Digital Advertising Guidance: DPIAs under the GDPR

Posted on: Friday 27 November 2020 | IAB UK & IAB Europe

Data protection impact assessments: When are they required? And what does a good DPIA process look like for the digital advertising industry?

As part of our work to address the ICO’s concerns about ad tech and real-time bidding, we have worked jointly with IAB Europe to develop this practical guide to carrying out data protection impact assessments (DPIAs). This is in the context of processing data for digital advertising generally, and for real-time bidding, in order to help companies understand their obligations and how to comply with them in practice. It explains how to incorporate the DPIA process into a company’s normal course of product design and development.

Our aim is to provide an accepted, widely adopted standard for evaluating and managing risks associated with personal data processing in the industry. 

The guidance covers:

  • What a DPIA is, as defined in the GDPR, and its purpose
  • When you must carry out a DPIA
  • How to go about a DPIA, including what the DPIA process looks like and who is involved
  • Guidance on how to assess risk and identify appropriate mitigations in the context of typical digital advertising data types and processing activities

If you have any questions about this work, please email [email protected].

Download the guide

Written by

IAB UK & IAB Europe

Topics

ICO report
DPIA
GDPR
Policy
ICO

Related content

People consulting over a desk adorned with laptops and notebooks

Joint Committee on draft Online Safety Bill calls for inclusion of paid-for ads

New report recommends Government u-turn to include paid-for ads in the scope of the Online Safety Bill

Learn more

ICO publishes data protection & privacy expectations

The Information Commissioner’s Office (ICO) has laid out data protection standards that it expects companies to meet when developing new ad tech...

Learn more

IAB UK response to DCMS Data Reform consultation

We have responded to the DCMS consultation on reforms to the UK’s data protection regime Learn more

HFSS ad ban: Where are we now & what's next?

Read an update on our work regarding the HFSS online ad ban from our Public Policy Manager, James Davies

Learn more

Why digital advertising works

Discover why digital advertising is effective for reaching your customers and building brands.

Find out more