General data protection law: take care of customer data

 The General Law on Protection of Personal Data, enacted in August 2018, brought a series of changes regarding the way companies and public bodies should deal with third party data. The standard, which follows the steps of the European Union's General Data Protection Regulation (GDPR), has a set of measures to regulate the way that information is collected, stored and used in the provision of services.


What is the General Personal Data Protection Act?


The General Law on Protection of Personal Data, like the GDPR, is a set of rules that aims to make the relationships and uses of companies with their customers' data more transparent.


To this end, rules have been established that involve authorizations on the use of information and mechanisms to make privacy policies clearer. In addition, the mandatory actions in case of leaks are also more accurate, offering more security to the user.


How does LGPD influence the privacy policy of companies?

For companies, the LGPD may represent the need to make several changes to data protection policies. All businesses and public institutions that provide services in Brazil that involve the collection of information from third parties must make adaptations, such as:


provide greater transparency about data processing processes;

having more active postures if information leaks occur;

review your privacy and digital security rules.

4 myths and truths about LGPD that you need to discover

How to adapt to LGPD?

To adapt to the new legal framework and keep user data protected, the company needs to create and review all of its data management and governance policies.


It is necessary to keep in mind that this is a critical care, since its non-compliance can result in fines of up to R $ 50 million. Among the measures that can be adopted, it is worth mentioning:

IT service technician work for computer software or hardware businesses, supporting clients with products. Usually, they provide system support internally to organizational employees. 

create a privacy policy that is transparent, understandable and easily accessible;

collect data only with the user's explicit consent;

seek to anonymize the information used for data analysis processes;

monitor your IT infrastructure for digital threats;

notify your customers and local authorities if a leak occurs;

send alerts if any security policy is modified;

adopt good practices to protect against digital threats.

Comments

Post a Comment

Popular posts from this blog

International English Language Testing System (IELTS)

 It has existed for almost 30 years and is one of the most widespread tests around the world. It aims to test a candidate's level of communication in English using four language skills with a real context: oral interpretation (30 minutes), text interpretation (60 minutes), writing (60 minutes) and conversation (15 minutes). Developed by the British Council in partnership with the University of Cambridge, it is applied in 16 cities in Brazil. See more:  Amazon Saheli Quiz Answers The score ranges from 0 (most basic) to 9 (most advanced). The score required by universities varies widely. However, there are reports that renowned institutions require a score higher than 8. It is also important to say that IELTS is applied in two formats: academic and general training. The academic is aimed at those people who are looking for opportunities to study master's, doctorate and postdoctoral studies abroad. General training, on the other hand, is focused on those who seek professional impr
Read more

Prevention and Recovery: How can security tools help?

 Heavy rains, floods, landslides, devastating fires, blackouts that left an entire state without electricity. Unfortunately, the list of disasters that occurred in Brazil during the year 2020 is long. Disasters appear unexpectedly, generating terrible results and, often, irreversible damage. Within a company's scenario, it is not much different. Just as nature is subject to disasters and risks, so are companies. Therefore, information security works to protect data and information within the business environment, through tools and actions that act in the prevention and recovery of data in disaster situations. In this article, you will understand how security tools can help in a disaster scenario, and why it is important to have complete and continuous actions to protect your company's data. There are two reasons why people underestimate threats and risks: ignorance and minimizing results. Although we are in the information age, the significant increase in the cost of data leaks
Read more

How to increase visibility and mitigate risks in the corporate network?

 Corporate networks are changing rapidly as companies embark on Digital Transformation, expanding on the Cloud, incorporating IoT devices and increasing wireless access. All of this increases the attack surface, making the environments more complex.  Protecting this new environment and blocking more sophisticated and intelligent cyber threats has been a major challenge for IT. Therefore, it is necessary to invest in tools capable of giving quick and accurate responses to any type of attack. The problem is that, as the context and visibility are compromised by the complexity of the environment, the IT team ends up having trouble screening many alerts at the same time.  As a result, response times are delayed and teams are often unable to accurately screen all alerts, allowing potential threats to go unnoticed. To deal with this new reality, companies need robust and efficient protection solutions, such as Gigamon's ThreatINSIGHT. It is the cloud's first native high-speed network
Read more