Please enable JavaScript.
Coggle requires JavaScript to display documents.
DPO - Coggle Diagram
DPO
Workflow: the processes/ procedures of DPO
Laws, Regulations, Policies, Norms and Procedures
2.1 Laws and regulations
2.1.3 Civil and Consumer Laws
2.1.4 Internet Civil Framework
2.1.2 Federal Constitution
2.1.1 LGPD
2.2 Industry Regulations
2.2.2 Res. 964/2020 Aneel
2.2.1 Res. 1000 - Aneel
2.2.3 Res. 4893 - Bacen
2.2.4 Res. 06 - Bacen
2.3 Internal Policies
2.3.1 Holding Level
2.3.1.4 18836 - Personal Data Protection Standard for Suppliers and Service Providers
2.3.1.5 18846 - Procedure for Adopting Data Protection Clauses
2.3.1.3 18835 - Privacy by Design Standard
2.3.1.6 18860 - Incident Reporting Procedure to ANPD
2.3.1.2 18834 - Data Governance Standard
2.3.1.7 18865 - Procedures for Data Subject Requests
2.3.1.1 18928 - Data Protection Standard
2.3.1.8 19368 - Cybersecurity Standard
Personal Data Governance
3.1 Data Mapping
3.2 Privacy by Design
Data Subject Transparency
4.6 Visitors
4.7 Investors
4.5 Educational projects and research participants
4.8 Legal representative and partners of suppliers
4.4 Event participants
4.9 Employees of suppliers or service providers
4.3 Ex clients
4.10 Candidates
4.2 Clients
4.11 Employees' relatives
4.1 Employees and Ex-employees
Communication & Training
5.2 Privacy portal (external):
https://www.grupocpfl.com.br/institucional/privacidade
5.3 Privacy central (internal):
https://cpflenergia.sharepoint.com/sites/PortaldaPrivacidade
5.4 LGPD Essentials
5.1 Annual communication plan
Vendor Management
6.1 Self Assessment (with support from business areas)
Risks and Controls
7.3 Key Performance Indicators
7.3.2 Monthly Internal Report
7.3.3 Live Dashboard
7.3.1 Monthly Flash Report
7.1 PAP Internal Controls
7.2. Risk Management
7.2.1 Risk Mitigation (with support from business areas)
Management Tools
8.1 Microsoft – Planner, SharePoint and teams
8.2 OneTrust
8.3 Microsoft Purview
Communication with administration
Organizational structure
1.1 Manager and Data Protection Officer (DPO)
1.1.2 Coordinator
1.1.2.2 Legal Analyst (3x)
1.1.2.1 Risk Analyst
1.1.2.3 Process Analyst
1.1.2.4 IT Analyst
1.1.2.5 Intern
1.1.1 Data Protection Specialist