2025

Data Protection and Privacy

Name: Data Protection and Privacy
Code: INF15647O
2 ECTS
Duration: 15 weeks/52 hours
Scientific Area: Informatics

Teaching languages: Portuguese
Languages of tutoring support: Portuguese
Regime de Frequência: B-learning

Sustainable Development Goals

Learning Goals

This course is designed to provide basic yet comprehensive operational concepts in a workplace context for professionals from various fields (HR, Law, IT, etc.). Participants will enhance their skills in data protection and privacy, interpersonal relations, cyber hygiene, and best practices in cybersecurity.

Contents

1. Cybersecurity
1.1 Concepts
1.2 Best Practices
1.3 Cyberattacks in Portugal

2. Personally Identifiable and Sensitive Data
2.1 GDPR
2.2 Personal Data Protection Law (Law No. 58/2019)
2.3 "Cookies" Law (Law No. 46/2012)

3. Privacy Impact Assessment
3.1 Impact Assessment
3.2 Methodology for Impact Assessment

4. Payment Cards
4.1 Concepts
4.2 PCI DSS Standard

5. Personal Health Data
5.1 Law No. 12/2005 ? Personal Genetic and Health Information

6. Ethics in Cybersecurity
6.1 Privacy and Technology
6.2 Privacy and Legislation
6.3 Scientific Cases
6.4 News Cases
6.5 Ethical Guidelines for Trustworthy AI

7. Legislation and Other Standards
7.1 RJSC (Law No. 46/2018, Decree-Law No. 65/2021)
7.2 Law No. 59/2019
7.3 Council of Ministers Resolution No. 41/2018

Teaching Methods

Teaching theory and practice, corresponding to 35 hours of contact, with a theoretical component (30 hours) and with a practical component (5 hours). Theoretical classes are designed to expose and discuss the main programmatic contents, encouraging interactivity and questioning.
The practical component is further explored through the realization of practical exercises in some sessions.

Assessment

Final grade = 100% Final exam grade.