In September 2025, Portugal formally designated ANACOM (Autoridade Nacional de Comunicações — the national communications regulator) as the national market surveillance authority and single point of contact for the EU AI Act. ANACOM coordinates with other competent authorities, including the CNPD (data protection authority), for matters involving personal data. This designation satisfies the EU AI Act’s requirement that member states identify a supervising body with legal authority to oversee AI system compliance and serve as the national interface with the EU AI Office.
Who it affects: AI developers, deployers, and importers operating in Portugal, particularly those placing high-risk AI systems on the market. ANACOM has formal powers to inspect, investigate, and impose penalties under the EU AI Act framework. Citizens and workers affected by high-risk AI systems gain a national enforcement point to which complaints can be directed.
What is notably missing: ANACOM’s mandate covers AI system regulation, not AI literacy or training obligations for workers and citizens. Portugal has no law requiring employers to train employees on AI use, no binding AI curriculum for schools, and no enforcement mechanism for training failures. The designation addresses regulatory oversight of AI technology but does not close the knowledge gap between AI-proficient and AI-unaware people.