Latest news and stories about data protection in Portugal for expats and residents.
This page has only 1 story and is not indexed by search engines.
Paulo Dias, a security expert, explains how users can avoid being targeted by illegal access from hackers.
The committee points out “significant shortcomings” regarding personal data protection in the proposed legislation on student support.
The project, in its current wording, does not fully ensure compliance with the requirements of the General Data Protection Regulation.
This article reports that a Europol-led international law enforcement operation successfully disrupted Tycoon2FA, a major phishing-as-a-service platform responsible for tens of millions of phishing messages monthly. The operation involved seizing 330 domains linked to the platform's infrastructure, including control panels and phishing pages, and was supported by private partners like Microsoft, Cloudflare, Coinbase, and others. Tycoon2FA, active since at least August 2023, targeted organizations worldwide—including those in Portugal—by bypassing multi-factor authentication (MFA) to compromise nearly 100,000 accounts across sectors such as government, healthcare, and education. The platform used sophisticated techniques like reverse proxy servers to intercept login credentials and session cookies, enabling attackers to hijack sessions and evade MFA protections. The disruption aims to reduce the threat posed by this widespread phishing operation.
Europe prides itself on protecting privacy. But to what extent can it create exceptions in the name of security without undermining the very principle it claims to defend? A column by Miguel Tomás Gomes
Regardless of what is happening, one constant has been observed: when people find out, they become outraged.
Luís Rosa and Saragoça da Matta discuss the statute of limitations affecting 200 of the 225 GDPR breaches attributed to Lisbon City Council. The case concerns the disclosure of activists' data to the Russian Embassy.
Users allege their personal conversations were recorded when they inadvertently activated Google’s virtual assistant. The company has agreed to pay $68 million to settle the lawsuit.
According to Brussels, the joint decision will benefit 670 million consumers.
The European Union (EU) and Brazil have today completed mutual recognition and adequacy steps to create the world's largest area of free and secure data flows, benefiting 670 million consumers, Brussels announced.
The move is expected to deliver cost savings, legal certainty and stability for European companies already operating in Brazil and for Brazilian companies expanding their activities into the EU market.
The municipality argued there was no obligation to pay the fine — about €1.25 million for 225 breaches of the GDPR.
Explores the regulatory issues raised by digital technologies for democratic processes, including online campaigning, misinformation, data protection and platform governance.
The Constitutional Court confirmed the conviction of Lisbon City Council (CML) to pay €738,000 for sharing activists' personal data with Russia. The fine is likely to be reduced again because most of the offences will be time‑barred.
The EU is investigating X's tool for creating sexually explicit images. Rodrigo Adão da Fonseca, a data protection specialist, describes a 'culture war' between Europe and tech companies.
In an increasingly digital world, the question is no longer “if” we will suffer an attack — it's “when.” See how cybersecurity is becoming increasingly essential to protect people, businesses and data.
The electoral process inevitably involves large-scale data processing, but the principles applicable in this area must not be forgotten or relativised.
To tackle this growing trend, the National Data Protection Commission established a cooperation protocol with the National Cybersecurity Centre, creating round-the-clock communication channels and joint notification and audit mechanisms.
A classification error on YouTube allowed the collection of personal data without the consent of guardians.
The Spanish Data Protection Agency says the social network is violating European regulations.
