Request a Demo

Lei Geral de Proteção de Dados Pessoais (LGPD)

How Fides Enables Privacy Rights Compliance in Brazil
Request a Demo
Registration_Service.YML code window over FidesOps Dashboard

What’s Included in LGPD?


Limits to Sensitive Personal Information (SPI)

Like CCPA, LGPD contains categories of Sensitive Personal Information (SPI), SPI is defined as information that could result in discriminatory practices, including racial or ethnic origin, religious belief, political opinion, trade union, biometric data, and more.

Protections Against International Data Collectors

LGPD uniquely protects against international data collectors. If a data collector based outside of Brazil does not process data according to LGPD's 10 legal bases for processing consumer data, they must pay a fine of 2% of their revenue or 50 million Brazilian reals.

Consent Requirements

LGPD has a strict definition of user consent. Article 9 states that consent must be “clear and include the purpose of processing, duration of processing, identity of the data controller, entities to whom the data will be disclosed and rights of the data subject, including their right to deny consent.”

Introduction to Brazil’s Privacy Law

Brazil 's comprehensive federal privacy law is Lei Geral de Proteção de Dados Pessoais (LGPD), which went into effect in 2020.

This law provides a frame work for regulating the use and processing of the personal data of Brazil’s 150 million internet users.

Like most privacy laws, LGPD was heavily influenced by Europe's GDPR. If your company's privacy practices are GDPR compliant, you'll only need minimal effort to comply with LGPD.

However, your business still needs to understand how Brazil defines data privacy and LGPD’s unique provisions in order process the data of Brazilians legally.

Here’s how Ethyca can help you meet LGPD compliance easily.

See Privacy Engineering Intelligence in Action

How Fides Enables Privacy Rights Compliance in Brazil

Get a Demo