The Information Security Policy in terms of the Information Systems and Technologies was prepared and launched in 2010, having most employees been subject to specific training actions.

Confidentiality and security of consumer data, access and traffic protection to the database information, as well as confidentiality of telecommunications content, are areas safeguarded by PT in order to respect the freedom and basic rights of each individual.

PT follows the national legislation scrupulously, which is very detailed and specific concerning this subject, as well as the European and American legislation. Being listed in European and North-American Stock Exchanges, PT is scrutinised by entities from different sectors, apart from the regular audits to all the situations capable of rendering the protection of personal data more vulnerable with the support of security and legal experts.

Knowing that this is a sensitive area in which the evolution is fast, PT has been participating in forums of discussion on this matter and implementing measures deemed as best practices to safeguard data protection and customer privacy.

• As a sequence of the 31st International Conference on Data Conference and Privacy held in Madrid, 50 countries came to an agreement on new common measures about data protection and privacy, as some of the measures already developed and applied within the EU are expected to be enforced outside its borders;
• The “Madrid Resolution” as the document is known, tries to establish international standards to ensure increased privacy and reservation in the access to personal data and may originate legislation in this domain in countries where it does not exist;
• PT is part of a working group in which representatives from circa 50 countries and companies in the domain of the information and communication Technologies are also present;
• The approved document may be consulted online and defines the basic principles for the use of personal data: loyalty, legality, proportionality, quality, transparency and responsibility. It also recognizes the need of existence of supervisory authorities;
• The principles defined in this resolution are part of the “standard” applied in the European Union and in Portugal, but the authorities have been defending the importance of its generalisation to other countries as transactions and services are each time more global, as data protection of Portuguese citizens may be rendered more vulnerable taking into consideration the absence of rules in other countries.

PT provides data pertaining to its customers exclusively on request by the judicial authorities in the terms of the law.

For further information, please follow to the link: Information Security Policy.