Cemig is one of the largest energy companies in Brazil, operating in the generation, transmission, distribution and sale of electricity and natural gas, with businesses in 24 Brazilian states and the Federal District.
Directly serving more than 8.6 million customers, privacy is fundamental in Cemig’s relationship with customers. Privacy and Data Protection Manager at Cemig, Douglas Heleno Penaforte highlights that privacy adds value to the brand, which holds credibility, trust, ethics and transparency as the main pillars: “Privacy is very important within the company, permeating all processes and areas.”
As part of their ethics and transparency policy, Cemig was already compliant with several Brazilian regulations that observed the right to data subjects, including the Consumer Protection Code. Compliance with the Lei Geral de Proteção de Dados (LGPD) was another step of the company towards the trust of its customers and employees.
According to Douglas, when Cemig‘s privacy team started the process of adapting to the LGPD, they didn’t realize quite how big a challenge they would face. When they carried out the mapping phase of all processes, including the various systems and databases that are used for essential activities, the team concluded that an automation solution would be needed.
“As the project matured, we identified that without a technological platform that would help us to operationalize our privacy and data governance program, it would not be possible to meet all the requirements of the law,” said Douglas.