Data Protection and Cybersecurity

Data Protection and Cybersecurity

As technology and internet innovations progress rapidly, new risks and opportunities have emerged. Nowadays, our economy heavily relies on data – not just personal data – and secure systems that are always up and running. These risks have pushed companies to find data privacy and cybersecurity solutions to meet legal and regulatory standards.

Attacks using social engineering tactics, like phishing and ransomware, have been a threat to both public and private organizations across various sectors. This highlights the growing need for investments in cybersecurity and trained teams to prevent and effectively respond to incidents. Our firm has a diverse team of experts in Data Protection and Cybersecurity. We offer guidance on implementing preventive measures, crafting strategies for handling security incidents, and ensuring IoT products compliance with regulatory standards.

Our team is also experienced in projects to map data processing activities and assess the risks of companies with regards to the Brazilian General Data Protection Law (LGPD) and the General Data Protection Regulation (GDPR) of the EU requisites. We provide support in both advisory and contentious areas, including drafting and reviewing privacy policies and contracts, and handling disputes related to personal data protection, privacy, and cybersecurity. We also analyze and assist in creating policies and responding to requests to access personal data from security agencies in law enforcement cases.

Our expertise:

  • Pre-incident actions: Risk mapping, conducting training, drafting and reviewing cybersecurity and privacy policies, regulatory compliance for IoT products.
  • Post-incident actions: Legal assistance in responding to security incidents and data breaches (intentional or accidental).
  • Advisory in projects for compliance with LGPD and GDPR, including analysis of internal procedures and processes and mapping points to be reviewed considering their respective risks to the client.
  • Drafting and reviewing internal policies for risk mitigation, including action plans for aligning the Human Resources area regarding procedures related to hiring, managing, and terminating contracts of employees and third parties.
  • Formulating policies for responding to personal data delivery in criminal investigations and assisting in responses to requests for the delivery of personal data to security agencies.
  • Drafting and reviewing terms and conditions of use applicable to e-commerce and internal procedures for using personal data for advertising purposes in the media.
  • Representation in judicial and extrajudicial cases, in civil, labor, criminal, and administrative spheres, involving privacy, data protection, cybersecurity, and cloud services.

Recognitions

I'm a subscriber
I'm a subscriber