Data Protection
The implementation ofthe REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL, of27th April 2016, on the protection of individuals with regards to theprocessing of personal data and on the free movement of such data, GDPR, addressesnumerous challenges that must be carefully considered. .PT has been working inthis field and is strongly committed to ensuring that, in the context of itsactivity and the services provided to the national internet community, complieswith the general principles and other applicable provisions on privacy and dataprotection.
.pt Domain Registration Rules
The .pt Domain Registration Rules have been adjusted under the GDPR..pt WHOIS Policy
Note: .PT WHOIS Policy was available for comments and suggestions between April 10 and 26, 2018.All the questions and suggestions that were transcribed below were sent to .PT during the period in which the consultation for the new WHOIS Policy was open to the public and were object of answers that are also reproduced here. .PT thanks everyone who participated.
.PT WHOIS Policy - Suggestions and Questions: Answers
Controller/Processor
In the field of thedomain name registration process, the GDPR reinforces as well the rights to privacy and the protection of personal data of the related parties, like domain owners, registrars or managing entities. It is under this framework, and in the scope of privacy and data protection, that will also be regulated the registry/registrar relation.Therefore, it isunderstood that, for the purposes of the GDPR, the .PT is the controller and it is responsible for determining the purposes and means of processing the personal data collected by registrars, in the process of registering and maintaining a .pt domain. Registrars, processing such personal data on behalf of the registry, assume the status of processors.
The obligations and responsibilities that result from the qualification of the data controller and processor will be formalized in an Addendum to the Registry/Registrar Agreement.
Privacy Policy
Data processing in the .PT zone
Registry/Registrar
Addendum to the Registry/Registrar Status ProtocolConsent for the processing of personal data in WHOIS - Instructions for consent
Quality and Information Security Policy
FAQs
Legislation
General Data Protection Regulation
Corrigendum to the General Data Protection Regulation
ICANN
Interim Model for GDPR Compliance
Temporary Specification for gTLD Registration DataFramework Elements for Unified Access Model for Continued Access to Full WHOIS Data
Draft Framework for a Possible Unified Access Model for Continued Access to Full WHOIS Data
Contacts
Processing of personal data issues: epd@pt.pt.
Legal Notice
This information and the documents provided herein do not prejudice any understanding or appreciation that may be given by an entity or body with competence in the subject. The mentioned information and documents should under no circumstances be used in replacement of your own research and analysis of the GDPR requirements.