International Data Privacy Agreements Reached

Representatives of 47 countries signed in Geneva the Multilateral Personal Data Governance Agreement, an international treaty establishing minimum privacy protection standards and creating regulatory cooperation mechanisms for cross-border data breach investigations. The agreement is described by digital law experts as the most significant advance in global data protection since the approval of the European GDPR in 2018.

What the Agreement Establishes

The core text of the treaty defines five non-negotiable principles that all signatories commit to implementing in national legislation: data collection minimization, algorithmic transparency, the right to portability in interoperable format, prohibition of international transfers without equivalent protection guarantees, and an effective right to erasure. For countries that already have laws like Brazil's LGPD or the GDPR, the direct impact is limited — the agreement mainly functions as a minimum floor for nations that do not yet have adequate regulation.

The most innovative mechanism is the creation of an International Data Supervision Committee, with powers to mediate disputes between regulatory authorities of different countries and issue binding recommendations in cases of violations with victims in multiple territories. It is the first international body with this specific scope.

Brazil in the Context of the Agreement

Brazil signed the agreement as a full observer, with prospects for formal ratification by Congress in the second half of the year. The ANPD evaluates that participation in the treaty strengthens Brazil's position in data transfer negotiations with the European Union — a requirement for Brazilian companies to operate without restrictions in European markets. Digital compliance specialists recommend that Brazilian companies with international operations map the gaps between their current privacy programs and the agreement's standards from now on.