It was a sunny January morning when Marina, a young lawyer, received an unexpected message on her phone. Someone had used her credit card for a purchase she didn’t recognize. Confused, she contacted the card company and learned that her personal data might have been exposed in a recent data breach.
Still shaken by the incident and thinking about the steps she needed to take, Marina reflected on the fragility of privacy and intimacy in the digital world. She realized how vulnerable personal data can become in these environments.
Determined to understand what had happened, Marina started researching International Data Protection Day, which happened to be celebrated that very week. She discovered that this date was created to raise awareness about people's rights and the security measures necessary for handling personal data.
During her research, Marina came across a section of Brazil’s General Data Protection Law (LGPD) that caught her attention: the right to be informed about the use of personal data. "I should have been notified about any risk of a breach!" she thought. She realized that, as a data subject, she had the power to demand greater transparency from companies. At that moment, Marina understood the importance of not only knowing her rights but also exercising them.
On January 28, International Data Protection Day highlights the significance of personal data protection and control in an increasingly digital world. Created in 2006 by the Council of Europe, this date marks the signing of Convention 108, the first legally binding international treaty on data protection.
This celebration has grown more relevant with time. Personal data ranks among the most valuable assets today, used to drive business, personalize experiences, and even influence political decisions. However, organizations don’t always handle data transparently or lawfully, which underscores the need for both awareness and regulation.
In Brazil, the General Data Protection Law (LGPD – Act No. 13,709/2018), which took effect (mostly) on September 18, 2020, became a landmark in protecting citizens' rights in the digital environment. Inspired by international frameworks like the General Data Protection Regulation (GDPR) of the European Union, the LGPD establishes clear principles and rules on how organizations must collect, process, and store data.
The LGPD guarantees various rights, including the right to information, the right to access one's data, the right to correct or delete data, and the right to contest automated decisions that significantly affect the data subject’s interests. These and other rights return control over personal data—whether physical or digital—to the individuals who own it.
On a global level, International Data Protection Day reminds us that data protection goes beyond technical and legal concerns; it represents a fundamental human right. It offers an opportunity to reflect on how governments, businesses, and individuals can collaborate to create a safer environment where technological innovation aligns with respect for human dignity and autonomy.
Therefore, January 28 is not just a commemorative date but also a call to action. Each of us, as citizens, has a responsibility to know our rights and actively protect our personal data. Legal professionals and organizations must also promote best practices and ensure compliance with protective data laws.
Understanding the importance of personal data protection is a crucial step in overcoming the challenges of the digital age. Let International Data Protection Day serve as a reminder that, in a connected world, protecting our data means protecting who we are.
Comments