The Brazilian Data Protection Authority (ANPD) has issued important guidance covering a variety of privacy aspects including security measures, determining controller and processor capacities, and how the ANPD administrative process will be applied to investigating companies and imposing penalties.
On Monday, Provisional Measure No. 1,124 was published, amending Law No. 13,709 of 2018—the Brazilian General Personal Data Protection Law (LGPD)—which brings significant changes to the configuration of the Brazilian National Data Protection Authority (ANPD).
Published by the Brazilian Data Protection Authority (ANPD) on April 26, 2022, the new version of the guidance brought subtle, yet important, changes and clarifications.
Resolution CD/ANPD nº2 of January 27, 2022 approves the Regulation for the application of Law nº 13.709/18, the General Data Protection Law (LGPD), for small business data processing agents.
On October 20, 2021, the Federal Senate approved the Constitutional Amendment Proposal (PEC) that recognizes personal data protection as a fundamental right. The PEC will be in force after promulgation by the National Congress.
On October 4, 2021, the Brazilian Data Protection Authority (ANPD) published a guide and a checklist on information security measures for small data processing agents. The guide covers measures such as contract management, information security policy and access controls. Such measures are necessary for the fulfillment of the security principle in the Brazilian General Law…
On September 29, 2021, Brazil’s Chamber of Deputies approved the amendments to Bill No. 21 2020, which contains principles, rights and duties for the use of artificial intelligence in Brazil. The Bill will proceed to Senate for its approval.
On September 18, 2021, most articles of the Brazilian General Data Protection Law (LGPD) will have been effective for one year. During this period , several lawsuits have been filed and some judicial decisions have been published. In addition, ANPD (National Data Protection Authority) issued some guidance relevant to understanding the regulatory scenario, as well…
On August 30, 2021, the Brazilian Data Protection Authority (ANPD) published a draft resolution on the application of the Brazilian General Data Protection Law (LGPD) for small businesses that process personal data. The draft presents exemptions with respect to several obligations provided for in the LGPD, especially for microenterprises, small businesses, startups and non-profit legal…
In this webinar Oliver Yaros, Ana Bruder, Cristiane Manzueto and Rodrigo Leal discuss how the concepts of controllers, joint controllers and processors are defined under the European GDPR and how the analogous terms are interpreted under the LGPD when companies are considering how to comply with this new piece of legislation in Brazil.