Three Strategic Pillars
GDTA operates through an integrated framework of international coordination, technical infrastructure, and strategic investment. These three pillars work in concert to establish a new paradigm for digital privacy governance, positioning Australia at the forefront of global standards development whilst creating tangible economic opportunities.
International Policy
Multi-jurisdiction regulatory alignment through harmonised standards
TrustMark Infrastructure
Active-state signalling protocol for real-time privacy transparency
Investment & Innovation
Australian accelerator driving global market leadership
1. International Regulatory Policy Task Force
The Policy Task Force coordinates multi-jurisdiction regulatory alignment through standards harmonisation, codes of conduct and practice, and Digital Privacy Officer governance frameworks. This collaborative approach ensures consistent implementation across borders whilst respecting jurisdictional sovereignty and regulatory independence.
Led by founding member Digital Transparency Lab (Canada)—contributing ISO/IEC 27560-1 MVCR-ANCR Profile specification and core intellectual property—and coordinated through regulatory partners in Australia, the United Kingdom, and EU member states, the Task Force creates a unified approach to digital transparency that facilitates international commerce whilst strengthening privacy protections.
01
Convention 108+ Code of Conduct
ISO/IEC 27560-1 Universal Notice Receipt serves as an international Code of Conduct, coordinating implementation across Commonwealth and European jurisdictions to establish baseline modernised data protection standards.
02
ISO/IEC 27560 MVCR-ANCR Profile
Adopting international standards for Minimum Viable Consent Receipt and Anchored Notice & Consent Receipt patterns with technical specifications enabling Controller-ID first architecture.
03
January 2026 Code Sprint
Multi-stakeholder development of Digital Transparency Code of Conduct and Code of Practice through intensive collaboration
04
Partnership Model
Establishing regulatory consultation frameworks and mutual recognition agreements between participating jurisdictions
2. Why Active-State Transparency Matters: Architecture IS Policy
The OPN (Open Privacy Network) High Assurance Broadcast Network Icon (HABNI) is an international digital privacy TrustMark that provides real-time, active-state signalling of privacy and consent status through the Open Privacy Network. Unlike static privacy seals or certifications, HABNI delivers dynamic transparency—enabling users, regulators, and AI systems to verify privacy compliance in real-time.
Controller-ID First vs User-ID First:
Current User-ID First: Individuals create accounts and provide personal information BEFORE seeing controller risks. Controller holds all records. Retroactive enforcement.
Controller-ID First (27560-1): Controller discloses identity and purposes BEFORE processing begins. Individual holds cryptographic receipts. Preventive enforcement. Autonomous consent withdrawal.
This architectural transformation enables synchronic records—individuals hold proof of original terms, detecting retroactive policy changes through hash mismatch. Violations become immediately detectable rather than hidden for months or years.
This revolutionary approach transforms privacy from a static declaration into an active, verifiable state. The TrustMark serves as a universal indicator that an organisation is broadcasting its privacy posture through standardised protocols, enabling automated compliance verification and informed user decision-making. The infrastructure creates a machine-readable privacy ecosystem that scales with emerging technologies whilst maintaining human oversight and control.
1
Human Consent Protocol
Standardised specification for expressing, transmitting, and verifying consent based data controls across systems and jurisdictions with cryptographic integrity
2
Universal Transparency Controls
User-facing interface standards that provide consistent privacy control experiences regardless of platform or jurisdiction
3
Controller Registry
International verification system for data controllers, enabling cross-border accountability and regulatory coordination
4
Active-State Transparency
Real-time signalling infrastructure for AI governance, enabling autonomous systems to respect privacy boundaries dynamically
3. Investor Opportunities through Collective Innovation
International Standards Leadership
GDTA coordinates funding and deployment across three primary jurisdictions:
Canada: Founding technical leadership through Digital Transparency Lab. Mark Lizar serves as ISO/IEC 27560-1 Profile Editor, contributing core intellectual property and standards architecture. DTL provides MVCR-ANCR specification and notice.txt protocol design.
Australia: Asia-Pacific deployment hub and regulatory acceleration, positioning as regional centre of excellence for operational implementation.
United Kingdom: European coordination hub enabling Convention 108+ and GDPR alignment
Government Funding Proposal: Position Canada, Australia and the UK as the global centre of excellence for privacy infrastructure by funding the signalling protocol and establishing GDTA as an accelerator for Australian innovation. This strategic investment creates first-mover advantage in a rapidly growing global market whilst establishing Australia as the trusted international standards leader.
The proposal outlines a pathway for Australia to capture significant economic value from global privacy infrastructure deployment. By establishing technical leadership now, Australia positions its technology sector to provide services, expertise, and intellectual property to organisations worldwide. This investment supports high-value job creation, advances Australia's digital sovereignty objectives, and strengthens the nation's strategic technology capabilities.
