'Most Innovative Startup 2020' by RSA - Watch the pitch videoView More
LGPD (Lei Geral de Proteção de Dados Pessoais) is the data privacy law of Brazil, aimed at providing Brazilian consumers more control over their personal information. In many respects, LGPD is similar to the General Data Protection Law (GDPR) of the European Union, but there are some significant differences. LGPD goes into effect in early August 2020 and organizations must comply with this regulation in order to avoid fines and penalties by the newly-created Brazilian regulatory authority, Autoridade Nacional de Proteção de Dados (ANPD).
LGPD imposes some very important obligations on organizations dealing with and processing the user data of Brazilians. Some of the most important requirements are:
According to article 3 of LGPD, if an organization performs the following tasks, they are required to comply with LGPD:
“Processing data within the territory of Brazil, Processing the data of individuals who are within the territory of Brazil. The location of the data processor is immaterial.
“Processing data which was collected within the territory of Brazil.”
LGPD offers its constituents the nine following rights:
These rights can be enforced through complaints and private actions brought about by data subjects.
Under the LGPD, the penalty system ranges from:
and what to do in order to comply, sign up to get a free copy of the PrivacyOps book
SECURITI.ai’s award-winning compliance solution revolves around the concept of PrivacyOps, which calls for utilizing robotic automation, artificial intelligence and machine learning to provide enterprises with a system that automates majority of compliance tasks, freeing up crucial resources for other areas of business.
SECURITI.ai helps businesses discover data over a web of internal and external systems, stitch a data graph to link personal data with each individual, conduct automated internal assessment of policies as well as third-party vendors, manage consent and do a lot more!
While businesses may hesitate to take the leap towards automation from their current manual methods with the fear of costs and change in infrastructure, it is evident that automation is truly the way forward. Automation will increase the ROI as well as increase productivity, lowering cost and improving accuracy, in other words, it will pay for itself and bring organizations a number of benefits along with it.
Applies to all companies processing the personal data of data subjects residing in Brazil, regardless of the company’s location.
Fines can range up to 2% of annual turnover in Brazil or R50 million per violation, which approximate to €11 million.
Some people call the LGPD “Brazil’s GDPR”. If you’re already GDPR compliant, you are mostly within the provisions of the LGPD.
LGPD goes into effect in August 2020.