The Paraná-based Communication Group implemented the data protection project with support from the Rio Grande do Sul-based startup.
The LGPD (General Data Protection Law) has been in effect since August 2020 and will begin applying penalties from August 2021. As a result, many companies are intensifying their efforts to protect the personal data of customers, employees, and suppliers.
An example of this is the Paranaense Communication Group (GRPCom), which began the adaptation process back in 2020. “The initial estimated time was 9 to 12 weeks, and we completed the diagnostic phase in 16 weeks, extending it due to legislative changes, working from home, and other impacts of the pandemic,” explains Rita de Cácia de Medeiros, DPO (Data Protection Officer) of the organization.
For GRPCom, complying with the LGPD (Brazilian General Data Protection Law) is much more than an obligation: it's a way to differentiate itself and improve its relationship with its audience. In total, a large amount of personal data is processed across the group's media outlets, including Gazeta do Povo, the Tribuna newspaper, the RPC television channel, Rádio Mundo Livre, and others.
Regarding the new law, Rita explains that the benefits of being compliant are "a competitive advantage, improved relationships with data subjects, enhanced reputation, and best practices; therefore, we believe that the LGPD (Brazilian General Data Protection Law) is an opportunity."
According to Péricles Cenço, IT director of Grupo RBS, “An LGPD (Brazilian General Data Protection Law) project is a cultural shift that involves rethinking processes and systems. For RBS, most of the data transmitted belongs to the readers, and it is our duty as temporary guardians of the data to protect it with the utmost rigor and control.”
The PrivacyTools platform supports the success of the Group's LGPD compliance project, working on several fronts such as: cookie management, privacy policy control, consent and privacy preference management, data discovery, data mapping and flow, and integrations to automate the workflows for fulfilling data subjects' rights.
Next, a Data Protection Officer (DPO) was appointed, and a channel was created to assist data subjects. The company's internal policies and approved technologies were also reviewed. Then, processes were mapped to define the data processing scenarios for each purpose.
According to Rita, “data protection is a project that has a beginning, a middle, and no end; it will require constant monitoring, and Privacy Tools has come to complete this data management in our companies.” The platform allows mapping the flows of personal data within the organization, managing online consents and the preferences of data subjects. The platform includes Data Mapping, Incident Management, support for data subjects, among other features.
PrivacyTools is a PrivacyTech company, meaning a startup in the privacy sector, accelerated by Obr.global and is one of the pioneers in Brazil in offering solutions for LGPD (Brazilian General Data Protection Law).
The company aims to transform how businesses protect and manage the privacy of personal data and has over 150 clients, including Rede D'or, Banco RCI, Pague Menos, Farmácias São João, Grupo Bom Jesus, Universidade de Fortaleza, Synnex Corporation, among others.
For media outlets, PrivacyTools solutions help maintain the privacy of those browsing online articles by managing cookies authorized by readers, writing Privacy Policies, and mapping user data that is collected and used, in order to recognize and minimize the risk of leaks or misuse of information.
