Brazil's Central Bank expands SCR scope and includes credit assignments with LGPD implications

Brazil's Central Bank published Resolution BCB No. 516, of October 29, 2025, amending Circular No. 3,870/2017, which regulates the provision of information to the Credit Information System (SCR). The main change introduced by the regulation is the explicit inclusion of events such as credit assignments, acquisitions, debt assumptions, and credit operation portability in the list of information that must be reported to the system. This expansion of informational scope represents a significant shift in the monitoring of credit operations in the country and has direct implications for the protection of customers' personal data.

The resolution establishes that financial institutions must calculate and submit information on revolving credit operations, credit assignments, and acquisitions starting May 1, 2026. For other information covered by the regulation, the effective date is sooner, starting November 1, 2025. This differentiation in deadlines allows financial institutions to gradually adapt to the new requirements, especially considering the technical and operational complexity involved in processing this information.

The inclusion of credit operation assignments and acquisitions in the SCR directly impacts customer data protection policies. With Brazil's General Data Protection Law (LGPD) in effect, financial institutions will need to review their privacy and personal data processing policies to ensure that customers are properly informed about the sharing of this information with the Central Bank. The transfer of ownership of credit operations, whether through assignment or acquisition, involves processing borrowers' personal data, requiring clarification regarding the legal bases (processing grounds) used.

This post was summarized from the original regulation using AI, with human review.