What is LGPD?

LGPD is the The General Data Protection Law in Brazil.

The LGPD is privacy and the first comprehensive general data protection law in Brazil similar to EU GDPR.

Who does the LGPD apply to?

The LGPD applies to the collection, use, or disclosure of personal data in Brazil by organisations regardless of whether the collection, use or disclosure of personal data takes place in Brazil or not.

Like GDPR, the law applies to global organisations who have consumers and users in Brazil.

LGPD and Explicit Consent Collection

According to LGPD, Consent must be informed, explicit, freely given, specific and data subjects have the right to withdraw and written in plain language that it’s clearly visible.

LGPD Timeline

• September 18, 2020: Enforcement of LGPD is the The General Data Protection Law in Brazil.

The Personal Data Protection Act (LGPD) fines

The Brazil’s Data Protection Authority (ANPD) may issue a fine of up to 2% of an organization’s revenues in Brazil (for the prior financial year, excluding taxes), up to a total maximum of BRL 50,000,000 per infraction.

Is a Cookie Banner required to Comply with LGPD

Yes. LGPD requires that explicit consent. You can use the build-in features of UniConsent CMP to collect and manage the consent and privacy preference to compliant with Brazil LGPD.