• About us
  • People
  • Solutions
  • Capabilities
  • Careers
  • Contact us
  • PT

Sign up for our newsletter

Get the latest insights and news. Register your email.

Subscribe

Our units

Berrini Unit - Rua James Joule, 65, 4º andar, Cidade Monções, São Paulo/SP
Paulista Unit - Alameda Joaquim Eugênio de Lima, 680
1º andar, Jardim Paulista, São Paulo/SP
Vila Olímpia Unit - Cubo Itaú - Alameda Vicente Pinzon, 54, Vila Olímpia, São Paulo/SP

Contact us

55 11 4040-9751 - Berrini 
55 11 2189-0061 - Paulista
contato@opiceblum.com.br

© 2025 All rights reserved. Site designed by FutureBrand
  • Privacy policy
  • Ethics channel

Incident Response and Cybersecurity

Prevention and suppression of unlawful acts: suggestions for legal measures in relation to the improper access of personal accounts, creation of fake profiles, unauthorized sharing of photos and videos, among others.

Services

Extrajudicial Action:

  • Removal of illegal content from the internet, rectification, rewriting, offering a response or retraction before internet service providers, users, content platforms, and news channels;
  • Reporting of illegal content, including offense to honor; improper use of name and image; fake profiles; among others;
  • Preparation of notifications intended for data subjects, companies, and providers;
  • Various agreements;
  • Preservation of Electronic Evidence: intermediation for the execution of a Notarial Act or issuance of a content certificate via blockchain technology.

Adoption of the main incident response measures:

1. Creation of the Incident Response Committee.

2. Documentation of all processes adopted to respond to the incident.

3. Identification of technical issues related to the incident.

4. Identification and delimitation of the type of data breach.

5. Verification of the need to communicate to the ANPD and affected data subjects, in case of exposure of personal data.

6. Communication to other regulatory bodies, authorities, and stakeholders.

7. Preparation of the communication book.

8. Notification to the personal data controller, if operator.

9. Activation of Cyber Insurance (if applicable) and subsequent regulation of the claim.

Administrative Action: request for granting authenticity seals.

Specialized criminal action: presentation of requests to initiate police investigations, monitoring of investigative procedures, promotion, conduction, and monitoring of criminal actions, etc.

Legal Action (civil, criminal, and labor):

  • Identification and accountability of perpetrators of cybercrimes and fraud;
  • Inhibitory and compensation claims in relation to the improper use of name and image; unauthorized use and violation of intellectual property (trademarks, copyrights, patents); unauthorized access to social media accounts and emails; abuse of the right to freedom of expression and of the press and the manifestation of thought; and unfair competition;
  • Inhibitory and compensation claims for copying and violating other software protection rights;
  • Actions necessary for the production of evidence, including search and seizure for cases of cloning electronic devices and forensic expertise.

Legal advice in incidents: treatment of the diversion of documents, data, and business information by employees and third parties in an unauthorized manner.

Legal monitoring of technical assistants and forensic experts: assistance in cases of cloning electronic equipment and preservation of the authenticity and integrity of the evidence.

Crisis management: legal support in the management of crises arising from security incidents, participation in crisis committees, performing a legal score of the severity of the incident, reviewing the communication strategy, acting before the competent authorities, and liaising with partners, suppliers, and data subjects impacted by the incident.

Structuring of Corporate Governance for Information Security: preparation and review of documents, such as the Code of Ethical Conduct, Information Security Policy, Policy for Home Office, Policy for Bring Your Own Device, Manual for Secure Online Meetings, Terms of Use, Employment Contract, and Contractual Clauses for contracts with suppliers, partners, and customers. 

Technological Information Security Controls: legal analysis to assess legal risks related to employee privacy.

Data Loss Prevention Alert Management: evaluation of alerts produced by DLP systems in order to assess legal impacts, optimize system configurations, and give effectiveness to Information Security Policies;

Awareness: development and curation of content for educational and awareness purposes regarding Information Security, such as lectures, booklets, videos, knowledge pills, among others.

Our specialist team

Alessandra Borelli

Partner
Image without alt

Camilla Jimene

Partner
Image without alt

Danielle Serafino

Partner
Image without alt

Florence Terada

Partner
Image without alt

Henrique Fabretti

Partner and CEO
Image without alt

José Roberto Opice Blum

Founding Partner
Image without alt

Marcos Gomes da S. Bruno

Partner
Image without alt

Renato Opice Blum

Founding Partner and Chairman
Image without alt

See others practice areas

With rapid advances in algorithms and data processing, AI has impacted various sectors, such as healthcare, finance, and education. However, its increasing adoption raises ethical and legal questions, such as responsibility for automated decisions, data protection, and impacts on the labor market. The discussion about AI is fundamental to ensuring that its development and use are beneficial and equitable for society.

Learn more

Our Corporate and Digital Education team offers exclusive and customized content aligned with the needs of each client to raise awareness among employees and third parties about relevant topics involving Digital Law, Artificial Intelligence, Data Protection, Innovation, etc.

Learn more

Our Digital Tax team provides tax consulting on digital transformation operations, tax impacts on e-commerce, taxation of software, cryptocurrencies, crypto-assets, among others.

Learn more

The financial and banking markets are constantly transforming thanks to technological advancements, innovation initiatives led by regulators, as well as the needs of customers who consume products and services offered in digital media.

We advise Financial Institutions, Payment Institutions, Credit Cooperatives, Fintechs, Exchanges, Insurers, International Payment Facilitators, Financial Market Associations, Direct Credit Companies, and Peer-to-Peer Lending Companies on various topics addressed by the sector's Regulatory Bodies, in addition to traditional Compliance topics and the development of new projects.

Learn more

The Intellectual Property team offers a full range of legal services related to the acquisition, enforcement, and commercialization of intellectual property and technology assets. Our services include consulting on contracts involving patents, copyrights, trademarks, outsourcing, privacy, and data security.

Learn more

Legal Innovation, Visual Law, Venture Capital & Startups

Aligning the legal field with innovation, the LegalX area develops and applies processes, practices, and solutions for our client's; businesses. Our area is composed of multidisciplinary professionals prepared to redefine the limits of what's possible in the scenario of Law, Technology, and Innovation.

Learn more

Our strategic approach supports our clients in various disputes, including cyber incidents, data class actions, data protection, technology-based solutions and services, and products.
Our Digital Litigation area is composed of three teams divided into service lines, which operate in a multidisciplinary manner: Scale, Special, and Standard.
 

Learn more

We advise our clients on all aspects related to privacy and data protection. To this end, we are structured into three main areas:

  • Services for risk analysis, construction of privacy programs, as well as preparation and review of policies and procedures;
  • Services for managing the privacy program, either as an outsourced DPO (DPO as a Service), or support work for the DPO (Data Protection Officer) appointed by the company;
  • Consulting services, review of contracts and documents, and preparation of training and awareness materials.
Learn more

In the context of accelerating digital transformation, the interaction between Digital Law and other legal areas, such as Intellectual Property, Contracts, Media, and Entertainment, becomes increasingly evident.

Our TME team has professionals specialized in meeting the specific demands of this scenario, offering robust legal solutions through the preparation and review of contracts, opinions, and project feasibility studies.

We develop work methodologies oriented towards client centrality, addressing the main needs of the market. Our role is to act as partners to clients, helping them to enable businesses with legal security.

Learn more
See all practice areas