Chile’s data privacy regulation law, known as the Ley de Protección de Datos Personales (LPDP), was enacted in 1999 and updated in 2008. The LPDP governs the collection, use, storage, and transmission of personal data, defined as any information related to a natural person that identifies or makes them identifiable.
Under the LPDP, individuals have the right to access, modify, and delete their personal data held by organizations. Organizations are required to obtain consent before collecting personal data and must inform individuals of the purpose and use of the data. Personal data may only be used for the purpose for which it was collected unless individuals give their consent for other uses.
The LPDP also requires organizations to take necessary measures to ensure the security of personal data and prevent its unauthorized access, alteration, loss, or disclosure. In the event of a data breach, organizations are required to notify affected individuals and the Chilean data protection authority.
Violations of the LPDP can result in fines and other sanctions, including criminal penalties for intentional or reckless breaches of the law.
In summary, the LPDP is a comprehensive data privacy regulation law that aims to protect the privacy rights of individuals in Chile. Organizations operating in Chile must comply with the LPDP’s requirements to ensure the protection of personal data and avoid penalties.