The ISO 27000 Family and its Applicability in LGPD Adaptation Projects for Small and Medium- Sized Enterprises

Fernandes, André de Freitas; Santiago de Brito, Fabiano Camilo; Periard, Fátima Fernandes; Viana Matias, Grazielle A.; Gonçalves, Mariana Sbaite; Baldoino Filho, Reinaldo Gomes

Home // ICSEA 2021, The Sixteenth International Conference on Software Engineering Advances // View article

The ISO 27000 Family and its Applicability in LGPD Adaptation Projects for Small and Medium- Sized Enterprises

Authors:
André de Freitas Fernandes
Fabiano Camilo Santiago de Brito
Fátima Fernandes Periard
Grazielle A. Viana Matias
Mariana Sbaite Gonçalves
Reinaldo Gomes Baldoino Filho

Keywords: LGPD; Adequacy; ISO; Security; Technology; SMEs

Abstract:
This article describes the relationship between the Brazilian Data Protection Law (LGPD) - nº 13.709 / 2018 - with the information security through ISO Standards. The theme is extremely relevant, as it shows the difficulty for small and medium-sized companies to comply with current and applicable legislation on privacy and protection of personal data, as well as the need for security and investment, to protect the privacy of the holders of personal data and not suffer future damage, whether property or reputation. Some companies have already received fines for the irregular processing of personal data. Being adequate is the immediate answer for the evolution of their businesses and the protection of personal data. This article demonstrates the importance of complying with the LGPD and using security frameworks and investment in information security, improving data management and governance of associations.

Pages: 43 to 49

Copyright: Copyright (c) IARIA, 2021

Publication date: October 3, 2021

Published in: conference

ISSN: 2308-4235

ISBN: 978-1-61208-894-5

Location: Barcelona, Spain

Dates: from October 3, 2021 to October 7, 2021