CPDATASEC®: Premium Certification & Premium Gap Analysis in Data Protection, Privacy, and Security Management

Exclusive, excellent, and recognized methodology in Brazil

BRA Certificadora has envisioned, developed, and now offers a unique process and seal for Premium Audit and Premium Certification of Data Protection, Security, and Privacy, known as CPDATASEC®, in an exclusive partnership with the Brazilian Institute of Data Security, Protection, and Privacy – IBRASPD.

The entire process stands out for its continual identification, mapping, and INDIVIDUALIZED analysis of the market, structure, strategic objectives, and specific risks of each evaluated organization!

Learn More

This is another model with a significant focus on complying with the General Data Protection Law (LGPD). Innovative, disruptive, and extremely effective, the created model allows for ongoing monitoring with periodic immersions throughout the certification cycle, building more than just a “snapshot” but rather a “series” in several chapters of the level of implementation and maturity of data privacy management for each evaluated organization.

4 Customized Models and 3 Levels of Audit and Certification

There are 4 customized assessment and certification models –

according to the size of each evaluated organization!

Large companies

Small companies

Medium-sized companies

Startups

There are 3 levels considered for evaluating compliance and maturity of the implemented management. Ensuring transparency, clarity, and objectivity to the market, as well as encouragement and guidance for the management to continue evolving:

Level 1: Documental Compliance

Verification of the documental compliance of the management system - Policies, Plans, Manuals, Procedures, Instructions.

Level 2: Documental and Implementation Compliance

Verification of the documental compliance and the adequate implementation of the planned processes and routines by the same management system.

Level 3: Documental Compliance, Implementation, and Continuous Improvement

In addition to documental compliance and the proper implementation of planned processes and routines, the cycle of continuous improvement is verified - effective indicators and PDCA (Plan-Do-Check-Act) methodology.

Feasibility Analysis

Includes document analysis and an interview with the data processing service unit to attest to the minimum certification conditions;
Comprehensive list of managed assets;
Scope of adopted organizational administrative measures and those planned;
Currently implemented technical measures and those planned for the future.

Effective, Transparent, Innovative, and Dynamic Certification Process

Adopts the latest international standards and guidelines for CYBERSECURITY systems, including the requirements of LGPD – General Data Protection Law;
Unlike traditional binary certification models, it establishes a modular conformity assessment framework;
Certification levels are established based on the identified security management within each evaluated organization, considering their demands, characteristics, and applicable risks.

Talk to our team and request an evaluation.

Discover all the solutions from BRA Certificadora!

Industrial Solutions

Corporate Solutions