Artifact GuideBrazilSmall Processing Agents

Brazil LGPD Small Processing Agents

Small Processing Agents decisions under the Brazil LGPD should be written in operational language: who is in scope, what must happen, what evidence proves it, and when escalation is needed.

Use this section to define scope, owner, evidence inputs, and the review outcome before execution.

Back to main artifactReview sources
Author
Sorena AI
Published
May 9, 2026
Updated
May 9, 2026
Questions
3

Structured answer sets in this page tree.

Primary sources
5

Cited legal and guidance references.

Publication metadata
Sorena AI
Published May 9, 2026
Updated May 9, 2026
Overview

This page explains who can be treated as a small processing agent under the Brazil LGPD, what practical expectations apply, and what evidence teams should keep to show how the decision was made and reviewed.

Search this module

Find a question or answer quickly

3 of 3 questions
Question 1

What should teams do about Small Processing Agents under the Brazil LGPD?

Teams should treat Small Processing Agents under the Brazil LGPD as a source-linked operating decision: confirm whether the issue affects controller/operator roles, lawful basis, data-subject rights, children data, international transfers, security incidents, DPO/encarregado duties, or ANPD enforcement exposure, assign the team that can change the process, and keep evidence showing the action and review trigger.

The safest first step is to identify the controller/operator role, purpose, lawful basis, data category, data-subject right, transfer, or incident trigger before assigning the LGPD action.

  • Write the Small Processing Agents decision in one sentence before drafting controls.
  • Attach the external source URL and a short source quote to the evidence record.
  • Route unclear cases to legal, privacy, security, or compliance review before launch.
Citations
Question 2

What evidence should teams keep for Small Processing Agents under the Brazil LGPD?

Useful evidence is not just a privacy notice. Keep the source, role map, lawful-basis note, rights log, transfer analysis, incident assessment, DPO review, and approval trail together.

  • Source URL and quote used for the decision.
  • Scope notes, screenshots, data-flow or system references, and role mapping.
  • Implementation ticket, approval record, exception notes, and review date.
Citations
Question 3

Which mistakes create risk when handling Small Processing Agents under the Brazil LGPD?

The common failure pattern is using a GDPR-style answer without checking LGPD roles, lawful bases, ANPD guidance, transfer rules, incident thresholds, and Brazilian enforcement context.

  • Using an old threshold, deadline, source page, or contract template without checking current source text.
  • Treating a source-linked exception as a general exemption for every product or data flow.
  • Publishing notices, controls, or answers that do not match the actual product behavior.
Citations
Recommended next step

Turn Brazil LGPD Small Processing Agents into assigned work

This artifact page provides practical inputs, owner roles, required outputs, and evidence checkpoints for small processing agents.

Assessment workflow
Open Assessment Autopilot for Brazil LGPD

Turn Small Processing Agents into scoped questions, evidence fields, and review tasks.

Explore next step
Research workflow
Review Brazil LGPD source evidence

Use Research Copilot to answer follow-up questions with cited source material.

Explore next step
Talk to Sorena
Talk through implementation

Review scope, evidence, owners, and the next compliance actions with operational practice.

Explore next step
Primary sources

References and citations

LEI Nº 13.709, DE 14 DE AGOSTO DE 2018
planalto.gov.br
Referenced sections
  • Official LGPD authority provision supporting ANPD rules for differentiated treatment of small processing agents.
"competências previstas no art. 55-J, inciso XVIII"
RESOLUÇÃO CD/ANPD Nº 1, DE 28 DE OUTUBRO DE 2021
gov.br
Referenced sections
  • ANPD inspection regulation used to connect source-linked decisions to preventive, monitoring, and enforcement review records.
"atuação baseada, preferencialmente, na construção conjunta e dialogada de soluções"
Resolução CD/ANPD nº 2, de 27 de janeiro de 2022
gov.br
Referenced sections
  • ANPD small-processing-agent regulation used to identify which organizations qualify and which LGPD adaptations apply.
"agentes de tratamento de pequeno porte: microempresas, empresas de pequeno porte, startups"
Related guides

Explore more topics

Brazil LGPD Anpd Enforcement And Fines Guide
Brazil LGPD guidance for Anpd Enforcement And Fines, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Applicability Test Guide
Practical guidance for the Brazil LGPD applicability test, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Breach Notification Guide
Brazil LGPD guidance for Breach Notification, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Checklist
Practical guidance for the Brazil LGPD checklist, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Compliance Guide
Practical guidance for the Brazil LGPD compliance, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Controller Operator And DPO Roles Guide
Brazil LGPD guidance for Controller Operator And DPO Roles, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Data Subject Rights Guide
Brazil LGPD guidance for Data Subject Rights, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Deadlines and Compliance Calendar Guide
Brazil LGPD guidance for Deadlines and Compliance Calendar, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD DSAR Response Template Guide
Brazil LGPD guidance for LGPD DSAR Response Template, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD DSAR Workflow Guide
Brazil LGPD guidance for DSAR Workflow, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Incident Reporting To Anpd Guide
Brazil LGPD guidance for Incident Reporting To Anpd, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Incident Workflow Guide
Brazil LGPD guidance for Incident Workflow, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD International Transfer Mechanisms Guide
Brazil LGPD guidance for International Transfer Mechanisms, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD International Transfers Guide
Brazil LGPD guidance for International Transfers, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Lawful Bases Guide
Brazil LGPD guidance for Lawful Bases, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Legal Bases And Legitimate Interest Balancing Guide
Brazil LGPD guidance for Legal Bases And Legitimate Interest Balancing, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD penalties and fines Guide
Brazil LGPD guidance for penalties and fines, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Privacy Law FAQ
Practical guidance for the Brazil LGPD FAQ, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Requirements Guide
Practical guidance for the Brazil LGPD requirements, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Ripd And DPIA Evidence Guide
Brazil LGPD guidance for Ripd And DPIA Evidence, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Ripd Workflow Guide
Brazil LGPD guidance for Ripd Workflow, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Small Processing Agents Guide
Brazil LGPD guidance for Small Processing Agents, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Templates Guide
Practical guidance for the Brazil LGPD templates, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD Transfer Workflow Guide
Brazil LGPD guidance for Transfer Workflow, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD vs CCPA Guide
Brazil LGPD guidance for LGPD vs CCPA, with practical decisions, evidence, edge cases, and external source citations.
Brazil LGPD vs GDPR Guide
Brazil LGPD guidance for LGPD vs GDPR, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Children's Data under the Brazil LGPD?
Brazil LGPD guidance for Children's Data, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Controller Operator And DPO Roles under the Brazil LGPD?
Brazil LGPD guidance for Controller Operator And DPO Roles, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Cookies under the Brazil LGPD?
Brazil LGPD guidance for Cookies, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Incident Reporting To ANPD under the Brazil LGPD?
Brazil LGPD guidance for Incident Reporting To ANPD, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about International Transfer Mechanisms under the Brazil LGPD?
Brazil LGPD guidance for International Transfer Mechanisms, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Legal Bases under the Brazil LGPD?
Brazil LGPD guidance for Legal Bases, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Legitimate Interest Balancing under the Brazil LGPD?
Brazil LGPD guidance for Legitimate Interest Balancing, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Ripd And DPIA under the Brazil LGPD?
Brazil LGPD guidance for Ripd And DPIA, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Sanctions Methodology under the Brazil LGPD?
Brazil LGPD guidance for Sanctions Methodology, with practical decisions, evidence, edge cases, and external source citations.