Con­sent Man­age­ment IoT

A tool that gives people real control over consent when using the Internet of Things (IoT)

The project "Consent Management for the Internet of Things (EMIDD),” which we are undertaking in cooperation with the Technical University of Berlin, aims to develop a framework that strengthens the position of consumers when using IoT devices.

The chal­lenge

A pletho­ra of “smart” devices, which we increas­ing­ly encounter in our homes or oth­er­wise in every­day life, col­lect data, most­ly data that reveals per­son­al infor­ma­tion about us. Until now, one usu­al­ly had to fully con­sent to the con­di­tions set by the man­u­fac­tur­er in order to be able to use the device; this blan­ket con­sent in turn opens the doors to an unre­strained data col­lec­tion fren­zy. Is there an alternative?

Our approach 

A team from the Fac­ul­ty of Elec­tri­cal Engi­neer­ing and Com­put­er Sci­ence at the TU Berlin has devel­oped a soft­ware tool that allows con­sumers to man­age in detail the trans­fer of any data— per­son­al or otherwise—generated dur­ing their use of an IoT device to its man­u­fac­tur­er. iRights.Lab is tasked with eval­u­at­ing this software’s com­pat­i­bil­i­ty with cur­rent data pro­tec­tion law and con­sumer pro­tec­tion pol­i­cy in Ger­many, espe­cial­ly in light of the EU’s new Gen­er­al Data Pro­tec­tion Regulation.

The result 

The two short reports com­piled by iRights.Lab con­clude that tools like the EMIDD soft­ware rep­re­sent a way of achiev­ing true data sov­er­eign­ty for con­sumers nav­i­gat­ing the grow­ing Inter­net of Things. This is only pos­si­ble, how­ev­er, if con­sumers them­selves are will­ing to engage with ques­tions of pri­va­cy when using “smart” devices.


Technische Universität Berlin

Das Lab

Schützen­straße 8
D‑10117 Berlin
Tele­fon: +49 30 40 36 77 230
Fax: +49 30 40 36 77 260