Brazilian Market Compliance Research Prompts

Purpose: Deep decomposition prompts for Brazilian regulatory compliance requirements Target Audience: Brazilian compliance teams, contadores, GRC engineers CODITECT Application: Brazilian Market Package - 12-18 month competitive moat

---

CMP-BR-001: BACEN Regulatory Compliance

Objective: Design automated compliance framework for Banco Central do Brasil regulations

Research Scope:

1. Open Finance Brasil Integration

• Ecosystem participants
  • Instituições detentoras de conta (Account holders)
  • Instituições receptoras de dados (Data recipients)
  • Agregadores de dados (Data aggregators)
• API specifications
  • Phase 1: Open data (products, services, channels)
  • Phase 2: Customer data (accounts, credit cards, credit operations)
  • Phase 3: Payment initiation (Pix, TED, TEF)
  • Phase 4: Insurance, investments, foreign exchange
• Consent management
  • Customer consent workflow
  • Consent lifecycle management
  • Revocation procedures
  • Consent audit trail

2. Pix Integration Requirements

• Pix API types
  • Pix Copia e Cola
  • Pix QR Code (estático e dinâmico)
  • Pix por aproximação
• Transaction reconciliation
  • EndToEndId matching
  • Transaction status tracking
  • Refund (devolução) handling
  • Dispute resolution workflow
• Regulatory reporting
  • Pix estatísticas for BACEN
  • Fraud reporting requirements
  • SLA compliance monitoring

3. COSIF Chart of Accounts

• Plano Contábil das Instituições do Sistema Financeiro Nacional
• Account structure requirements
  • 1st group: Assets
  • 2nd group: Liabilities
  • 3rd group: Net worth
  • 7th group: Accounts memo (contas de compensação)
  • 8th group: Results
• Analytical decomposition rules
• Consolidation requirements

4. Regulatory Reporting

• DLO (Documento de Limites Operacionais)
• CADOC (Catálogo de Documentos)
• Remessa de dados ao BACEN
• SCR (Sistema de Informações de Crédito)

Deliverables:

□ Open Finance Brasil integration specification
□ Pix reconciliation automation module
□ COSIF-compliant chart of accounts template
□ BACEN regulatory reporting automation
□ Consent management workflow design
□ API security requirements document
□ Transaction audit trail specification

Technical Integration:

• Pix DICT API integration
• Open Finance Brasil APIs (certified)
• COSIF account mapping engine
• Event-driven transaction processing

Estimated Effort: 48 hours Priority: P0 (Core Brazilian market requirement)

---

CMP-BR-002: CVM Securities Compliance

Objective: Automate Comissão de Valores Mobiliários compliance for capital market participants

Research Scope:

1. Financial Reporting Standards

• CPC (Comitê de Pronunciamentos Contábeis) compliance
  • CPC 00: Conceptual Framework
  • CPC 47: Revenue from Contracts (IFRS 15)
  • CPC 06: Leases (IFRS 16)
  • CPC 48: Financial Instruments (IFRS 9)
• CVM Instructions mapping
  • ICVM 480: Registration of securities issuers
  • ICVM 481: Shareholders' meetings
  • ICVM 505: Operations with related parties

2. Quarterly Reporting (ITR)

• Informações Trimestrais automation
• Financial statement generation
• Notes and explanations
• Auditor review requirements
• Filing deadline management

3. Annual Reporting (DFP)

• Demonstrações Financeiras Padronizadas
• Management report requirements
• Audit committee report
• Reference form (Formulário de Referência)
• Independent auditor's report

4. Event-Based Disclosures

• Fatos relevantes (material facts)
• Notices to shareholders
• Minutes of meetings
• Press releases coordination

5. XBRL Taxonomy

• CVM XBRL taxonomy implementation
• Taxonomia Brasileira
• Filing validation requirements
• CVMWeb submission integration

Deliverables:

□ CPC pronouncement mapping to platform features
□ ITR/DFP generation workflow specification
□ Fato relevante automation rules engine
□ CVM XBRL taxonomy implementation guide
□ Filing calendar automation
□ Related party transaction tracking module
□ Audit committee reporting package

