What changes for companies?
Posted: Thu Feb 20, 2025 6:53 am
All companies, regardless of size, must comply with the requirements of the new law. One of the changes is the need for express consent from customers for the use of information, in addition to clarity on the part of the company regarding the use of such information in a transparent manner.
This means that if a person contracts any service and needs to provide registration data, the company is obliged to inform them why this data is necessary, how it will be used and the company is also prohibited from using it for other purposes.
The General Data Protection Law also gives customers the right armenia mobile database to hold companies accountable if their data is accessed by third parties. Companies that fail to comply with the law may be fined R$50 million per violation or up to 2% of their revenue.
What should companies do to adapt?
In May 2021, new legislation came into force that suggests a change in the culture of file management. To achieve this, the company must:
Have a map of the documentation and data you have on your customers;
Ensure documents are securely archived, and information about customer consent and required data application.
Create a DPO (Data Protection Officer) position – a professional who must be fully responsible for data security;
Report to the ANPD through reports on the impacts of data protection;
This law encompasses physical and digital documents, with oversight being the responsibility of the National Data Protection Authority (ANPD), a federal body.
The General Data Protection Law does not apply to specific cases such as journalistic, artistic, public security, investigation and government companies. However, if your company is not on this list, it must have full control and restriction of the data collected.
This means that if a person contracts any service and needs to provide registration data, the company is obliged to inform them why this data is necessary, how it will be used and the company is also prohibited from using it for other purposes.
The General Data Protection Law also gives customers the right armenia mobile database to hold companies accountable if their data is accessed by third parties. Companies that fail to comply with the law may be fined R$50 million per violation or up to 2% of their revenue.
What should companies do to adapt?
In May 2021, new legislation came into force that suggests a change in the culture of file management. To achieve this, the company must:
Have a map of the documentation and data you have on your customers;
Ensure documents are securely archived, and information about customer consent and required data application.
Create a DPO (Data Protection Officer) position – a professional who must be fully responsible for data security;
Report to the ANPD through reports on the impacts of data protection;
This law encompasses physical and digital documents, with oversight being the responsibility of the National Data Protection Authority (ANPD), a federal body.
The General Data Protection Law does not apply to specific cases such as journalistic, artistic, public security, investigation and government companies. However, if your company is not on this list, it must have full control and restriction of the data collected.