In a sign of what is to come in Brazil, this food delivery company did not value its privacy appropriately or consider the requirements of LGPD. It is reported that a food delivery platform was fined R$1,508,240 after suffering a data incident that resulted in the names of several restaurants on the company’s app being exchanged for messages with attacks on politicians, and challenges to the effectiveness of vaccines against Covid-19; the company failed to provide requested documentation explaining what had happened during the data incident.
If you are doing business in Brazil, then you need to take LGPD seriously – the financial and operational implications are considerable. Contact us for more on the privacy requirements for LGPD.
