The purpose of this document is to provide a practical guide to carrying out legitimate interests assessments (LIAs) in the context of processing data in ad tech, for digital advertising generally, and for RTB, in order to help companies understand their obligations, and how to comply with them in practice.
Guidelines
This document establishes guidelines for the encryption and use of user-provided IDs – notably email addresses and phone numbers – in scenarios when online publishers or marketers offer personalized content or services tied to a user-provided email or phone number.
The purpose of this guidance is to assist elected representatives in having a strong awareness of their obligations and responsibilities as data controllers under the GDPR and the DPA 2018.
The DPC has produced guidance around the use of e-receipts to assist retailers adhere to best practice in relation to e-receipts and electronic direct marketing.
This guidance gives advice and information on the responsibilities of those who process personal data for electoral and canvassing activities.
This guidance gives advice and information to members of the public on their data protection rights when their personal data is being processed for electoral and canvassing activities.
This document outlines how ICO will carry out data protection audits in organisations.
These Guidelines cover uses of facial recognition technologies, including live facial recognition
technologies and provide a set of reference measures entities using facial recognition technologies should follow.
This guidance is produced by the Surveillance Camera Commissioner (the SCC) to assist police forces in England and Wales to comply with their statutory obligations arising from Section 33 Protection of Freedoms Act 2012 (PoFA) and the Surveillance Camera Code of Practice (SC Code)
The Fundamentals have been drawn up by the Data Protection Commission (DPC) to drive improvements in standards of data processing. They introduce child-specific data protection interpretative principles and recommended measures that will enhance the level of protection afforded to children against the data processing risks posed to them by their use of/ access to services in both an online and offline world.