Technical Integration:

• CVM XBRL taxonomy parser
• CVMWeb API integration
• Brazilian GAAP calculation engine
• Document management for disclosures

Estimated Effort: 40 hours Priority: P1 (Public company expansion in Brazil)

---

CMP-BR-003: SPED Fiscal Compliance

Objective: Full SPED ecosystem integration for Brazilian tax compliance

Research Scope:

1. EFD-ICMS/IPI (Escrituração Fiscal Digital)

• Digital fiscal bookkeeping
• Block structure
  • Block 0: Opening and identification
  • Block C: Fiscal documents (NF-e, NFC-e)
  • Block D: Transport documents (CT-e)
  • Block E: ICMS apuração
  • Block G: CIAP (asset control)
  • Block H: Physical inventory
  • Block K: Production control
  • Block 1: Complementary information
• Validation rules (>5,000 rules)
• Monthly transmission requirements

2. EFD-Contribuições

• PIS/Pasep and COFINS bookkeeping
• Revenue recognition mapping
• Credit calculation
• Cumulative vs. non-cumulative regimes
• Block M: Apuração

3. ECD (Escrituração Contábil Digital)

• Digital accounting bookkeeping
• Account balance validation
• Trial balance export
• Journal entry export
• Certification requirements

4. ECF (Escrituração Contábil Fiscal)

• Corporate income tax declaration
• IRPJ and CSLL calculation
• E-LALUR (Digital LALUR)
• Tax adjustments and additions
• Transfer pricing documentation

5. eSocial Integration

• Payroll-related fiscal obligations
• FGTS digital
• INSS contributions
• Event timeline management

6. Validation Engine

• Layout version management
• Business rule validation
• Cross-reference validation
• Error correction workflow

Deliverables:

□ SPED EFD-ICMS/IPI generator module
□ EFD-Contribuições calculation engine
□ ECD export from general ledger
□ ECF IRPJ/CSLL calculation module
□ Validation rules engine (5000+ rules)
□ SPED file viewer and editor
□ Transmission status tracking
□ Error resolution workflow

Technical Integration:

• SPED file format generators
• Digital certificate integration (e-CPF/e-CNPJ)
• ReceitaNet submission
• Layout version management

Estimated Effort: 64 hours Priority: P0 (Core Brazilian market requirement)

---

CMP-BR-004: LGPD Privacy Compliance

Objective: Implement Lei Geral de Proteção de Dados compliance framework

Research Scope:

1. Data Mapping and Inventory

• Personal data identification in FP&A context
  • Customer revenue data
  • Employee payroll integration
  • Vendor payment data
  • Shareholder information
• Data flow mapping
• Legal basis documentation
• Purpose limitation tracking

2. Data Subject Rights (Articles 17-21)

• Right of access (acesso)
• Right to correction (correção)
• Right to anonymization (anonimização)
• Right to data portability (portabilidade)
• Right to deletion (eliminação)
• Right to information about sharing
• Request tracking and response workflow

3. Security Measures (Article 46)

• Technical measures
  • Encryption requirements
  • Access controls
  • Audit logging
• Administrative measures
  • Security policies
  • Training requirements
  • Incident response

4. Data Processing Records (Article 37)

• Processing activities record
• Legal basis documentation
• Retention period management
• Data sharing registry

5. ANPD Compliance

• Data Protection Impact Assessment (RIPD)
• DPO (Encarregado) requirements
• Incident notification procedures
• International data transfers

6. Consent Management

• Consent capture and storage
• Consent renewal workflow
• Withdrawal processing
• Consent audit trail

Deliverables:

□ Personal data mapping for FP&A platform
□ Data subject rights portal specification
□ LGPD-compliant consent management module
□ Processing activities registry (ROPA)
□ RIPD (DPIA) template for FP&A
□ Data retention automation rules
□ Incident response playbook
□ International transfer safeguards

Technical Integration:

• Data classification at field level
• Consent service integration
• Data anonymization pipeline
• Deletion automation workflow

Estimated Effort: 40 hours Priority: P0 (Legal requirement for Brazilian operations)

