The Data Protection Officer (DPO) is called Person in Charge by LGPD.
Two of the most important measures of governance of organizations are evaluating and defining the appointment, the position and powers of the DPO, with autonomy and resources to perform the duty effectively.
It is recommended that he responds to the highest hierarchical level of the organization, being a key player in due compliance with the applicable laws and in mitigating risks.