LGPD & Security
Our commitment to data protection and regulatory compliance
LGPD
Brazilian Data Protection
GDPR
European Regulation
ISO 27001
Security Standard
SOC 2
Type II Ready
LGPD Compliance
Nodexa is fully compliant with the Lei Geral de Proteção de Dados (LGPD), Brazil's comprehensive data protection law. Our platform is designed to help organizations meet their LGPD obligations.
Data Subject Rights
Full support for access, correction, deletion, and portability requests
Consent Management
Granular consent tracking and management capabilities
Data Processing Records
Comprehensive logging of all data processing activities
Breach Notification
Automated incident detection and notification workflows
Security Measures
We implement comprehensive security measures to protect your data at every level.
Infrastructure Security
- On-premise or sovereign cloud deployment options
- Network isolation and firewall protection
- DDoS protection and intrusion detection
Data Protection
- AES-256 encryption at rest
- TLS 1.3 encryption in transit
- Customer-managed encryption keys available
Access Control
- Role-based access control (RBAC)
- Multi-factor authentication (MFA)
- Single sign-on (SSO) via Keycloak
Data Processing Agreement
We offer comprehensive Data Processing Agreements (DPAs) that clearly define the responsibilities of both parties in relation to personal data processing. Our DPA covers:
- Subject matter, duration, and purpose of processing
- Types of personal data and categories of data subjects
- Obligations and rights of the controller
- Security measures and sub-processor management
- Data breach notification procedures
Incident Response
In the unlikely event of a security incident, our dedicated team follows a strict protocol: