Yes. The whole structure of the clickCompliance was designed based on the principles of General Data Protection Law (LGPD)These include security, transparency, minimization and responsibility. The company adopts technical and administrative practices to guarantee the protection of the personal data of users, clients and employees.
clickCompliance uses a robust set of security mechanisms, such as:
All of clickCompliance are stored in highly secure cloud environments with data centers located in Brazilin accordance with the requirements of the LGPD. The infrastructure follows international standards of protection and availability.
Yes. The platform goes through regular vulnerability and security testsincluding invasion tests (penetration tests) performed pela Resh, a leading cybersecurity company. In addition, the code is constantly updated and monitored by a dedicated technology team.
A clickCompliance adopts the principle of least privilegeThis means that each user only has access to the information they need to perform their role. Access is controlled with personalized profilessecure authentication and an audit trail of actions taken on the platform.
The platform includes incident detection and response systemsThe system also monitors attempts at improper access in real time. In the event of suspicious activity, automatic containment measures are triggered and the technical team takes action to investigate and mitigate the risk.
Owners can, at any time, exercise their rights under the LGPD, such as:
clickCompliance maintains appropriate channels to deal with these requests in a secure and transparent manner.
Information security is a priority for the company and involves all teamsespecially technology. There are internal policies, training and operational controls that ensure that the topic is present in the day-to-day operation.