Jueves, 11 de Set, 2025
IngresarIngresarSuscribirse
Search in Marcasur International Marcasur
Ecuador | September 4, 2025

Regulation on the Pseudonymization, Anonymization, Blocking, and Deletion of Personal Data

By Robalino

Regulation on the Pseudonymization, Anonymization, Blocking, and Deletion of Personal Data

Through Resolution No. SPDP-SPD-2025-0030-R, the Superintendency for the Protection of Personal Data issued the Regulation on the Pseudonymization, Anonymization, Blocking, and Erasure of Personal Data, which establishes guidelines for the application of these measures in accordance with the data lifecycle and the exercise of the rights provided for in the Organic Law on the Protection of Personal Data and its General Regulation.

 

Pseudonymization

Definition: The substitution of data with pseudonyms in such a way that the data subject cannot be identified without the use of additional information that is kept separately and protected.

Application: It may be used when supported by a lawful basis and following a risk management assessment in the provision of services where the identification of the data subject is not required.

 

Anonymization

Definition: A technical security measure aimed at preventing the identification or re-identification of the data subject.

Application: All categories of data may be anonymized, subject to a prior assessment of:

  • Risk analysis and management methodologies.

  • The state of the art, the specific characteristics of the processing, and the parties involved.

In health data: Anonymization is a priority and requires a prior risk assessment.

Blocking

Definition: A technical measure that disables access to personal data, preventing its processing.

Application: It may be applied as a form of backup once the purpose of the processing has been fulfilled, with restricted access and a risk assessment for its preservation.

 

Suspension

Definition: The temporary halt of processing activities without deleting personal data.

Application: It applies at the request of the data subject, provided that the conditions established in the Organic Law on the Protection of Personal Data (LOPDP) are met.

Timeframes: The controller must suspend processing within a maximum of three days and notify the processor to do so within the same period.

 

Erasure

Definition: The permanent and irretrievable removal of data.

Application: Applicable to all data, including that of deceased persons.

  • The controller must provide the data subject with a document certifying the erasure of their data and the security measures applied. The processor must return or erase the data within a maximum of five days and provide the controller with proof of compliance.

 

Exceptions:

Processors or third parties may be exempted from erasing data if:

  • They have a legitimate legal basis.

  • They intend to carry out a new or different processing of data in the capacity of a controller.

The guidance to be published shortly will provide more detailed instructions on how to implement the measures described.

To read the full resolution, access it through the following link.

Robalino

Robalino: Innovation and Excellence in Ecuador

Robalino stands out in the Ecuadorian legal advisory landscape as a pioneering firm in merging legal services with consulting. With a disruptive approach and a forward-thinking vision, the firm has quickly positioned itself as a strategic ally for businesses of all sizes and sectors, serving a broad range of clients, from startups to large multinational corporations.

What sets Robalino apart?

Continuous Innovation: Robalino goes beyond traditional legal services. Through continuous innovation, it explores areas typically outside the legal sector, such as social impact financial agreements and personal data protection from a technological standpoint, demonstrating adaptability in a changing world.

Comprehensive Expertise: The firm offers a full spectrum of legal services, from advising on the protection of intangibles to compliance and defense regarding clients’ assets. Its multidisciplinary team ensures personalized and effective solutions.

Client Focus: Robalino supports its clients at every stage of their development, providing strategic advice and protecting their most valuable assets, both tangible and intangible.

Global Perspective: With strong expertise in international transactions, Robalino has established itself as a reference on the global stage, advising companies on operations beyond Ecuador’s borders.

Our Key Strengths

Protection of Intangible Assets: Robalino is the ideal partner for companies seeking to properly register and protect their trademarks, patents, industrial designs, and other intangible assets.

Strategic Advisory: Robalino offers a strategic approach, enabling clients to make informed decisions and optimize their operations from both a legal and business consulting perspective.

Innovation and Adaptation: The firm stays at the forefront of current trends, offering innovative solutions tailored to each client's specific needs.

Robalino provides exceptional advisory services. Its commitment to excellence, innovation, and client satisfaction has established it as a market leader in Ecuador. The firm is also recognized internationally.

Visit Website