Dr. Jan Tolsdorf


Jan Tolsdorf studied media technology at the TH Köln - University of Applied Sciences, where he received his B.Sc. and M.Sc. degrees. After working in software development for web, audio and video technologies, he joined the data and application security group of Prof. Dr.-Ing. Luigi Lo Iacono as a research assistant in 2018. There he is working on topics in the area of Usable Security & Privacy. Together with the research group, he moved from the TH Köln to the Bonn-Rhein-Sieg University of Applied Sciences in mid 2020.

Research interests

  • Usability of user-centric solutions for privacy and security
  • Information privacy in digitised workplaces

Grants and Awards


  • Förderpreis der Hochschulgesellschaft Bonn-Rhein-Sieg. Award granted by the Bonn-Rhein-Sieg University Society for his PhD thesis.


  • J. Tolsdorf. Investigation of Information Privacy in Employment: Fundamental Knowledge and Practical Solutions for the Human-Centered Design of Measures to Preserve the Right to Informational Self-Determination in Employment. Doctoral dissertation, University of Göttingen, 2022. [LINK]
  • J. Tolsdorf, F. Dehling, and L. Lo Iacono. Data Cart – Designing a Tool for the GDPR-compliant Handling of Personal Data by Employees. Behaviour & Information Technology (BIT), 41(10):2070-2105, 2022.
  • J. Tolsdorf, D. Reinhardt, L. Lo Iacono. Employees’ Privacy Perceptions: Exploring the Dimensionality and Antecedents of Personal Data Sensitivity and Willingness to Disclose. Proceedings on Privacy Enhancing Technologies (PoPETs), 2022(2):68--94, 2022. Acceptance rate for full papers: 26%. [LINK]
  • F. Dehling, D. Feth, S. Polst, B. Steffes, and J. Tolsdorf. Components and Architecture for the Implementation of Technology-driven Employee Data Protection. Proceedings of the 18th International Conference on Trust, Privacy and Security in Digital Business (TrustBus), 2021. Acceptance rate for full papers: 37%.
  • S. Wiefling, J. Tolsdorf, and L. Lo Iacono. Privacy Considerations for Risk-based Authentication Systems. Proceedings of the 7th IEEE International Workshop on Privacy Engineering (IWPE), 2021. [LINK]
  • J. Tolsdorf, M. Fischer, and L. Lo Iacono. A Case Study on the Implementation of the Right of Access in Privacy Dashboards. Proceedings of the 9th Annual Privacy Forum (APF), 2021. Acceptance rate for full papers: 21%. [PDF]
  • J. Tolsdorf, F. Dehling, D. Reinhardt, and L. Lo Iacono. Exploring Mental Models of the Right to Informational Self-Determination of Office Workers in Germany. Proceedings on Privacy Enhancing Technologies (PoPETs), 2021(3):5–27, 2021. Acceptance rate for full papers: 17%. [LINK]
  • J. Tolsdorf, F. Dehling, und D. Feth. Benutzerfreundlicher Datenschutz in Cloud-basierten Office-Paketen. Datenschutz und Datensicherheit (DuD), 45(1):33–39, 2021. [LINK]
  • S. Polst, J. Tolsdorf, F. Dehling, und D. Feth. Verarbeitung von Beschäftigtendaten. Datenschutz und Datensicherheit (DuD), 45(1):19–22, 2021. [LINK]
  • J. Tolsdorf, F. Dehling, and L. Lo Iacono. Take Back Control! The Use of Mental Models to Develop Privacy Dashboards. ITG News, 8(3):15–20, 2020. [LINK]
  • J. Tolsdorf and L. Lo Iacono. Vision: Shred If Insecure – Persuasive Message Design as a Lesson and Alternative to Previous Approaches to Usable Secure Email Interfaces. Proceedings of the 5th IEEE European Workshop on Usable Security (EuroUSEC, EuroSPW), 2020. [LINK]
  • J. Tolsdorf, C. K. Bosse, A. Dietrich, D. Feth, H. Schmitt, Privatheit Am Arbeitsplatz - Transparenz Und Selbstbestimmung Bei Arbeit 4.0. Datenschutz und Datensicherheit (DuD), 44(3):176-181, 2020. [LINK]
  • J. Tolsdorf, F. Dehling. In Our Employer We Trust: Mental Models of Office Workers' Privacy Perceptions. Proceedings of the 1st Asian Workshop on Usable Security (AsiaUSEC, FC workshop), 2020.
  • N. Gruschka, L. Lo Iacono, J. Tolsdorf. Classification of Android App Permissions: Tell Me What App You Are and I Tell You What You Are Allowed to Do. Proceedings of the 17th European Conference on Information Warfare and Security (ECCWS), 2018.
  • H.V. Nguyen, J. Tolsdorf, L. Lo Iacono. On the Security Expressiveness of REST-based API Definition Languages. Proceedings of the 14th International Conference On Trust, Privacy and Security In Digital Business (TrustBus), 2017.