Digital Advertising Guidance: DPIAs under the GDPR

Posted on: Friday 27 November 2020 | IAB UK & IAB Europe

Data protection impact assessments: When are they required? And what does a good DPIA process look like for the digital advertising industry?


As part of our work to address the ICO’s concerns about ad tech and real-time bidding, we have worked jointly with IAB Europe to develop this practical guide to carrying out data protection impact assessments (DPIAs). This is in the context of processing data for digital advertising generally, and for real-time bidding, in order to help companies understand their obligations and how to comply with them in practice. It explains how to incorporate the DPIA process into a company’s normal course of product design and development.

Our aim is to provide an accepted, widely adopted standard for evaluating and managing risks associated with personal data processing in the industry. 

The guidance covers:

  • What a DPIA is, as defined in the GDPR, and its purpose
  • When you must carry out a DPIA
  • How to go about a DPIA, including what the DPIA process looks like and who is involved
  • Guidance on how to assess risk and identify appropriate mitigations in the context of typical digital advertising data types and processing activities

If you have any questions about this work, please email [email protected].

Written by

IAB UK & IAB Europe

Topics

Related content

Person speaking

Data Protection & Digital Information Bill returns to Parliament

Government needs to seize the opportunity to improve people’s online experience by extending cookie consent exemptions to advertising measurement and...

Learn more

John Whittingdale: Online advertising brings huge opportunities for SMEs

IAB UK hosted a Parliamentary Reception in December 2022 to inform MPs about the valuable role digital advertising plays in supporting small businesses...

Learn more
Popcorn

HFSS online ad ban postponed to 2025

The Government has moved the implementation of the HFSS online ad ban to 2025, following lobbying from the IAB, our members and industry partners  

Learn more

Digital Advertising Guidance: data security, retention & storage

IAB UK has produced this guidance as part of our commitment to the ICO in our response to its investigation of real-time bidding. The guidance aims to...

Learn more

Why digital advertising works

Discover why digital advertising is effective for reaching your customers and building brands.