BenGuardBENGUARD/Docs/Scanners/LGPD Compliance
Back to Documentation

LGPD Compliance

Scans for Brazilian personal data (CPF, RG, etc.)

API Field: lgpd_enabled

Overview

LGPD (Lei Geral de Proteção de Dados) Detection identifies personal data protected under Brazil's General Data Protection Law. This scanner helps organizations serving Brazilian users maintain compliance with one of the world's most comprehensive privacy regulations.

What It Detects

  • CPF (Cadastro de Pessoas Físicas) numbers
  • RG (Registro Geral) numbers
  • CNH (Driver's license) numbers
  • Brazilian passport numbers
  • Título de Eleitor (voter registration)
  • CTPS (work permit) numbers
  • Brazilian addresses with CEP
  • Brazilian phone numbers

Why It Matters

LGPD penalties can reach 2% of revenue in Brazil, up to 50 million BRL per violation. With Brazil's large digital economy, LGPD compliance is essential for any organization with Brazilian users.

Technical Details

Risk Score Range

0.0 - 1.0 (High risk: > 0.5)

Confidence Level

Typically 0.88 - 0.97

Processing Time

< 60ms per scan

Common Use Cases

Brazilian e-commerceFinancial services in BrazilHealthcare in BrazilHR systems for Brazilian employeesMarketing to Brazilian consumers

Detection Examples

Threat Example #1Risk: 97%
Meu CPF é 123.456.789-00

Brazilian tax ID (CPF) - primary identifier requiring protection.

Threat Example #2Risk: 94%
RG: 12.345.678-9 SSP/SP

Brazilian identity document number with issuing authority.

Threat Example #3Risk: 85%
Endereço: Rua das Flores, 123, São Paulo, SP, CEP 01234-567

Complete Brazilian address with postal code.

API Usage

Enable this scanner in your API request by setting lgpd_enabled to true in your API key settings, or include it in your request:

curl -X POST https://benguard.io/api/v1/scan \
  -H "X-API-Key: ben_your_api_key_here" \
  -H "Content-Type: application/json" \
  -d '{
    "prompt": "Your user input here"
  }'

The scanner settings are configured per API key in your dashboard under Settings → Scanner Configuration.

Response Format

When this scanner detects a threat, the response will include:

{
  "is_valid": false,
  "status": "threat_detected",
  "risk_score": 0.97,
  "threat_types": ["lgpd"],
  "details": {
    "results": [
      {
        "scanner": "lgpd",
        "threat_detected": true,
        "risk_score": 0.97,
        "confidence": 0.92,
        "details": {
          "reason": "Brazilian tax ID (CPF) - primary identifier requiring protection.",
          "evidence": ["detected pattern in input"]
        }
      }
    ]
  },
  "request_id": "req_abc123"
}

Best Practices

  • Appoint a Data Protection Officer (DPO) for Brazilian operations
  • Obtain legal basis before processing Brazilian personal data
  • Provide Portuguese-language privacy notices
  • Implement data subject rights mechanisms
  • Report breaches to ANPD within legal timeframes

Related Scanners

Consider enabling these related scanners for comprehensive protection:

PII Detection

Scans for personally identifiable information

GDPR/CCPA Compliance

Detects EU/California protected personal data