Andrew Hughes

CEO & independent analyst at ITIM Consulting Corp.

Kantara Consent receipts allow data subjects to catalog & act on where they agreed to data processing. We demo 5 companies exchanging receipts.


Andrew Hughes CISM CISSP has been providing IM/IT consulting for over 25 years with a focus on security, privacy and digital identity operations, strategy and policy. Since 2013 he has worked with international associations and standards bodies as an independent analyst developing standards and related evaluation materials. He is Chair of the Leadership Council of the Kantara Initiative, helping to bring together community practices and develop conformity assessment programs for digital identity and personal information systems. He has been Editor for several standards at OASIS and ITU-T and has launched and Chaired several work groups at IDESG and Kantara. Andrew is an active contributor and member of the Standards Canada delegation to the ISO SC 27 working group on Identity management and Privacy.

My Sessions

Consent in Action


Interoperability in the management of consent will allow safe, seamless sharing of personal data for individuals. In this session we will explore the role of consent in the GDPR, the practical implications of compliance and see standards-based approaches to consent management in action. GDPR: How to Tackle Consent and Preference Management Alex Cash, OneTrust Consent […]