In this article you will learn the importance of LGPD for your association

[ayshakhatun3113]

The General Data Protection Law (LGPD) is in force and affects all institutions in the country, since it deals with the responsibility of these entities (private or otherwise) in the collection, storage and processing of sensitive data of any and all residents of the country. In short, the LGPD deals with the protection of personal data, safeguarding the fundamental rights of freedom and privacy, in addition to the free development of the natural person's personality.



The LGPD applies to all sectors of the economy, both for B2C (Business to Consumer) and B2B (Business to Business) companies. Therefore, associations and other organizations must also follow the LGPD. After all, these institutions collect information about their audience, partners and/or associates (and we know that they are collected) and are directly responsible for the storage and security of this content. Failure to comply with the LGPD rules may result in penalties in the event of sharing and/or improper use, with fines that can reach up to R$50 million. Therefore, pay close attention to the points addressed below.

How LGP changes your project in practice
First, the manager and his team need to understand and facebook data understand the personal data processing processes that exist in the institution. Identify the types of data collected, the purpose of the collection, the way it is stored and discarded, all from a digital security perspective. There are consultancies that specialize in this type of analysis.

Therefore, the first visible impact of the LGPD on its members to be observed is in the virtual environment. Although many associations and unions still have their databases on paper, with large physical files, much of this data is already in a virtual environment.

The Internet survives on the basis of collecting data from its users, whether when the user watches a video, makes a purchase, or registers on a social network; everything is data collection and delivery. Therefore, it is very important that the manager and his team work to update the institution's website and its terms of service, making it clear to the user how their data left there (whether or not it can be accessed online) will be used and how it is being managed.

In a clear and objective manner, the user of their virtual environment must be informed of what will be done with the data collected and permission to use this data must be requested, which can be done by means of the user's consent on the website itself. This communication must occur in parallel with practical implementations that adapt to the security, storage, processing and disposal of data. In fact, some companies will be required to create their own privacy policy, making it clear to their customers and associates how the data will be processed and what its purpose is at the time of collection. The LGPD demands this clarity from the institution.

VERY IMPORTANT!
After collecting data, institutions are required to ensure the security of the data collected. According to the LGPD, whether the data was collected online or physically does not matter. Each institution will be held responsible in the event of a leak of this information, which may result in penalties (such as sanctions and high fines). This type of liability means that many organizations need to undergo a real internal revolution, replanning and readjusting their data security, with the implementation of internal standards to ensure the confidentiality and storage of information. Some processes that meet this demand require investment and it is important to seek specialized advice.