Requirements of LGPD Consent & Privacy-Focused Design
How should the legal basis for consent provided in the LGPD be understood? How can interface design make obtaining the consent qualified by law difficult? What type of practices adopted in the design of websites and products are considered, at international levels, inappropriate for obtaining user consent? What are the best practices for collection of consent in cookie management procedures?
This guide aims to pinpoint how to answer these questions. Below, you will find the definition of consent and specifications of the terms given by the LGPD, as well as information on the best practices identified by the data protection authorities in the United Kingdom and France for qualification of consent. Additionally, this guide also presents the concept of dark patterns, obscure design patterns, and how international regulation of this issue has identified best practices for companies in configuring their websites and presenting information to users.
Finally, a presentation is provided on Privacy by Design methodology, which aims to provide guidance on treating privacy as a principle that targets the entire organization, from the design of new products or services, in order to present the possibility of preventive activity focused on the protection of the rights of the owners.