by 
The facilities of the modern world are great allies of corporations and users through the explosion of new technologies that have emerged in recent years. In addition, the transition from the analog world to the digital age has raised in the most diverse countries the need to protect their citizens and legal entities from cyber attacks.
Pioneering data protection laws established in several places were necessary after leaks of user information and the fragility of the virtual environment in facing attacks by crackers, individuals who break security codes and capture sensitive information.
Compared to other countries, Brazil already had laws spread throughout the legal system that dealt with some issues related to data protection in a general and simplified way. However, to meet the need to adapt to the world scenario, Law 13.709/2018, also known as the General Law for the Protection of Personal Data, was created.
Understand the General Law for the Protection of Personal Data
The Brazil General Data Protection Law is born in line with European data protection laws, being broad and serving several sectors. In its article 1, it is defined that the measure has the “objective of protecting the fundamental rights of freedom and privacy and the free development of the personality of the natural person”.
This means that any and all individuals or legal entities that deal with sensitive information, both physically and materially as well as digitally, treat such information with the greatest care in order to respect their specific purposes, such as: the proposition to which the data apply, compatibility, the need to obtain and retain data and the transparency of relationships.
According to article 3 of the LGPD, the law must be applied when the data is collected or the operation takes place in Brazil and whose activity is aimed at the provision of goods or services or even the processing of data. Failure to comply with the law can generate a loss of US$ 9.550.000,00 and weaken the reputation of those who practice such an act.
How is data classified according to the LGPD?
Article 5 of the General Law for the Protection of Personal Data makes the following classification:
- Personal Data allows the identification or the possibility of identifying a person, such as registration data, interests, etc;
- Sensitive Data addresses, personal issues of the individual, such as political opinion, race and ethnicity.
As a means of instituting guidelines for corporations, the law provides means of protecting personal data through good governance, focusing on sensitive data, and encourages companies to create specific rules and procedures to condition their business to the new scenario instituted.
How to prepare to comply with the law?
The General Law fot the Protection of Personal Data is expected to come into force in 2020. Therefore, it is necessary to be prepared and mature to adapt to it beforehand. This means taking basic safety measures and involving all sectors of the company for good compliance with the new standard.
The collective and individual concern for data protection will inhibit inertia regarding the neglect of such information. Dealing with personal data is extremely common in the business world, as it is involved with consumer relations and is present in the most diverse administrative tasks, especially in the human resources sector.
The care for this information, on a large scale physically stored, goes beyond keeping it in folders. More than ever, it is essential to pay attention so that this data is not lost or perished due to accidents, such as fires.
To do this, it is necessary to use a system that ensures the integrity of the information, allows you to stipulate expiration dates, control the authorization of access to data and also facilitate its management, and the Fusion Platform is ideal for carrying out these tasks.
Fusion Platform has backup systems for the security of the company’s data, ensuring good governance. It also has effective control of which people had access to the document, recording the data and time of such act. In addition, it enables the creation of processes that cleary and objectively demonstrate the use of data, meeting the requirements determined by the LGPD.
