Brazil’s new data protection law is about to change the lives of citizens and corporations alike. The LGPD is set to give new rights to approximately 209 million people, while significantly limiting what organizations can do with their personal data. What do these regulations mean for Brazil and the rest of the world?
Brazil’s LGPD (Lei Geral de Proteção de Dados, or Brazilian General Data Protection Law) is generally based on GDPR, so Europe provides a pretty good glimpse at what’s to come for Brazil. Since GDPR was implemented on May 25th, 2018, all companies based in Europe or serving European customers have had to reevaluate their data management strategies.
Now citizens can easily inquire about what data companies have on them, request it to be deleted, and must always be informed about any data breaches.
Non-compliance with these laws can bring about massive penalties. Last year, several companies were fined approximately €55 million for failure to comply with the GDPR. Google alone was fined €50 million.
But what does that mean for Brazil? What is considered personal data and how is it supposed to be handled? Here’s a comprehensive breakdown of Brazil’s data protection law.
The law has a few exceptions like national security, research, journalistic, and artistic purposes. LGPD will go into effect in February, 2020.
Want to read more like this?
Get the latest news and tips from NordVPN.