The Brazilian Data Protection General Act (LGPD) establishes a set of rules, regulating the processing of personal data in all sectors of the economy, with rules for the collection, use and storage of such data
Complying with the LGPD
We provide a diagnosis of the maturity of our customers, regarding privacy and protection of personal data
Structuring governance programs in privacy and protection of personal data
We prepare and/or review
Privacy Policies
Terms of use
Personal data processing agreements
Data protection impact reports, assessing legitimate interest
Policies focused on preventive measures related to security incidents
Appropriate security incident response plans
Processes for choosing the proper legal basis for each of the personal data processing activity
Internal processes involving personal data processing records
Compliance’s processes with international rules for the protection of personal data, making them compatible with Brazilian rules for the protection of personal data
Legal advice focused on the customers’ interests before the regulatory body for the protection of personal data, the Brazilian Data Protection Authority (ANPD)
We assess and assist regarding the implementation of privacy and protection of personal data, guided from the design of products and/or services, with technologies that facilitate the control of such data
Principles¹
Proactive not Reactive; Preventative not Remedial
Privacy as the Default Setting
Privacy Embedded into Design
Full Functionality – Positive-Sum, not Zero-Sum
End-to-End Security – Full Lifecycle Protection
Visibility and Transparency – Keep it Open
Respect for User Privacy – Keep it User-Centric
[1] CAVOUKIAN, Ann. Privacy by design: the 7 foundational principles – implementation and mapping of fair information practices (https://www.ipc.on.ca/wp-content/uploads/resources/7foundationalprinciples.pdf)
We evaluate procedures regarding the international transfer of personal data, adapting them to the Brazilian legislation for the protection of personal data, as appropriate
We prepare, review and/or negotiate the Agreements subject to the international transfer of personal data
We prepare legal opinions, analyzing the products and/or services rendered by our customers, evaluating
Risks involved
The measurement of potential contingencies
Actions to be taken, mitigating risks
We conduct internal training, addressing good privacy practices and personal data protection
We prepare and/or review materials for employees and partners of our customers on the following topics
Privacy and personal data protection
Information security