Privacy
LGPD
Brazil's GDPR analogue. If you serve Brazilian residents, treat it like GDPR-lite: lawful basis, consent for cookies, a real privacy policy, and ANPD-shaped data subject rights.
What it is
The Lei Geral de Proteção de Dados Pessoais, enacted 2018 and in force since 2020. Closely modelled on GDPR — same lawful-basis structure, similar data subject rights, analogous extraterritorial reach. Enforced by the Autoridade Nacional de Proteção de Dados (ANPD), which gained sanctioning power in 2023.
Why it matters
Maximum fine is 2% of Brazilian revenue (capped at R$50M per violation). ANPD enforcement has accelerated since 2023 and Brazil is one of the largest LATAM markets — a GDPR-shaped consent and privacy-policy stack covers most LGPD obligations for free.
Who it applies to
Brazilian residents — applies extraterritorially to sites processing their personal data regardless of where the operator is located.
- Jurisdictions: Other / unknown
How WQI scores it
Web Quality Index considers this standard satisfied when all of the 3 supporting factors pass.
| # | Factor | Status |
|---|---|---|
| 46 | Cookie banner presence + CMP detection | planned |
| 47 | Privacy policy page presence | planned |
| 51 | Cookie scan — actual cookies set on first load | planned |
0 of 3 supporting factors are currently collected. Sites where the remaining 3 haven't been measured will show as partial or unknown on this standard until the data lands.
Related standards
Standards that share factors with this one
Auto-computed from overlapping factor tickets in satisfiedBy, excluding standards already listed under "See also" above. Strong overlap suggests these standards rise and fall together when sites are scored.
Other references
- regulation ANPD — institutional homepage