General Data Protection Law
What is LGPD?
The LGPD (General Data Protection Law) – Law No. 13,709, of August 14, 2018, was created with the aim of protecting the fundamental rights of freedom and privacy and the free formation of each individual's personality. This law deals with the processing of personal data, both in physical and digital media, carried out by an individual or legal entity governed by public or private law, and encompasses a wide range of operations carried out both manually and by digital means.
What is Data Processing?
Data processing is any operation carried out with personal data, which includes the collection, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, deletion, evaluation or control of information, modification, communication, transfer , diffusion or extraction.
Data Lifecycle
The data lifecycle is a process divided into 5 stages that personal data goes through, from its collection to its elimination, within the context of an organization. Each stage has assets and risks where safeguards must be defined to ensure the security of data subjects.
The first stage of the data life cycle is the collection, reception or production of personal data, which can be collected in physical or virtual form, as long as it is lawful, with the consent of the holder or based on another legal basis that legitimizes the treatment.
Retention is the stage of archiving personal data securely, guaranteeing the confidentiality and integrity of the data. Storage can be done physically or virtually, the maximum storage time must be defined according to the purpose of the processing.
The first stage of the data life cycle is the collection, reception or production of personal data, which can be collected in physical or virtual form, as long as it is lawful, with the consent of the holder or based on another legal basis that legitimizes the treatment.
Sharing is the transmission, distribution, communication, transfer, dissemination and sharing of personal data with other controllers/operators with the aim of processing them to fulfill the necessary purposes. The controller must ensure that third parties receiving the data also comply with data protection standards.
The first stage of the data life cycle is the collection, reception or production of personal data, which can be collected in physical or virtual form, as long as it is lawful, with the consent of the holder or based on another legal basis that legitimizes the treatment.
It is the last stage of the data life cycle that aims to erase or eliminate personal data as the intended purpose has already been achieved.
Discover how we can help your company reach new levels of efficiency and quality!
Contact us
Service via email
Lapa,
São Paulo - SP
CEP: 05074-000
Our results come from the work of committed professionals, who seek to improve people's lives, which is why we offer Excellence in Life Sciences!
Quality Compliance Consultoria Farmacêutica Ltda CNPJ: 27.372.308/0001-14
Copyright © 2024. All Rights Reserved by VTADDONE
