ANPD presses and pharmacies will have to review the use of CPF and other customer data

[ad_1]

National Authority for Data Protection points out that stores ‘collected information for purposes other than those indicated to the consumer’ and that they have low privacy protection. ANPD presses and pharmacies will have to review the use of CPF and other customer data. Reproduction/TV Integration The National Data Protection Authority (ANPD) released a technical note in which it reveals how pharmacies and drugstores in Brazil deal with CPF, address, telephone and other information of their customers. The body created with the Data Protection Law (LGPD) saw evidence of: excessive data collection sharing with third parties without making the holder aware. ANPD claims it has been monitoring personal data processing practices in the sector since 2020. After complaints from consumers, the body determined a study on the subject for the General Coordination of Technology and Research (CGTP). “The responses of the pharmaceutical groups confused concepts and principles of the General Data Protection Law (LGPD) and it was possible to notice a lack of preparation of the groups with regard to the subject of privacy and data protection”, said the ANPD. The report does not mention fine risk for stores. The agency said that it is carrying out “monitoring, inspection and standardization actions in the sector” and that it will work in partnership with the National Consumer Secretariat (Senacon). Is it safe to put the CPF in registrations for discounts? In 2018, drugstore chain was condemned for making discount conditional on providing CPF The technical note points out that: there are indications of excessive collection of personal data, including sensitive ones, such as biometrics; establishments collected information for purposes other than those indicated to the consumer, being shared, without transparency, with service providers and those responsible for loyalty programs; some pharmaceutical retailers have poor data privacy protection for their customers. The ANPD also classified as “serious” the practice of some companies that, on their institutional websites, do not inform how data is treated. What happens now? According to the agency, the technical note was forwarded to associations representing pharmacies and drugstores. And the Board of Directors of the ANPD decided: to introduce an inspection procedure by the General Inspection Coordination; analyze the limits of consent as a legal hypothesis in granting discounts by the sector, especially in loyalty programs, in cooperation with Senacom; verify that possible sectorial guidelines may be prepared by the General Coordination for Standardization. ALSO READ: Meta fined $1.3 billion for sharing European user data with US US holds social media accountable for what users post ChatGPT can program and create chatbots; see complex tasks done with technology

[ad_2]

Source link