LGPD → NIS2 crosswalk

A control-by-control mapping between Lei Geral de Proteção de Dados (Brazil, Lei 13.709/2018) and NIS2 Directive (EU 2022/2555). 5 mappings.

LGPD	NIS2	Relationship	Notes
Art. 46 Security measures	Art. 21(2)(h) Cryptography and encryption	PartialCurated	Cryptographie et protection des données
Art. 46 Security measures	Art. 21(2)(a) Risk analysis and information system security policies	RelatedCurated	Évaluation et gestion des risques
Art. 48 Communication of a security incident	Art. 21(2)(b) Incident handling	RelatedCurated	Réponse aux incidents et notification des violations
Art. 48 Communication of a security incident	Art. 23 Reporting obligations	RelatedCurated	Réponse aux incidents et notification des violations
Art. 50 Good practices and governance rules	Art. 21(2)(a) Risk analysis and information system security policies	RelatedCurated	Gouvernance et politique de sécurité

Mappings marked “Official” derive from standards-body informative references; “Curated” mappings are authored by Cyber Compliance and provided for guidance only.