🇧🇷 Brazil · AI Risk Register

AI Risk Register for BR

A structured AI risk register delivered in two formats — Excel (.xlsx) for live editing inside your risk-management workflow, and Word (.docx) of the same register for board sign-off. Both contain the same sector-specific AI risks, 5×5 likelihood × impact scoring, mitigations per risk, named owners, and regulatory cross-references.

BR-specific obligations covered

The output is anchored on the regulations that apply to AI deployments in BR. The top frameworks cited:

  • Lei Geral de Proteção de Dados — LGPD (Law 13,709/2018)national_law · In force

    Data controllers must establish a lawful basis for all personal data processing, honour data subject rights including the right to request review of decisions made exclusively by automated processing, appoint a DPO, and report data breaches to the ANPD.

  • Brazilian Artificial Intelligence Bill (PL 2338/2023 — Senate)proposed_legislation · Proposed

    Providers and operators of high-risk AI systems must conduct impact assessments, ensure transparency and explainability of consequential AI decisions, implement human oversight mechanisms, and register high-risk AI systems with the designated national authority.

  • Marco Civil da Internet — Law 12,965/2014national_law · In force

    Internet application providers must preserve connection and application access logs for court-ordered disclosure, refrain from supplying personal data to third parties without consent, and comply with Brazilian judicial orders for user data within specified timeframes.

  • BACEN Resolution 4,658/2018 — Cybersecurity Policy for Financial Institutionsregulatory_resolution · In force

    Financial institutions using AI must establish board-approved cybersecurity policies, conduct comprehensive risk assessments of AI suppliers and cloud providers, maintain relevant contracts with security obligations, and report significant cybersecurity incidents to BACEN.

How the AI Risk Register approaches this

You select jurisdiction, industry, and risk appetite. The tool produces a register pre-populated with 12 to 18 AI risks relevant to your sector — each already scored on a 5×5 matrix with suggested mitigations.

You receive the same register in both .xlsx and .docx formats: the spreadsheet for live editing and ongoing risk-committee work, and the Word document for paper sign-off and board appendices. Add organisation-specific risks, adjust scores, assign owners, and set review cadence — the starting point is a credible draft, not a blank template.

What you get

  • Arrives as a working spreadsheet — not a PDF — so it fits straight into your risk workflow.
  • Each risk carries the regulatory obligation it maps to, so reviewers can trace the "why" without re-researching.
  • Bias considerations drawn from published evidence relevant to your sector, surfacing failure modes that generic templates miss.
  • Designed to be signed off by a qualified risk owner — the output does not replace that review, it accelerates the drafting stage.

Ready to generate?

$29 · one-time — answer a 6-question intake (including jurisdiction = BR), and download your tailored document immediately.

Generate Risk Register

Also available framed for your sector → see industry-specific pages

AI-assisted drafting aid. The output references BR regulation but is not legal advice. Have a qualified legal, compliance, or regulatory professional review before implementation.