General Data Protection Law Brazil | Brazil LGPD General Personal Data Protection Law

General Personal Data Protection Law (LGPD)

The Brazil Lei Geral de Proteção de Dados (LGPD) went into effect on September 18, 2020, and serve as a foundation basis for the National Data Protection Authority (ANPD), which will offer a mechanism to review – and potentially reject – a company's framework for the protection of personal data if it is claimed to contravene the new legal standard.

LGPD allows people have more rights over their data

Effects

The following are the effects that the LGPD may have on any organization that falls within its purview:

Adoption of ten principles for handling personal data.

Organizations should ensure that the purpose of processing is documented and that the legal basis for processing is identified based on following the lawful basis mentioned by LGPD.

The LGPD restricts the transmission of personal data to third countries or international organisations.

It mandates the appointment of data protection officers (DPOs).

LGPD requires controller and processor to implement appropriate security measures to safeguard personal information.

Challenges

The following are the issues created by DPB laws that the majority of organizations face:

The organization lack the capability to centrally manage personal data to be governed.

Manually managing data mapping and inventory to meet regulatory requirements.

Delete data as per the regulatory mandates of storage limitation when the lawful basis for processing expires.

The permanent and through erasure of data such that the data cannot be recovered and provide a proof of assurance.

Solutions

The following are the issues created by LGPD laws that the majority of organizations face:

Data discovery, inventory and mapping

Our AI-based, patented solution, TurtleShield PI (Privacy Intelligence) discovers all personal and sensitive data in structured and unstructured data systems across on-premises and multi-cloud environments. TurtleShield DI (Data Inventory) enables organizations to inventory & map their entire “Data footprint”, enabling them to protect what matters the most.

Third party Privacy Intelligence (monitors third party sharing)

Often there are silos within entities or business and IT teams and it is challenging to get a full picture of data going outside organization and which is coming into organization, especially when data is shared with third parties, vendors, business partners and much more. Our TurtleShield PI (Privacy Intelligence) creates a data map based on your “data sharing”, to facilitate you to take action on it.

Data Minimization

TurtleShield DM (Data Minimization) helps businesses minimize excess data and adhere to data minimization principle. This is data hygiene control and we are approaching it from a risk reduction and compliance perspective. We scan large data sets to scan for excess data using Machine Learning and find out excess data including personal data. This can eliminate operational inefficiencies and save cost by removing the unwanted data and legal cost of having it with respect to regulatory compliance.

Right to be Forgotten (RTBF) with Assured Deletion

With TurtleShield RTBF (Right to Be Forgotten) provides the businesses the capabilities to comply with mandatory deletion of personal data by providing the capabilities to delete the data on request along with the validation of the deletion.

Enable Data subject rights with cost savings and compliance in totality

Search capability in large datasets to fulfill data subject requests in totality and at rapid space. Assumption that data only exists in databases and nowhere else is often not reality as customer data exists in many sources. Using Machine learning and AI we crawl across data sources and predict where PII can exist.

Effects

The following are the effects that the LGPD may have on any organization that falls within its purview:

Adoption of ten principles for handling personal data.

Organizations should ensure that the purpose of processing is documented and that the legal basis for processing is identified based on following the lawful basis mentioned by LGPD.

The LGPD restricts the transmission of personal data to third countries or international organisations.

It mandates the appointment of data protection officers (DPOs).

LGPD requires controller and processor to implement appropriate security measures to safeguard personal information.

Challenges

The following are the issues created by DPB laws that the majority of organizations face:

The organization lack the capability to centrally manage personal data to be governed.

Manually managing data mapping and inventory to meet regulatory requirements.

Delete data as per the regulatory mandates of storage limitation when the lawful basis for processing expires.

The permanent and through erasure of data such that the data cannot be recovered and provide a proof of assurance.

Solutions

The following are the issues created by CCPA laws that the majority of organizations face:

Data discovery, inventory and mapping: Our AI-based, patented solution, TurtleShield PI (Privacy Intelligence) discovers all personal and sensitive data in structured and unstructured data systems across on-premises and multi-cloud environments.
TurtleShield DI (Data Inventory) enables organizations to inventory & map their entire “Data footprint”, enabling them to protect what matters the most.

Third party “Privacy Intelligence” (monitors third party sharing): Often there are silos within entities or business and IT teams and it is challenging to get a full picture of data going outside organization and which is coming into organization, especially when data is shared with third parties, vendors, business partners and much more. Our TurtleShield PI (Privacy Intelligence) creates a data map based on your “data sharing”, to facilitate you to take action on it.

“Data Minimization”: TurtleShield DM (Data Minimization) helps businesses minimize excess data and adhere to data minimization principle. This is data hygiene control and we are approaching it from a risk reduction and compliance perspective. We scan large data sets to scan for excess data using Machine Learning and find out excess data including personal data. This can eliminate operational inefficiencies and save cost by removing the unwanted data and legal cost of having it with respect to regulatory compliance.

“Right to be Forgotten (RTBF)” with Assured Deletion: With TurtleShield RTBF (Right to Be Forgotten) provides the businesses the capabilities to comply with mandatory deletion of personal data by providing the capabilities to delete the data on request along with the validation of the deletion.

Enable Data subject rights with cost savings and compliance in totality: Search capability in large datasets to fulfill data subject requests in totality and at rapid space. Assumption that data only exists in databases and nowhere else is often not reality as customer data exists in many sources. Using Machine learning and AI we crawl across data sources and predict where PII can exist.

Featured News & Blogs

What are the Major Security and Privacy Challenges in Open Banking?

General Personal Data Protection Law (LGPD)

LGPD allows people have more rights over their data

Effects

Challenges

Solutions

Data discovery, inventory and mapping

Third party Privacy Intelligence (monitors third party sharing)

Data Minimization

Right to be Forgotten (RTBF) with Assured Deletion

Enable Data subject rights with cost savings and compliance in totality

Effects

Challenges

Solutions

Featured News & Blogs

What are the Major Security and Privacy Challenges in Open Banking?

Ardent CEO Mr Sameer Ahirrao to serve on AAPI (Asian American & Pacific Islander) commission for Howard County

How to Comply With NCUA 72 Hours Cyber Incident Reporting Timeline?

US National Defense Authorization Act (NDAA) For Fiscal Year 2023: Important Changes To Procurement Laws And Policy

Be the first to catch our latest updates,
happenings and more.

Follow us

Solutions

Products

Company

General Personal Data Protection Law (LGPD)

LGPD allows people have more rights over their data

Effects

Challenges

Solutions

Data discovery, inventory and mapping

Third party Privacy Intelligence (monitors third party sharing)

Data Minimization

Right to be Forgotten (RTBF) with Assured Deletion

Enable Data subject rights with cost savings and compliance in totality

Effects

Challenges

Solutions

Featured News & Blogs

What are the Major Security and Privacy Challenges in Open Banking?

Ardent CEO Mr Sameer Ahirrao to serve on AAPI (Asian American & Pacific Islander) commission for Howard County

How to Comply With NCUA 72 Hours Cyber Incident Reporting Timeline?

US National Defense Authorization Act (NDAA) For Fiscal Year 2023: Important Changes To Procurement Laws And Policy

Be the first to catch our latest updates, happenings and more.

Follow us

Solutions

Products

Company

Be the first to catch our latest updates,
happenings and more.