Post by account_disabled on Feb 27, 2024 5:00:27 GMT
By unicocheck calendar read biometrics and sensitive data Browse by topics What is sensitive personal data according to the LGPD? What are biometric data? How to treat sensitive personal data to prevent fraud? Conclusion The General Data Protection Law (Lei Federal n° 13,709), approved in 2018, came into force two years ago. Since 2020, the procedures adopted for the collection, processing, storage and sharing of personal data and sensitive data must be carried out in accordance with the provisions of said legislation. For example, a company that applies thefacial biometricsTo validate the customer's identity, at the time of registration, a technological solution suitable for LGPD must be used because biometrics are sensitive data. In this article, we will cover the general aspects of the LGPD and how to treat sensitive personal data to prevent fraud. Find out more about LGPD sensitive data! What is sensitive personal data according to the LGPD? According to the LGPD, data is classified as: personal data According to the provisions of the LGPD, personal data covers information that is usually requested to complete a registration, for example, such as full name, date of birth, address, telephone, email, affiliation, gender, ID, CPF, voter registration card, Social Security number, among others. Sensitive personal data They cover information about skin color, ethnic origin, religion, party and/or union affiliation, political and philosophical beliefs, criminal records, biometric data, among others that may be used in an unfavorable, prejudiced, discriminatory manner, in moral harassment, or cause harm. moral, among other negative situations for the person holding the data. Therefore, companies need to adapt the management and management of databases to the principles and provisions of the LGPD.
Anonymized personal data According to the LGPD, anonymized data Poland WhatsApp Number List is data that cannot be associated, directly or indirectly, with a specific person. In practice, this means that anonymized data makes it impossible to reveal the identity of a person who participated, for example, in an electoral survey or scientific study. Another practical situation: a company can use an anonymized database (excluding personal data) for statistical analysis. To make it easier to understand the difference between personal data and sensitive personal data in the LGPD, see the example: A company opens a selection process to hire three receptionists. In the registration form, in addition to providing the usual information such as full name, ID, CPF and educational background, there are fields relating to sensitive personal data such as pregnancy, skin color and sexual orientation, which must be informed by candidates. Personal data is necessary to identify each candidate, however, sensitive personal data can be used as a “filter” to, for example, discard the application of a pregnant candidate, a black person or a transgender person, regardless of the quality of their CVs and professional experience. In other words, due to a lack of understanding about LGPD sensitive data, the company did not pay attention to the principle of non-discrimination, provided for in this law. The LGPD establishes administrative sanctions such as, for example, a fine of up to 2% of the company's annual revenue for each infraction. Despite this, until May this year, according to the LGPD Brasil portal, only 16% of Brazilian companies had complied with the legislation. According tosearch “Privacy and Protection of Personal Data”, carried out by the Internet Steering Committee in Brazil, in 2021, only 23% of organizations – public and private – have areas that work specifically to guarantee the protection of their users' data.
What are biometric data? Biometrics is a technology that makes it possible to carry out statistical studies of the physical and behavioral characteristics of each person. Biometric data is exclusive to each individual and, therefore, provides greater assertiveness and security for identity validation and authentication. The best-known biometric is the fingerprint. It has long been applied to the issuance of ID, CNH, passport, voter registration card, among other procedures. In addition to processing fingerprints, it is also possible to collect, process and store biometric data from the face, eyes (retina and iris) and voice. Facial biometrics, for example, is one of the technologies that has been adopted by companies in all segments with the purpose of preventing possible attempts at identity fraud in registration and transactional processes, in addition to improving their customers' experience in digital and /or omnichannel (online and in the physical store). In facial biometrics, around 80 nodal points on the face are processed to generate the facial impression, combined with personal data (CPF, for example). Among the biometric data collected by the facial biometrics tool, we can cite as examples the distance between the eyes, the shapes of the nose, mouth and cheeks. This type of biometric registration makes it possible tofacial recognitionin various situations, such as airport check-in, paying with your face, preventing identity fraud in online transactions, among other operations authenticated by facial biometrics.