Portuguese 
English 
Spanish 
3 min of reading 
Emerging Challenge: 80% Of Brazilian Companies Have Yet To Adapt To The General Data Protection Law
In the Brazilian business context, data security is an emerging challenge. According to the Daryus Group, a specialized consulting firm, only 20% of companies in Brazil are fully compliant with the General Data Protection Law (LGPD). However, what is evident is that non-compliance with this law results in serious consequences that go beyond costly fines.
Risks Of Non-Compliance And The Growing Wave Of Cyber Attacks
Hackers continually reinvent themselves to exploit vulnerabilities and monetize through cyber attacks. In light of this, no company is completely safe, even if it has installed the best antivirus available in its systems.
The risk lies not only in the threat of an attack but also in the potential data leak that may occur after such a breach. Leaked data often ends up being sold on the dark web or to third parties. Not to mention the LGPD, which prescribes severe penalties for such leaks, reinforcing the need for clear data protection protocols.
-
Oncorp wins auction and enables biodiesel and gas thermal plants in Brazil, with strategic projects in Suape and Xavantes Aruanã.
-
Raízen Recovery: Shell Cosan May Reduce Control After R$ 65 Billion Debt
-
Outback Montes Claros: Chain Confirms First Unit in Northern Minas in 2026
-
Inpasa Creates Advisory Council and Brings José Olympio to Strengthen Corporate Governance
In Brazil, an emblematic case that illustrates the problem was that of Cyrela, the first company condemned in the country for data leakage under the LGPD. This incident not only resulted in financial damage to the company but also affected its reputation and consumer trust in the brand.
The Brazilian Reality And The Urgency For Compliance With The LGPD
According to a study conducted by the Identity Theft Resource Center (ITRC), 1,862 data breaches were recorded in the United States in 2021. In Brazil, the situation is even more alarming, as exemplified by the recent incident of 160,000 Pix keys leaking by the Central Bank.
Lawyer Guilherme Guimarães, a specialist in Information Technology and Communication Management from UTFPR, warns about the risks that Brazilian companies face when failing to comply with the LGPD. In addition to fines, a data leak can generate negative publicity, suspension of activities, and in some cases, can even lead to lawsuits.
Governance, Risks And Compliance: The Importance Of Using Technology
In this context, Josefina Gonzalez, president of Assepro-PR/Acate, reinforces the importance of governance, risk, and compliance (GRC) management. According to her, it is crucial for companies to adopt technologies that assist in complying with the LGPD, identifying risks, implementing effective policies and controls, and providing adequate training to the team.
She emphasizes that by complying with the LGPD, companies not only adhere to the legislation but also demonstrate concern for privacy, strengthening customer trust and improving their market positioning.
In conclusion, Guilherme Guimarães emphasizes: “Companies need to understand that behind every personal data, there is a life. Personal data in the hands of ill-intentioned individuals can ruin the life of one or more individuals.” Therefore, compliance with the LGPD is not just a legal matter but also a moral one.
Seja o primeiro a reagir!