcher
Lisa Sotto, Hunton & Williams LLP
Tim Sparapani, Consultant
Robert Sprague, Univ. of Wyoming
Dave Stampley, KamberLaw
Jay Stanley, ACLU
Gerard Stegmaier, Wilson Sonsini Goodrich & Rosati
Katherine Strandburg, New York University School of Law
Zoe Strickland, UnitedHealth Group
Frederic Stutzman, Carnegie Mellon University
Clare Sullivan, University of Adelaidei
Latanya Sweeney, Harvard University
Peter Swire, Ohio State
Rahul Telang, Carnegie Mellon University
Omer Tene, Israeli College of Management School of Law
Melanie Teplinsky, American University Washington College of Law
David Thaw, University of Maryland
Timothy Tobin, Hogan Lovells LLP
Frank Torres, Microsoft
Michael Traynor, Cobalt LLP
Joseph Turow, Univ of Pennsylvania
Blase Ur, Carnegie Mellon University
Jennifer Urban, UC-Berkeley Law
Steven Vine, PulsePoint
Colette Vogele, Without My Consent
Serge Voronov, Duke University School of Law
Heidi Wachs, Georgetown University
Kent Wada, UCLA
Richard Warner, Chicago-Kent
Yael Weinman, Federal Trade Commission
Daniel Weitzner, White House
Tara Whalen, Office of the Privacy Commissioner of Canada
Jan Whittington, University of Washington
Craig Wills, Worcester Polytechnic Institute
Peter Winn, U.S. Department of Justice
Christopher Wolf, Hogan Lovells/Future of Privacy Forum
Felix Wu, Cardozo School of Law
Heng Xu, The Pennsylvania State University
Jane Yakowitz, Brooklyn Law School
Marsha Young, SAIC
Harlan Yu, Princeton University
Barbara Yuill, BNA's Privacy & Security Law Report
Tal Zarsky, University of Haifa - Faculty of Law
Bo Zhao, Penn Law
Michael Zimmer, University of Wisconsin-Milwaukee
Diane Zimmerman, New York University
Marc Zwillinger, ZwillGen PLLC