LGPD
Lei Geral de Proteção de Dados
Brazil
In force since 2020
Americas
Who must comply
Any organization processing personal data of individuals in Brazil, regardless of where it is based.
Penalties
Up to 2% of Brazil revenue, capped at R$50 million per violation.
Key obligations
- Lawful basis for processing
- Freely given, informed consent
- Records of processing
- Honor data subject rights
- Report incidents to the ANPD
How ConsentX helps
Consent-first banner with clear basis
Evidence and receipts
DSAR handling
Region rules for Brazil
Get LGPD ready with ConsentX
This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified local counsel.
How to comply with LGPD using ConsentX
- 1
Scan your website
Run a free scan to find every cookie and tracker on your site, so you know exactly what needs consent under LGPD.
- 2
Show a geo-aware consent banner
Add the ConsentX banner. It detects each visitor region and shows the consent experience that LGPD requires, automatically.
- 3
Block trackers until consent
Keep non-essential cookies and trackers blocked until the visitor agrees, so nothing fires before consent.
- 4
Record tamper-evident proof
Every choice is stored as a tamper-evident consent receipt you can produce in a LGPD audit.
- 5
Handle data requests on time
Use the built-in DSAR workflow with SLA timers to answer access, deletion and opt-out requests within the legal deadline.
Frequently asked questions
Is LGPD like GDPR?+
Yes, LGPD is closely modeled on GDPR, with consent as one lawful basis and similar data subject rights.