By the middle of August last year, the Brazilian Congress took an important step on a data protection law. After many years of debates and different drafts, it finally enacted the General Data Protection Law (Law n. 13709/18). In doing so, the country has taken a significant step toward having a single approach when it comes to data protection principles, rights and obligations. Moreover, this new legal reality would become effective to all as of February 2020, but "not all things run as smoothly as a bossa nova song in Brazil," writes GCA Advogados Partner Ana Carolina Cagnoni, CIPP/E. In this post for Privacy Tracker, Cagnoni looks at the country's existing applicable laws, finding that to understand how Brazilian data protection law is currently applied is to knit a complex patchwork of separate laws and regulations, including state and municipal laws.
If you want to comment on this post, you need to login.