Now the General Data Protection Law (LGPD) is 100% in force and all companies must deal with the need to have a Data Protection Officer (DPO), who is the central figure in governance in Personal Data Protection within the company.
The DPO’s responsibilities include monitoring the application of the LGPD within the company, raising awareness and training employees on the rules for processing personal data, and being responsible for contacting the National Data Protection Authority (ANPD).
Although the current LGPD is generic in terms of describing the DPO’s profile and their duties, it is very likely that the ANPD will soon create complementary standards informing how companies should deal with this issue.
