LGPD-Compliant CAPTCHA
Friendly Captcha is fully LGPD-compliant.
Friendly Captcha is trusted worldwide as the best LGPD-compliant CAPTCHA service. As a leading bot protection provider, Friendly Captcha ensures compliance with Brazil’s Lei Geral de Proteção de Dados.
Friendly Captcha makes LGPD compliance simple. It operates without using HTTP cookies, without tracking users, and even without requiring user interaction – all while effectively distinguishing bots from humans.
LGPD Compliance With Friendly Captcha
No extensive collection of personal data
- No collection of emails, IP addresses, or device IDs
- No HTTP cookies and persistent browser storage
Easy integration across platforms
- Works with any form, CMS, or backend framework
- Simple API and SDKs for fast implementation
Data Protection without risky processing
- Cryptographic Proof-of-Work
- No black-box decision-making or scoring
Transparent by Design
- Open-source front-end code for full auditability
- Clear, accessible privacy policy
Upgrade to a Fully LGPD-Compliant CAPTCHA
Most traditional CAPTCHA solutions collect personal data, use tracking technologies, and require user consent. This creates friction for users and compliance headaches for your business.
Try Friendly Captcha. Stay LGPD-compliant. Stay in control.
LGPD Compliance Checklist
Friendly Captcha helps your enterprise align with the core principles of the LGPD, Brazil’s main data protection law:
No personal data processed
We only collect technical, anonymous challenge data – nothing that can identify a user. The purely anonymous challenge data keeps Friendly Captcha outside the LGPD's scope regarding personal information.
Lawful basis not required
Since we don't process personal data, consent or a legal basis isn't necessary. Art. 7 of the LGPD requires a lawful basis for processing personal data. Since we do not process personal data, no basis is needed.
Purpose limitation
Data is used solely to distinguish humans from bots. Our goal is to ensure security in bot protection. As described in LGPD Art. 6, I-III, data processing must serve a clear, legitimate, and limited purpose.
No international transfers
With the global endpoint of Friendly Captcha, requests are processed at the point of presence closest to where the end user accesses them. Friendly Captcha safeguards any cross‑border request contains no personal data as defined in LGPD Art. 33–36.
Privacy by design and default
Our proof-of-work mechanism secures websites without storing personal data in the browser's persistent memory. This fulfills the requirements of Article 46-50 of the LGPD, which specifies that security, prevention and privacy measures must be built into systems by default.
Transparency and accountability
Our privacy policy is clear and our implementation is auditable. In accordance with LGPD Art. 9, controllers must ensure transparency and demonstrate responsibility.
See our privacy policy for end users to learn more.
FAQ
The LGPD is Brazil’s general data protection law. It applies to any enterprise (in Brazil or abroad) that processes the personal data of individuals located in Brazil. The LGPD governs how personal data is collected, used, stored, and shared. Effective since 2020, the LGPD is broadly similar to the EU’s GDPR.
Friendly Captcha helps with LGPD compliance by avoiding personal data processing entirely, so many of the law’s provisions simply do not get triggered.
According to the LGPD, consent (or another lawful basis) is only required when processing personal data. Since Friendly Captcha doesn’t collect or store personal data, there’s no need to ask for user consent to use it. In short, since Friendly Captcha operates outside the realm of personal data, the LGPD’s consent requirements don’t apply in this context.
Yes. Friendly Captcha is a LGPD-compliant CAPTCHA solution. It was designed to avoid collecting or processing any personal data, including sensitive personal data. By doing so, it helps businesses easily align with the Lei Geral de Proteção de Dados principles. Since there’s no personal information for the law to regulate, compliance is achieved by default. You can deploy Friendly Captcha knowing that it meets the LGPD’s privacy standards.
Absolutely! Friendly Captcha can easily be integrated into contact and signup forms, as well as various content management systems. Even if your organization uses email-based workflows or has pages with embedded video (CCTV feeds, for example), Friendly Captcha can be added without issue. It functions independently of those systems, providing bot protection on any webpage where you need to verify human users without compromising privacy or requiring changes to your existing setup.
Any sector that handles personal data and must comply with the LGPD will benefit from Friendly Captcha’s privacy-first approach. This includes e-commerce businesses (which can use it to prevent bot abuse on online stores), legal and consulting firms (which can use it to protect contact forms or client portals), government agencies (which can use it to secure e-government services), and more. Essentially, any company that must comply with the LGPD and wants an efficient, user-friendly way to stop bots will find that Friendly Captcha is invaluable for enhancing security and ensuring privacy compliance.
Choose a LGPD-Compliant CAPTCHA
With Friendly Captcha, you don’t need to manage consent banners or legal bases. We don’t process personal data at all. Comply with Brazilian privacy law, protect your users, and reduce your legal exposure.
Improve user experience
Friendly Captcha is completely automated and fully accessible. Experience it yourself!
Start your integration
Adding Friendly Captcha takes only minutes and just a few lines of code.
