Our privacy and data protection practice was conceived even prior to the enactment of Brazil’s General Data Protection Law (LGPD). Anticipating that most companies would need to adapt to the legislation, CGV Advogados positioned itself ahead of the market by promoting internal training and engaging specialised professionals.
Our services include the implementation and management of privacy governance programmes, drafting and reviewing privacy policies, third-party contracts and data protection impact assessments (DPIAs), as well as structuring international data transfer flows in compliance with foreign legislation such as the GDPR. The firm also provides training focused on LGPD compliance and risk mitigation in personal data processing.
CGV Advogados offers continuous support through models such as DPO as a Service, assisting in the management of regulatory demands and liaising with authorities. The practice also advises on the design of artificial intelligence governance policies, including risk assessment, responsible use of technologies and compliance with emerging regulatory frameworks.
Beyond advisory services, the firm assists in information security incidents, including data breaches, providing responses to authorities and defending clients’ interests in administrative and judicial proceedings.