---

CMP-BR-005: NF-e Document Compliance

Objective: Full electronic invoice ecosystem integration

Research Scope:

1. NF-e (Nota Fiscal Eletrônica)

• XML schema compliance (v4.00)
• Mandatory fields validation
• ICMS calculation automation
• IPI calculation integration
• Digital signature requirements
• SEFAZ webservice integration
• Status monitoring (autorizada, denegada, rejeitada)
• Contingency procedures

2. NFS-e (Nota Fiscal de Serviços)

• Municipal-specific implementations
• ABRASF standard layouts
• ISS calculation automation
• RPS (Recibo Provisório de Serviço) handling
• Batch submission processing

3. NFC-e (Nota Fiscal de Consumidor)

• Consumer retail integration
• QR Code generation
• Contingency offline mode
• Consumer data handling (LGPD)

4. CT-e (Conhecimento de Transporte)

• Transport document integration
• Freight cost allocation
• Multi-modal transport handling

5. Financial Integration

• Accounts receivable automation
• Revenue recognition timing
• Tax credit management
• Cash flow forecasting from invoices

6. Document Storage

• XML archiving requirements (5 years)
• DANFE generation and storage
• Cancellation document handling (CC-e)
• Correction letter (Carta de Correção)

Deliverables:

□ NF-e XML generation service
□ SEFAZ webservice integration module
□ NFS-e multi-municipality adapter
□ Tax calculation engine (ICMS, IPI, ISS)
□ Digital certificate integration
□ Document archiving system
□ Financial document matching engine
□ Invoice-to-payment reconciliation

Technical Integration:

• SEFAZ webservices (all 27 states)
• ABRASF-compliant municipal APIs
• Digital certificate service
• XML validation engine

Estimated Effort: 56 hours Priority: P0 (Core Brazilian market requirement)

---

CMP-BR-006: Open Finance Brasil Banking Integration

Objective: Certified Open Finance Brasil participant integration

Research Scope:

1. Certification Requirements

• Functional certification
• Security certification
• Performance certification
• Directory registration

2. Data Sharing APIs

• Account data
  • Account balances
  • Transaction history
  • Account identification
• Credit operations
  • Loans
  • Financing
  • Credit cards
• Investment data
  • Fixed income
  • Variable income
  • Investment funds

3. Payment Initiation

• Pix payment initiation
• TED initiation
• Boleto payment
• Transaction status tracking

4. Consent Management

• Customer consent journey
• Consent scope management
• Consent renewal
• Multi-institution consent

5. Security Requirements

• mTLS certificate management
• OAuth 2.0 / FAPI implementation
• JWS/JWE for data protection
• Dynamic client registration

6. Financial Planning Features

• Multi-bank aggregation
• Cash position consolidation
• Transaction categorization
• Budget vs. actual from bank data
• Cash flow forecasting enhancement

Deliverables:

□ Open Finance certification roadmap
□ Data sharing API integration specification
□ Payment initiation module design
□ Consent management UX wireframes
□ Security architecture document
□ Multi-bank aggregation service
□ Transaction categorization AI model
□ Real-time cash position dashboard

Technical Integration:

• Open Finance Brasil certified APIs
• mTLS certificate management
• FAPI security profile
• Real-time data synchronization

Estimated Effort: 52 hours Priority: P0 (Key differentiator for Brazilian market)

---

Cross-Cutting Brazilian Compliance Architecture

Unified Brazilian Compliance Data Model

-- Brazilian Compliance Framework Schema
CREATE TABLE brazilian_entities (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    tenant_id UUID REFERENCES tenants(id),
    cnpj VARCHAR(18) NOT NULL, -- Cadastro Nacional da Pessoa Jurídica
    razao_social VARCHAR(255) NOT NULL,
    nome_fantasia VARCHAR(255),
    inscricao_estadual VARCHAR(20),
    inscricao_municipal VARCHAR(20),
    regime_tributario VARCHAR(20) CHECK (regime_tributario IN ('simples', 'lucro_presumido', 'lucro_real')),
    matriz_filial VARCHAR(10) CHECK (matriz_filial IN ('matriz', 'filial')),
    matriz_cnpj VARCHAR(18), -- For branches
    uf_codigo INTEGER, -- Estado (1-28)
    municipio_codigo INTEGER, -- Código IBGE
    certificado_digital_validade DATE,
    UNIQUE(tenant_id, cnpj)
);

