On October 4, 2021, the Brazilian Data Protection Authority (ANPD) published a guide and a checklist on information security measures for small data processing agents. The guide covers measures such as contract management, information security policy and access controls. Such measures are necessary for the fulfillment of the security principle in the Brazilian General Law for the Protection of Personal Data (LGPD) and will be considered in the application of sanctions.

Continue reading.