Lei Geral de Proteção de Dados Pessoais (LGPD)
Discover, protect and securely erase personal data – meeting LGPD's safeguards and Right to Erasure obligations under Brazilian law.
Meet LGPD’s Data Protection Requirements with Jetico’s Solutions
The Lei Geral de Proteção de Dados Pessoais (LGPD), translated as the General Law for the Protection of Personal Data, is Brazil’s national data protection regulation. Introduced in August 2018 and inspired by GDPR in the EU, LGPD has been enforceable since August 2020, with administrative sanctions in force since August 2021.
Before personal data can be protected or erased, it must first be located. A practical LGPD strategy starts with data discovery, then applies encryption to data that must be retained and secure wiping when retention ends or a Right to Erasure request is received.
LGPD Data Wiping
- The LGPD addresses data wiping under the ‘Right to Erasure,’ as stated in Articles 5, 16 and 18.
- LGPD’s ‘Right to Erasure‘ mandates data deletion when it is excessive, unnecessary or collected unlawfully, and requires data to be erased upon request if consent was the basis for collection.
- To help your organization with LGPD compliance, we offer BCWipe to wipe selected files and folders and BCWipe Total WipeOut to erase entire hard drives.
LGPD Encryption
- LGPD requires controllers to apply technical and administrative security measures to protect personal data from unauthorized access, loss, alteration or unlawful processing (Article 46).
- Encryption is one of the most effective safeguards available, rendering data unintelligible to unauthorized users and reducing breach exposure even if data is accessed.
- To help your organization with LGPD compliance, we offer BestCrypt Container Encryption to safeguard files and folders and BestCrypt Volume Encryption to protect entire hard drives.
Data Discovery & Classification –
Your First Step to LGPD Compliance
Compliant with Leading Data Erasure & Security Standards
With Jetico, You Can
Jetico helps you discover where personal data resides, protect it while it’s needed and securely erase it in response to LGPD’s Right to Erasure – supporting every stage of the data lifecycle LGPD expects you to control.
Need Help with LGPD Compliance?
Our data protection specialists are here for you.
About LGPD Compliance
The Lei Geral de Proteção de Dados Pessoais (LGPD) is Brazil’s General Data Protection Law that aims to safeguard the privacy of Brazilian citizens by regulating personal data processing. The National Data Protection Agency (ANPD) is responsible for enforcing the law and ensuring compliance across sectors.
The LGPD requires compliance for people, businesses, public institutions and charities that process the data of Brazilian citizens, wherever they are based. The regulation applies to people and organizations that are processing:
- Personal data in Brazil
- Personal data that was collected in Brazil
- Personal data to offer goods or services in Brazil
Like GDPR’s ‘Right to be Forgotten‘, LGPD includes a ‘Right to Erasure’ with two operational triggers: data must be deleted when it is excessive, unnecessary or unlawfully processed, and it must be deleted on request when collection was based on consent.
Be sure to check out our other blogs covering compliance strategies and best practices, and learn how to meet the data wiping guidelines of the LGPD law.
News & Blogs
Stay updated with the latest news, insights, trends and expert tips on data protection and cybersecurity.
Check back here regularly for news and blogs