-- SPED Configuration
CREATE TABLE sped_configurations (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    entity_id UUID REFERENCES brazilian_entities(id),
    sped_type VARCHAR(20) CHECK (sped_type IN ('efd_icms_ipi', 'efd_contribuicoes', 'ecd', 'ecf')),
    layout_version VARCHAR(10),
    perfil VARCHAR(1) CHECK (perfil IN ('A', 'B', 'C')),
    atividade VARCHAR(20), -- Industrial, comercial, serviços
    regime_apuracao VARCHAR(20), -- Mensal, trimestral
    obrigatoriedade_inicio DATE,
    configuracoes JSONB,
    UNIQUE(entity_id, sped_type)
);

-- SPED File Tracking
CREATE TABLE sped_files (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    entity_id UUID REFERENCES brazilian_entities(id),
    sped_type VARCHAR(20) NOT NULL,
    periodo_referencia DATE NOT NULL, -- First day of period
    arquivo_nome VARCHAR(255),
    arquivo_hash VARCHAR(64), -- SHA-256
    arquivo_tamanho BIGINT,
    status VARCHAR(20) CHECK (status IN ('gerando', 'validando', 'erro', 'pronto', 'transmitido', 'processado')),
    recibo_numero VARCHAR(50),
    transmissao_data TIMESTAMPTZ,
    erros_validacao JSONB,
    created_at TIMESTAMPTZ DEFAULT NOW(),
    updated_at TIMESTAMPTZ DEFAULT NOW()
);

-- NF-e Document Management
CREATE TABLE notas_fiscais (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    entity_id UUID REFERENCES brazilian_entities(id),
    tipo_documento VARCHAR(10) CHECK (tipo_documento IN ('NFe', 'NFSe', 'NFCe', 'CTe')),
    chave_acesso VARCHAR(44) UNIQUE,
    numero INTEGER NOT NULL,
    serie INTEGER,
    data_emissao TIMESTAMPTZ NOT NULL,
    natureza_operacao VARCHAR(255),
    valor_total DECIMAL(18,2),
    valor_icms DECIMAL(18,2),
    valor_ipi DECIMAL(18,2),
    valor_pis DECIMAL(18,2),
    valor_cofins DECIMAL(18,2),
    valor_iss DECIMAL(18,2),
    destinatario_cnpj_cpf VARCHAR(18),
    destinatario_nome VARCHAR(255),
    status_sefaz VARCHAR(20) CHECK (status_sefaz IN ('pendente', 'autorizada', 'denegada', 'rejeitada', 'cancelada')),
    codigo_status INTEGER,
    motivo_status TEXT,
    xml_content TEXT, -- Original XML (encrypted)
    protocolo_autorizacao VARCHAR(50),
    data_autorizacao TIMESTAMPTZ,
    journal_entry_id UUID REFERENCES journal_entries(id),
    created_at TIMESTAMPTZ DEFAULT NOW()
);

-- Open Finance Consent Management
CREATE TABLE open_finance_consents (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    tenant_id UUID REFERENCES tenants(id),
    consent_id VARCHAR(100) NOT NULL, -- Open Finance consent ID
    customer_cpf_cnpj VARCHAR(18) NOT NULL,
    instituicao_detentora VARCHAR(20), -- Bank ISPB code
    instituicao_receptora VARCHAR(20), -- Our ISPB code
    permissions JSONB NOT NULL, -- List of granted permissions
    expiration_date TIMESTAMPTZ NOT NULL,
    status VARCHAR(20) CHECK (status IN ('awaiting_authorization', 'authorized', 'rejected', 'revoked', 'expired')),
    created_at TIMESTAMPTZ DEFAULT NOW(),
    authorized_at TIMESTAMPTZ,
    revoked_at TIMESTAMPTZ,
    UNIQUE(consent_id)
);

