What is the LGPD?
The LGPD, or the Brazilian Data Protection Act, is a Brazilian privacy law that went into effect in August 2020. It regulates how personal data of individuals located in Brazil can be collected, used, and processed. The law impacts Brazilian companies and any business that targets Brazilian individuals or that collects, uses, or processes the personal data of Brazilian individuals regardless of where the business is located. Essentially, this means the LGPD will apply to most organizations that process personal data of Brazilian individuals—regardless of where they are established, and regardless of where their processing activities take place.