What are the main challenges that Brazil faces to prevent threats in the cybersecurity field, such as cyber attacks? Who are the social actors with a key role in this theme? How can they work together to mitigate existing risks? The search for answers to these questions encouraged the Igarapé Institute to systematize, analyze and gather the existing knowledge on Brazil’s cybersecurity governance landscape.

 

The Brazilian Cybersecurity Portal gathers analyzes, research, norms and other documents on national cybersecurity. Thus, it intends to strengthen the skills for a collective action by the civil society, the academic community, the public authorities and the private sector in order to build a more secure, cooperative, resilient and sustainable digital environment.

Brazilian General Data Protection Law (LGPD) (2018) (link) - 4127

The Brazilian General Data Protection Law – nº 13,709 (08/14/2018) establishes rules on collecting, handling, storing and sharing personal data, online and offline, by a natural person or by a legal person under public or private law, in order to protect the fundamental rights of freedom and privacy. This Law Creates the National Data Protection Authority (ANPD) and changes law nº 12,965 and was changed by nº 13,853 (07/08/2019). At first, the ANPD’s was created as transitory organization, but was transformed by the Executive Authorities into an indirect entity of the federal public administration, submitted to a special autonomous regime and related to the Presidency (Decree nº 10.474). Among other competencies, the ANPD is responsible for: (1) Regulating the LGPD; (2) monitoring compliance of the legislation on personal data protection; (3) Elaborating the guidelines of the National Data Protection Plan; (4) Applying administrative sanctions, after their provisions come into force, in August 2021, and the matter to get regulated, considering the contributions in public consultation.

Access the Law