$200B+
Global Market Opportunity
Projected privacy infrastructure market value by 2030 across regulatory compliance and transparency services
1st
First-Mover Advantage
International standards leadership position in privacy infrastructure protocols and certification frameworks
15K+
High-Value Jobs
Estimated Australian employment in privacy infrastructure sector by 2028 through accelerator programmes
40+
Export Markets
Countries requiring privacy infrastructure services aligned with Convention 108+ modernisation
Investment Thesis: Australia has a unique opportunity to establish global leadership in privacy infrastructure by combining regulatory credibility, technical capability, and strategic positioning between European and Asia-Pacific markets. Early investment creates a sustainable competitive advantage in standards development, certification services, and technology export.
Transparency Alliance Call to Action Roadmap
Join us for a series of international events designed to advance digital transparency standards, coordinate regulatory frameworks, and demonstrate Commonwealth leadership in privacy infrastructure. These gatherings bring together regulators, innovators, and organisations committed to building trustworthy digital ecosystems.
1
January 14, 2026
International Regulatory Consultation Webinar
Digital Privacy Officer Governance Framework
Australia, Canada & UK Focus Session
2
January 28, 2026
Code of Conduct & Practice Sprint
Four-Week International Task Force
Multi-Stakeholder Standards Development
3
Q1 2026 - March
Australian Innovation Showcase
GDTA Accelerator Launch Event
Sydney
4
Q1 2026 - February
UK Coordination Workshop
Establishing UK Hub for European Deployment
London
January 14-16, 2025 | International Regulatory Consultation
Digital Privacy Officer Governance
Australia, Canada & UK Focus Session
This inaugural consultation webinar establishes the foundation for international coordination on Digital Privacy Officer governance. Regulators from Australia, Canada and the United Kingdom will be invited to explore Co-Regulatory implementation pathways, standards harmonisation across Commonwealth jurisdictions, and partnership opportunities with GDTA.
The session addresses Convention 108+ alignment requirements for both jurisdictions whilst respecting their unique regulatory contexts. Participants will engage in interactive discussions about certification frameworks, codes of practice, and mutual recognition agreements that facilitate cross-border privacy compliance.
International Regulatory Coordination Model
Framework for multi-jurisdiction cooperation on standards development and enforcement coordination
Australian and UK Implementation Pathways
Jurisdiction-specific approaches that respect regulatory independence whilst enabling harmonisation
Standards Harmonisation Across Commonwealth
Leveraging shared legal traditions and regulatory approaches to accelerate adoption
Partnership Opportunities with GDTA
Collaborative models for regulatory engagement, standards development, and pilot programmes
Convention 108+ Alignment
Coordinated implementation strategies for modernised data protection standards in both jurisdictions
Format
2-hour interactive webinar with breakout sessions and Q&A
Time
Accommodating AU/UK time zones (specific time TBD)
Registration
Expression of interest via GDTA portal
January 2026 | Digital Transparency Code of Conduct
The four-week Digital Transparency Code of Conduct and Practice Sprint represents an intensive, multi-stakeholder standards development initiative. This collaborative effort brings together regulators, technical experts, and industry practitioners from multiple jurisdictions to develop comprehensive governance frameworks for digital privacy professionals.
Unlike traditional standards development processes that can span years, this sprint methodology enables rapid consensus-building through structured working groups, asynchronous collaboration tools, and targeted in-person sessions. The approach balances speed with thoroughness, ensuring that deliverables are both technically sound and practically implementable.
Participating Jurisdictions
- Australia - Department of Home Affairs coordination
- United Kingdom - ICO and DCMS partnership
- Canada - Federal and Provincial Privacy Commissioners
- European Union - Convention 108+ Committee representatives
Sprint Structure
- Weekly virtual working sessions with rotating times for global participation
- Asynchronous collaboration via Discord and Notion workspaces
- Regional in-person sessions in Sydney, London, and Toronto
- Public consultation period at sprint midpoint
Code of Conduct Development
Professional ethics, accountability standards, regulatory cooperation frameworks
Code of Practice Development
Technical implementation, risk assessment methodologies, transparency performance metrics
DPO Certification Standards
Competency requirements, examination standards, continuing professional education
Technical Specifications
Anchored Notice pattern, consent receipt exchange protocols, controller registry architecture
Expected Deliverables
International Transparency Code of Conduct
Professional standards framework for regulatory review and public consultation
Draft Code of Practice
Technical specifications with implementation guidance and conformance criteria
DPO Certification Framework
Four-level competency structure from Foundation to Strategic Leadership
Standards Submission Packages
ISO/IEC and W3C documentation for formal international standards processes
Registration: Expression of interest forms are now available for regulatory bodies, technical experts, and organisational representatives. Priority will be given to participants who can commit to active engagement throughout the four-week sprint period.