-- Open Finance Account Data
CREATE TABLE open_finance_accounts (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    consent_id UUID REFERENCES open_finance_consents(id),
    account_id VARCHAR(100) NOT NULL, -- Open Finance account ID
    brand_name VARCHAR(100),
    company_cnpj VARCHAR(18),
    account_type VARCHAR(50), -- CONTA_DEPOSITO_A_VISTA, POUPANCA, etc.
    account_subtype VARCHAR(50),
    number VARCHAR(20),
    check_digit VARCHAR(2),
    branch_code VARCHAR(10),
    available_balance DECIMAL(18,2),
    available_balance_currency VARCHAR(3) DEFAULT 'BRL',
    last_sync_at TIMESTAMPTZ,
    internal_account_id UUID REFERENCES accounts(id), -- Mapped to platform account
    UNIQUE(consent_id, account_id)
);

-- Pix Transaction Tracking
CREATE TABLE pix_transactions (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    entity_id UUID REFERENCES brazilian_entities(id),
    end_to_end_id VARCHAR(32) UNIQUE NOT NULL,
    tipo_transacao VARCHAR(20) CHECK (tipo_transacao IN ('envio', 'recebimento', 'devolucao')),
    valor DECIMAL(18,2) NOT NULL,
    data_hora_transacao TIMESTAMPTZ NOT NULL,
    chave_pix_origem VARCHAR(77),
    chave_pix_destino VARCHAR(77),
    nome_pagador VARCHAR(255),
    cpf_cnpj_pagador VARCHAR(18),
    nome_recebedor VARCHAR(255),
    cpf_cnpj_recebedor VARCHAR(18),
    descricao VARCHAR(140),
    status VARCHAR(20) CHECK (status IN ('pendente', 'liquidado', 'devolvido', 'erro')),
    journal_entry_id UUID REFERENCES journal_entries(id),
    bank_reconciliation_id UUID REFERENCES bank_reconciliation_items(id),
    created_at TIMESTAMPTZ DEFAULT NOW()
);

-- LGPD Data Subject Requests
CREATE TABLE lgpd_requests (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    tenant_id UUID REFERENCES tenants(id),
    request_type VARCHAR(30) CHECK (request_type IN ('acesso', 'correcao', 'anonimizacao', 'portabilidade', 'eliminacao', 'informacao')),
    titular_cpf VARCHAR(14),
    titular_email VARCHAR(255),
    titular_nome VARCHAR(255),
    data_solicitacao TIMESTAMPTZ DEFAULT NOW(),
    data_limite_resposta TIMESTAMPTZ, -- 15 days by law
    status VARCHAR(20) CHECK (status IN ('recebido', 'em_analise', 'aguardando_validacao', 'concluido', 'rejeitado')),
    motivo_rejeicao TEXT,
    resposta TEXT,
    data_conclusao TIMESTAMPTZ,
    evidencia_atendimento JSONB
);

-- Indexes
CREATE INDEX idx_nfe_chave ON notas_fiscais(chave_acesso);
CREATE INDEX idx_nfe_data ON notas_fiscais(data_emissao);
CREATE INDEX idx_nfe_entity_status ON notas_fiscais(entity_id, status_sefaz);
CREATE INDEX idx_sped_periodo ON sped_files(entity_id, periodo_referencia);
CREATE INDEX idx_pix_endtoend ON pix_transactions(end_to_end_id);
CREATE INDEX idx_lgpd_titular ON lgpd_requests(titular_cpf);

Brazilian Compliance API Endpoints

openapi: 3.1.0
info:
  title: FP&A Platform Brazilian Compliance API
  version: 1.0.0

paths:
  # SPED Endpoints
  /brasil/sped/efd-icms-ipi:
    post:
      summary: Generate EFD-ICMS/IPI file
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/SpedGenerationRequest'
    get:
      summary: List generated SPED files

  /brasil/sped/efd-contribuicoes:
    post:
      summary: Generate EFD-Contribuições file

