This document summarizes a presentation on access management and privacy/consent within federated access management systems. It discusses the types of attributes typically disclosed by identity providers, challenges around personal data disclosure, the need for better representation from service providers and identity providers in standards setting forums, and alternatives to consent such as legitimate interest for personal data processing in accordance with the UK Data Protection Act. It calls on identity providers to participate in proposed identity provider forums to help determine feasibility and implement attribute release policies to better meet service provider needs.