The General Data Protection Law (LGPD) governs the protection and processing of any and all personal data of individuals. Therefore, if staturp holds personal data of individuals, whether sensitive or not, the company must comply with the LGPD regulations.
Given that the LGPD is already in force and its penalties are also in place, it is important that the startup already has this vision in line with the rules of the law, and that it has a strengthened compliance and data protection policy.
The LGPD regulates the entire data journey within a legal entity, from collection, storage, sharing, and disposal, always linking a purpose to data processing.
Failure to comply with the legislation can result in severe penalties, such as a fine of 2% of the company’s revenue. Therefore, it is essential that companies adopt compliance measures to avoid or at least mitigate potential penalties.
