Data Privacy (Spring 2026)

Course Overview

How can we harness the power of data while protecting individual privacy? This course dives into one of the most critical challenges of our time by exploring privacy threats and cutting-edge solutions. Together, we’ll investigate privacy attacks, analyze their implications, and build a strong foundation in state-of-the-art techniques like differential privacy.

This course is designed to balance theory with practice. You’ll engage with real-world problems, develop practical skills, and explore how privacy-preserving methods are applied in diverse fields. Through projects, quizzes, and collaborative discussions, you’ll gain both technical expertise and a nuanced understanding of the ethical dimensions of data privacy.

What You’ll Gain

• A comprehensive understanding of privacy challenges in data science and machine learning.
• Hands-on experience with tools and techniques for designing privacy-preserving systems.
• The ability to critically evaluate algorithms and articulate insights through projects and presentations.

Who Should Enroll?

This course is ideal for students curious about the intersection of data science, ethics, and security. To succeed, you should have:

• A basic understanding of machine learning (e.g., how large language models work).
• Proficiency in Python programming.
• Familiarity with algorithmic proofs involving probability.

Why Take This Course?

Data privacy is not just a technical challenge—it’s a societal imperative. By the end of this course, you’ll be equipped to tackle complex privacy issues in academic research or industry settings. Whether your goal is to innovate in artificial intelligence or contribute to policy-making, this course will provide the tools and insights necessary to make a meaningful impact.

Course Info

• Location: Rice Hall 340
• Time: Monday and Wednesday 12:30 PM - 1:45 PM
• Instructor: Tianhao Wang
• TA: Chen Gong
• Canvas: Canvas (auto-enrolled for enrolled students)
• Office Hours:
  • Tianhao (Rice 506): Monday and Wednesday 3-4 PM
  • Chen Gong (Rice 542): TBD
• Policy
• Textbook: We don’t need any textbooks, but if you like, scroll down and there’re some books you can read.

Grading

• Project (60%): The project is the core of this course. It is broken down into five milestones:
  • Motivation Presentation (10%): Present a paper/repo/blog that motivates your project.
  • Proposal Document (10%): Written plan of your project.
  • Midterm Progress Presentation (10%): A short update on your progress.
  • Poster Presentation (15%): Final presentation of your work.
  • Final Report (15%): Comprehensive written report.
• Labs (20%): Four take-home labs (see Labs syllabus).
• Quizes (10%): Two quizes on course foundations, each worth 5%.
• Reflection Quizzes (10%): A short “Exit Ticket” at the end or after each class. There will be 15+ such quizzes; each completion is worth 1 point (students should complete at least 10, or ignore at most 5).
• Grading Scale: We use the UVA default Grading Basis

Tentative Schedule

• We will meet in-person; recordings can be found on Canvas (click ‘Cloud Recordings’).

Week	Dates	Monday	Wednesday
1	Jan 12 - Jan 16	No class (semester transition)	Intro + course overview
2	Jan 19 - Jan 23	MLK Holiday (no class)	Privacy attacks
3	Jan 26 - Jan 30	Privacy attacks in ML/LLMs	Threat models + auditing (Lab 1)
4	Feb 2 - Feb 6	Differential privacy basics	DP mechanisms (Laplace/Gaussian)
5	Feb 9 - Feb 13	Composition + privacy accounting	Private learning (DP-SGD) (Lab 2)
6	Feb 16 - Feb 20	Advanced DP-SGD / Local DP	No Class (Lab/Project Work)
7	Feb 23 - Feb 27	Motivation Presentations (1/2)	Motivation Presentations (2/2) (Project Proposal Due)
8	Mar 2 - Mar 6	Spring recess	Spring recess
9	Mar 9 - Mar 13	Cryptography: Secret Sharing + MPC	Homomorphic Encryption (HE) basics (Lab 3)
10	Mar 16 - Mar 20	Secure Inference (MPC vs TEEs)	Private Information Retrieval (PIR)
11	Mar 23 - Mar 27	Revisit: LLM privacy (memorization + extraction)	Agent privacy: RAG/tool leakage (Lab 4)
12	Mar 30 - Apr 3	Midterm Progress Presentations (1/4)	Midterm Progress Presentations (2/4)
13	Apr 6 - Apr 10	Midterm Progress Presentations (3/4)	Midterm Progress Presentations (4/4)
14	Apr 13 - Apr 17	Guest Lecture / Advanced Topic	No Class (Project Work)
15	Apr 20 - Apr 24	Project work / Office Hours	Project work / Office Hours
16	Apr 27 - May 1	Poster Session (Project Report Due)	No class (courses end Apr 28)

More resources

Courses

Core DP & privacy

• Privacy in Statistics and Machine Learning (video) Spring 2023 by Adam Smith (BU) and Jonathan Ullman (NEU)
• Algorithms for Private Data Analysis (video) Winter 2026 by Gautam Kamath (Waterloo)
• Applied Privacy for Data Science Spring 2022 by James Honaker, Wanrong Zhang, and Salil Vadhan (Harvard)
• Introduction to Differential Privacy: Theory, Algorithms and Applications (video) Fall 2024 by Yuxiang Wang (UCSD)
• Algorithms for Private Data Analysis Fall 2020 by Aleksandar Nikolov (UofT)
• Privacy Enhancing Technologies Summer 2025 by Saba Eskandarian (UNC)

Other flavors (theory, systems, fairness, ML)

• Theory: The Algorithmic Foundations of Adaptive Data Analysis Fall 2017 by Aaron Roth (Penn) and Adam Smith (BU)
• Systems: Private Systems Spring 2020 by Roxana Geambasu (Columbia)
• Mechanism design: Differential Privacy in Game Theory and Mechanism Design Spring 2014 by Aaron Roth (Penn)
• Fairness: CS 294: Fairness in Machine Learning (UC Berkeley, Moritz Hardt)
• ML: Privacy Preserving Machine Learning Spring 2022 by Aurélien Bellet (Inria)

Books

Cryptography & MPC

• The Joy of Cryptography
• A Pragmatic Introduction to Secure Multi-Party Computation
• A Graduate Course in Applied Cryptography
• Handbook of Applied Cryptography

Privacy-enhancing technologies (DP, anonymization)

• The Algorithmic Foundations of Differential Privacy
• Differential Privacy: From Theory to Practice
• The Complexity of Differential Privacy
• Differential Privacy: A Primer for a Non-Technical Audience
• Protecting Your Privacy In A Data-driven World
• Differential Privacy for Databases