With the start of the validity of LGPDnew terms are being introduced for companies in compliance journeyOne that you've probably already heard of is DPO, or the (Data Protection Officer or DPO)But what is a DPO? What does it do? What is its purpose?

In Brazil, the position of DPO It has been given the name Data Protection Officer. It has become a new profession that has emerged with the enactment of the new law.

Many companies had already sought their Data Protection Officer before the law came into effect. After all, the correct handling of data has been gaining attention since 2018, when... GDPR It was implemented in the European Union and went on to influence other countries to develop their own protection laws. 

It is important to remember that, with the entry into force of LGPD, the presence of a DPO/Data Protection Officer In your team, it becomes mandatory for all companies that handle personal data.

What does a DPO do on a daily basis?

What is a DPO? They are responsible for the flow of information within the company, from collection and processing to disposal. They will be the organization's representative before the National Data Protection Authority (ANPD). 

Your job involves:

• Internal audits,
• Training for employees
• Handling requests, whether from the ANPD (National Data Protection Authority) or from data subjects.

It is also the DPO ((Data Protection Officer or DPO)Who should keep records of data processing activities within the company?

You can read more about the ANPD in our article already. published here in the blog.

What does the DPO need to know?

The training of a DPO/Data Protection Officer needs to be interdisciplinary. It requires knowledge of legislation and information security, as well as the ability to interact with both the National Data Protection Authority and the data subjects, in order to address any requests for review, correction, and deletion of information.

There is no specific profile required to become a DPO/Data Protection Officer. It is recommended that professionals interested in this role take a specialized course that leads to certification. 

What is this function like in other countries?

In the European Union, the GDPR (General Data Protection Regulation) has been in effect since 2018 and has created a number of opportunities for those who want to work in data protection. One example is DPO Network Europe, a company that offers recruitment solutions for professionals specializing in this area to European institutions. 

In California, the following is in effect: CCACCalifornia Privacy Policy is the first privacy law in the United States. The state statute aims to enhance privacy rights and consumer data protection, and applies to all California residents. It also establishes the role of a Data Protection Officer. Data subjects have been able to file requests in the state since January 2019. 

Mexico also has the figure of the Data Protection Officer, responsible for carrying out these functions in accordance with the General Data Protection Law (LGPD).

Chat with the DPO.

On the Informativo DPO podcast, we had Lucas Leite, the DPO of Privacy Tools, as our guest. In the channel's second episode, the conversation about the LGPD (Brazilian General Data Protection Law) also touches on the emerging role of the DPO. You can hear The full conversation is available on Spotify.