The entry into force of Law N° 21.719 of Personal Data Protection is increasingly near. If your organization has not yet begun its compliance process, here you have 3 points more urgent that you should resolve before July:
1. Map of personal data
You want to know what personal data to collect, where you store it, who has access and to what purpose they are used. This information is the basis for building all of your compliance plan.
2. Consents traceable
Not enough to have a checkbox checked by default. You need systems that allow to register when, how to and what someone gave his consent. Everything should be demonstrable to the authority.
3. A compliance officer
Either a Data Protection officer (DPO) internal or external, you must assign someone to coordinate and oversee your strategy of compliance. This figure is key to tracking and responding to incidents.
Do not wait for more time. Every week without action is a missed opportunity to protect your business.
