Arquivo Law in Full - Página 2 de 8 - Assis e Mendes Advogados

Art. 57

Art. 57 (vetoed)

Art. 55

Art. 55 (vetoed) Art. 55-A The National Data Protection Authority (“ANPD”) is hereby created, without any increase in expenses, an entity part of the federal public administration, pertaining to the Presidency …

Art. 54 The amount of daily fines applied to infractions of this Law shall observe the severity of the infraction and the extent of the damage or losses caused

Art. 54 The amount of daily fines applied to infractions of this Law shall observe the severity of the infraction and the extent of the damage or losses caused, and …

Art. 53 The national authority shall define the methodologies that will be used for the calculation of the base value for fines

Art. 53 The national authority shall define the methodologies that will be used for the calculation of the base value for fines, by means of its own regulations concerning administrative …

Art. 52 Data processing agents that commit infractions of the rules provided in this Law

Art. 52 Data processing agents that commit infractions of the rules provided in this Law are subject to the following administrative sanctions, to be applied by the national authority: I …

Art. 51 The national authority shall encourage the adoption of technical standards

Art. 51 The national authority shall encourage the adoption of technical standards that facilitate data subjects’ control of their personal data.

Art. 50 Controllers and processors

Art. 50 Controllers and processors, within the scope of their functions, concerning the processing of personal data, individually or by associations, may formulate rules for good practices and governance that …

Art. 49 The systems used for processing personal data shall be structured in order to meet the security requirements

Art. 49 The systems used for processing personal data shall be structured in order to meet the security requirements, standards of good practices and governance, general principles provided in this …

Art. 48 The controller must communicate to the national authority and to the data subject the occurrence of a security incident

Art. 48 The controller must communicate to the national authority and to the data subject the occurrence of a security incident that may create risk or relevant damage to the …