Brazil

Region South America

Primary Law LGPD

Enforcement National Data Protection Authority (ANPD)

Last Updated January 5, 2026

FACE PRIVACY DOSSIER BR-20260105

Lei Geral de Proteção de Dados (LGPD)

Brazil's LGPD classifies biometric data as sensitive personal data and provides strong protections similar to GDPR. Processing requires explicit consent or falls under limited exceptions. Brazil has seen growing use of facial recognition in public security and retail, leading to active enforcement by ANPD. Several Brazilian cities have debated bans on facial recognition in public spaces.

Key Provisions

Biometric data is sensitive personal data under Article 11
Processing requires specific, highlighted consent from the data subject
Data minimization: only collect what is strictly necessary
ANPD can require data protection impact assessments
Data subjects must be informed about the specific purpose of biometric collection
International data transfers require adequate protection or specific consent

Your Biometric Rights

Right to confirm existence of processing
Right to access personal data
Right to correct incomplete or inaccurate data
Right to anonymization, blocking, or deletion of unnecessary data
Right to data portability
Right to revoke consent

Penalties for Non-Compliance

Up to 2% of company revenue in Brazil, capped at R$50 million (~$10M USD) per infraction. ANPD can also impose daily fines, publicize infractions, block or delete data, and suspend processing activities.

Our Removal Process

We submit deletion requests under LGPD Article 18 on behalf of Brazilian residents. Operators must respond within 15 days. We escalate non-compliance to ANPD and track each removal through completion.

Get Protected

Explore Other Countries

United States European Union Japan India China United Kingdom Canada Australia South Korea