Digital Advertising Guidance: DPIAs under the GDPR
Posted on: Friday 27 November 2020 | IAB UK & IAB Europe
Data protection impact assessments: When are they required? And what does a good DPIA process look like for the digital advertising industry?
Share this
As part of our work to address the ICO’s concerns about ad tech and real-time bidding, we have worked jointly with IAB Europe to develop this practical guide to carrying out data protection impact assessments (DPIAs). This is in the context of processing data for digital advertising generally, and for real-time bidding, in order to help companies understand their obligations and how to comply with them in practice. It explains how to incorporate the DPIA process into a company’s normal course of product design and development.
Our aim is to provide an accepted, widely adopted standard for evaluating and managing risks associated with personal data processing in the industry.
The guidance covers:
- What a DPIA is, as defined in the GDPR, and its purpose
- When you must carry out a DPIA
- How to go about a DPIA, including what the DPIA process looks like and who is involved
- Guidance on how to assess risk and identify appropriate mitigations in the context of typical digital advertising data types and processing activities
If you have any questions about this work, please email ico@iabuk.com.
Related content
As the ICO returns to RTB, are you ready?
With the Information Commissioner’s Office set to start audits within the ad tech industry imminently, it’s vital that any companies engaged in RTB are...
Learn moreDigital Advertising Guidance: LIAs under the UK GDPR
Guidance on how to conduct a Legitimate Interests Assessment; a legal requirement if you want to rely on legitimate interests to process personal data
Learn moreIAB UK statement as ICO resumes RTB investigation
The Information Commissioner’s Office (ICO) has resumed its work investigating data protection compliance in ad tech and real-time bidding (RTB)...
Learn moreFrom User ID to RTB, 2021 is a critical year for progress
User ID and RTB are among the most important and defining areas of work for our industry and 2021 is a critical year for further progress, writes our...
Learn more