Portugal -- Sanctions Compliance Regulatory Overview

Portugal's cryptocurrency sanctions and restrictions are primarily enforced through its anti-money laundering framework and the EU's Markets in Crypto-Assets Regulation (MiCA), which require compliance with UN and EU sanctions measures.

Sanctions Compliance Requirements

General Sanctions Obligations

Virtual Asset Service Providers (VASPs) in Portugal must comply with restrictive measures approved by the UN or EU as part of their broader anti-money laundering obligations.[1] This requirement is embedded in Portugal's AML/CFT legal framework, which treats VASPs as "obligated entities" subject to comprehensive financial crime prevention measures.[5]

The Bank of Portugal enforces these standards through its regulatory oversight. Under the Portuguese AML Law, VASPs must implement risk management procedures, transaction monitoring, and Know Your Customer (KYC) obligations that include sanctioned entity screening as part of due diligence activities.[5]

MiCA Implementation

Portugal implemented the EU's Markets in Crypto-Assets Regulation (MiCA) through Decree No. 22/XVII, published on December 9, 2023.[4] MiCA establishes the first EU-wide framework harmonizing crypto-asset markets and enhancing investor protection and market integrity. Under MiCA, crypto-asset service providers must obtain authorization from the Bank of Portugal (Banco de Portugal) before commencing operations,[4][8] and this authorization is contingent on demonstrating compliance with all applicable financial crime prevention measures, including sanctions screening.

Specific Compliance Mechanisms

Know Your Customer and Transaction Monitoring

VASPs must identify and verify client identity, understand the nature of business relationships, conduct ongoing transaction monitoring, and document beneficial ownership information in a Central Register.[1] These mechanisms inherently incorporate sanctioned entity screening as part of the customer due diligence process.

Reporting and Coordination

The Bank of Portugal and the Portuguese Securities Exchange Commission (CMVM) maintain a close cooperation regime with exchange of information concerning compliance with MiCA obligations.[4] VASPs must also file official forms to the Tax Authority detailing transactions carried out, which facilitates sanctions-related reporting.[5]

Penalties for Violations

While the search results do not provide specific penalty amounts for sanctions violations, they confirm that VASPs face enforcement action from the Bank of Portugal and CMVM for non-compliance with applicable regulatory provisions.[1][4] Violations of AML/CFT obligations—which include sanctions compliance—can result in supervisory action, fines, and potential revocation of authorization to operate.

Transitional Arrangements

Entities previously registered with the Bank of Portugal under the "virtual assets" regime benefit from a transitional compliance period until July 1, 2026, or until their authorization application under MiCA is finalized, whichever occurs first.[4] This provides existing VASPs time to align their operations with the new MiCA requirements, including enhanced sanctions screening procedures.

Limitations

The search results do not provide access to Portugal's specific country-specific sanctions lists, detailed OFAC compliance requirements as they apply to Portuguese VASPs, or explicit penalty schedules for sanctions violations. These details would typically be found in Bank of Portugal guidance documents, CMVM directives, or EU sanctions regulations that are not included in these search results.