The LGDP brought with it the need to comply with obligations for those who record, store and process personal data of third parties, regardless of who does the processing, whether an individual or a legal entity, revealing itself to be mandatory for those who handle and process this type of data the creation of a privacy policy, transparency about the destination, purpose and operation mode, the obligation to make available a term of consent, the immediate deletion when requested by the holder, the issuance of reports and information directed to the ANPD - National Data Protection Agency, in addition to other obligations imposed by law.
This legislation also provided for different treatment rules between non-sensitive data, such as name, telephone number, address, and others, and sensitive data, such as data related to health, racial or ethnic origin, religious or philosophical beliefs, political opinions, union membership, genetic and biometric issues, sexual life, and data related to the personality of the owner or involving the possibility of damage to the owner.
Therefore, any company that processes the personal data of its customers and employees in its database, whether this is the simplest category, or more relevant data, as sensitive data, must adjust to the requirements of the Law, as well as obey all the procedures established there under penalty of the application of various types of sanctions, that may reach the suspension of the activity involving data management, up to fines of R$ 50,000,000.00 (Fifty million reais).
In this scenario, in order to prepare, support and protect these individuals or companies from the consequences of LGPD, Mosello Advocacia has developed an internal Digital Law cell focused on technical and legal analysis of management, storage and protection of data, composed by professionals specialized in this theme, with a legal core and an IT core, advising our clients on the governance of the data they handle, using technological tools to implement the solutions, with the adequacy of information governance based on the viability and development of our client's business.
To comply with LGPD, the companies that already manage and share documents and data, whether physical or digital, or those that intend to do so, need for those to be stored, qualified and classified in accordance with the parameters established by this legislation, for the purposes of internal control and of the public entities themselves, being subject to inspection and application of sanctions.
Given the requirements of the LGPD, we have developed a service that includes the execution of the identification, separation, and classification of all the company's data and documentation, organizing its storage in compliance with the legal provision, through the implementation of a procedural standard that consists in the optimization and management of all this information. Our professionals will perform the sanitation of all stored data and documents susceptible to LGPD, regularizing liabilities and providing easier management.
Standard Storage is subdivided into two stages:
The first, is the Governance Catalog, which includes the analysis and governance of structured data (e.g. database, hadoop, csv files). The second, is the StoredML, which includes the analysis and governance of unstructured data (e.g., emails, pdf, jpg, png, tiff).
Risk Mapping is a legal advisory service that includes the mapping and consequent proposal for the adoption of measures to adapt the company to the LGPD, as well as the implementation of internal policies and procedures in the management and treatment of client’s data in accordance with the current regulation, diagnosing the needs of adequacy and involving the analysis of opportunities and risks from the operations of the activity, the development of rules, POPs and instruction materials.
With the advent of the LGPD, it is mandatory for companies to have a person in their organizations responsible for managing the entire flow of information, from its collection to its processing and treatment, who will also be responsible for being the interlocutor between the company and the National Data Protection Authority. This professional, called the Data Protection Protection Officer, must have, among his attributions, legal knowlegde in compliance, governance and security of information.
The LGPD provides that the role of the DPO can be performed by individuals or companies, either directly hired as an employee of the company, or through an external specialized entity, which will provide the service in this condition for the companies.
Aware of the importance of the DPO figure, Mosello Advocacia brings in its portfolio the LDPO - Legal Data Protection Officer service, which consists of two fronts.
The first, ADPO - Advice Data Protection Officer, consists in the training and advice just in time of the DPO hired by the company to be part of its staff, preparing him technically for the execution of his duties through the assembly of flows and procedures adjusted to the company's activities, as well as legal counseling for the analysis of factual situations and consequent decision making with developments before the LGPD and the relationship of this before all coexisting legislation.
In the second, OTJ - On The Job, we offer a specialized professional to be your company's DPO, either in company or allocated within our own structure, in both cases, providing efficient management of data treatment, managing the procedures of storage and security, as well as being the company's representative, responsible for dealing with public agencies, with all confidentiality reservations set forth in a confidentiality agreement signed between the office, the professional, and the company.
The LDPO - Legal Data Protection Officer service aims to bring greater security to our clients in terms of data management and storage, reducing costs, boosting results and allowing companies to comply with legislation without making its operations unfeasible.
Leandro Henrique Mosello Lima
(73) 98861.3609
(73) 3281.3609
Murilo Gomes de Souza e Silva
(71) 99216.6000
(71) 3022.5108
We use cookies to frame information about how you use or our site and the pages you visit. Everything to make your experience more pleasant possible. To understand the types of cookies we use, click on Options. Ao click on Accepted, you consent to the use of cookies.
Definitions
We want to be transparent about the data that we partners collect and how we use it, so that you can control how well your personal data is. To obtain more information, consult our privacy policy and our cookie policy.
Or what are cookies?
Cookies are saved files on your computer, tablet or phone when you visit a site.
We use the necessary cookies to make or site work in the best possible way and always to improve our services.
Some cookies are classified as necessary and allow central functionality, such as security, network management and accessibility. These cookies can be collected and set so that you start your navigation or when you use any resource that I require.