Close this search box.


Protection of personal data
Law No. 13.709/18

Do you know what LGPD is?

LGPD is the acronym for General Data Protection LawLaw No. 13,709 of August 14, 2018. This law provides for the processing of personal data, including in digital media, by natural persons or by legal entities governed by public or private law, with the aim of protecting the fundamental rights of freedom and privacy and the free development of the personality of natural persons. The LGPD came into force on August 14, 2020.

Rituaali and the LGPD

Rituaali strives to respect the freedom of each individual, ensuring privacy, security and transparency in the use of personal information. Understanding the aspects of the LGPD is very important, after all, this is our data and preserving our privacy is a right guaranteed by law.

Among the aspects, we highlight:

  • Personal details: information relating to an identified or identifiable natural person (e.g. ID, CPF, e-mail, telephone, etc.). 
  • Sensitive data: personal data concerning racial or ethnic origin, religious conviction, political opinion, membership of a trade union or religious, philosophical or political organization, data concerning health or sex life, genetic or biometric data, when linked to a natural person. 
  • Data processing: is any operation carried out with personal data, such as collection, classification, use, access, processing, etc. 
  • Controller: the natural or legal person, whether governed by public or private law, who is responsible for decisions relating to the processing of personal data. 
  • Operator: a natural or legal person, whether governed by public or private law, who processes personal data on behalf of the controller. 
  • Use: act or effect of using the data. 
  • Shared use of data: communication, dissemination, international transfer, interconnection of personal data or shared processing of personal databases by public bodies and entities in compliance with their legal powers, or between these and private entities, reciprocally, with specific authorization, for one or more processing modalities permitted by these public entities, or between entities. 
  • DPO: person appointed by the controller and operator to act as a communication channel between the controller, the data subjects and the National Data Protection Authority (ANPD).
  • Consent: free, informed and unequivocal expression by which the data subject agrees to the processing of their personal data for a specific purpose.

Privacy Committee

DPO: Tainá Porto
Chairman of the Committee: Lorena Trindade
Effective Member of the Committee: Maria Thais and Artur Miller
Consultants: Renato Cirne and Fernando Martins