  /brasil/sped/ecd:
    post:
      summary: Generate ECD from GL

  /brasil/sped/ecf:
    post:
      summary: Generate ECF with tax calculations

  /brasil/sped/{file_id}/validate:
    post:
      summary: Validate SPED file

  /brasil/sped/{file_id}/transmit:
    post:
      summary: Transmit SPED file to ReceitaNet

  # NF-e Endpoints
  /brasil/nfe:
    post:
      summary: Issue new NF-e
    get:
      summary: List NF-e documents

  /brasil/nfe/{chave}/status:
    get:
      summary: Check NF-e status on SEFAZ

  /brasil/nfe/{chave}/cancel:
    post:
      summary: Cancel NF-e

  /brasil/nfe/{chave}/carta-correcao:
    post:
      summary: Issue correction letter

  /brasil/nfse:
    post:
      summary: Issue NFS-e (service invoice)

  # Open Finance Endpoints
  /brasil/open-finance/consents:
    post:
      summary: Initiate new consent request
    get:
      summary: List active consents

  /brasil/open-finance/consents/{consent_id}/revoke:
    post:
      summary: Revoke consent

  /brasil/open-finance/accounts:
    get:
      summary: Get aggregated account data

  /brasil/open-finance/accounts/{account_id}/transactions:
    get:
      summary: Get transaction history

  /brasil/open-finance/payments/pix:
    post:
      summary: Initiate Pix payment

  # LGPD Endpoints
  /brasil/lgpd/requests:
    post:
      summary: Submit data subject request
    get:
      summary: List requests

  /brasil/lgpd/requests/{request_id}/respond:
    post:
      summary: Respond to request

  /brasil/lgpd/data-mapping:
    get:
      summary: Get personal data inventory

  # Tax Calculation
  /brasil/tax/icms/calculate:
    post:
      summary: Calculate ICMS for operation

  /brasil/tax/pis-cofins/calculate:
    post:
      summary: Calculate PIS/COFINS

  /brasil/tax/irpj-csll/estimate:
    post:
      summary: Estimate IRPJ/CSLL

---

Research Execution Priority

Prompt ID	Title	Effort	Dependencies	Quarter
CMP-BR-003	SPED Fiscal	64h	None	Q3 2026
CMP-BR-005	NF-e Documents	56h	None	Q3 2026
CMP-BR-001	BACEN/Open Finance	48h	CMP-BR-005	Q3 2026
CMP-BR-006	Open Finance Banking	52h	CMP-BR-001	Q4 2026
CMP-BR-004	LGPD Privacy	40h	None	Q3 2026
CMP-BR-002	CVM Securities	40h	CMP-BR-003	Q4 2026

Total Estimated Effort: 300 hours

---

CODITECT Brazilian Market Package

Feature Bundle

1. SPED Automation Suite: Full EFD/ECD/ECF generation
2. NF-e Integration Hub: All document types, all states
3. Open Finance Connector: Multi-bank aggregation
4. LGPD Compliance Module: Data subject rights management
5. Brazilian Tax Calculator: ICMS, PIS, COFINS, IRPJ, CSLL

Competitive Moat Analysis

Competitor	SPED	NF-e	Open Finance	LGPD	Gap
Conta Azul	✓	✓	✗	✗	No AI, no Open Finance
Omie	✓	✓	✗	Partial	Limited compliance automation
Totvs	✓	✓	✗	✓	Legacy architecture, high cost
CODITECT	✓	✓	✓	✓	AI-first, modern stack

Pricing Recommendations (BRL)

• MEI/Microempresa: R$ 199/mês - NF-e + Basic SPED
• Pequena Empresa: R$ 599/mês - + Full SPED + LGPD
• Média Empresa: R$ 1.999/mês - + Open Finance + Advanced Tax
• Grande Empresa: R$ 4.999+/mês - Full suite + Dedicated support

Go-to-Market Strategy

1. Partner with Contadores: They manage multiple clients, recurring revenue
2. SPED Pain Point: Automate 40-60 hours/month per empresa
3. Open Finance First Mover: No competitor has certified integration
4. LGPD Urgency: ANPD increasing enforcement

---

Generated for CODITECT FP&A Platform Development Version: 1.0 | Date: 2026-02-03