Go to Content

We are the flag of Portugal on the internet

Data Protection

The implementation ofthe REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL, of27th April 2016, on the protection of individuals with regards to theprocessing of personal data and on the free movement of such data, GDPR, addressesnumerous challenges that must be carefully considered. .PT has been working inthis field and is strongly committed to ensuring that, in the context of itsactivity and the services provided to the national internet community, complieswith the general principles and other applicable provisions on privacy and dataprotection.

.pt Domain Registration Rules

The .pt Domain Registration Rules have been adjusted under the GDPR.

.pt WHOIS Policy

.PT WHOIS Policy

Note: .PT WHOIS Policy was available for comments and suggestions between April 10 and 26, 2018.
All the questions and suggestions that were transcribed below were sent to .PT during the period in which the consultation for the new WHOIS Policy was open to the public and were object of answers that are also reproduced here. .PT thanks everyone who participated.

.PT WHOIS Policy - Suggestions and Questions: Answers


In the field of thedomain name registration process, the GDPR reinforces as well the rights to  privacy and the protection of personal data of the related parties, like  domain  owners, registrars or managing entities. It is under this framework, and in the  scope of privacy and data protection, that will also be regulated the registry/registrar relation.

Therefore, it isunderstood that, for the purposes of the GDPR, the .PT is the  controller and it is responsible for determining the purposes and means of processing the personal data collected by registrars, in the process of  registering and maintaining a .pt domain. Registrars, processing such personal  data on behalf of the registry, assume the status of processors.

The obligations and  responsibilities that result from the qualification of the data controller and processor  will be formalized in an Addendum to the Registry/Registrar Agreement.

Privacy Policy

Data processing in the .PT zone


Addendum to the Registry/Registrar Status Protocol

Consent for the processing of personal data in WHOIS - Instructions for consent

Quality and Information Security Policy



General Data Protection Regulation
Corrigendum to the General Data Protection Regulation

Article 29 Working Party


Interim Model for GDPR Compliance


Temporary Specification for gTLD Registration Data

Framework Elements for Unified Access Model for Continued Access to Full WHOIS Data

Draft Framework for a Possible Unified Access Model for Continued Access to Full WHOIS Data


Processing of personal data issues: epd@pt.pt.

Legal Notice

This information and the documents provided herein do not prejudice any understanding or appreciation that may be given by an entity or body with competence in the subject.  The  mentioned information and documents
should under no circumstances be used in replacement of your own research and analysis of  the GDPR requirements.