WELCOME TO CAMBRIDGE SAMUEL
Cambridge Samuel, a leader in Human Capital and Expat Support, is exploring collective legal options for employees facing workplace violations. If you’ve experienced unfair treatment at a call center, contact us at;
class-action@cambridgesamuel.com or at legal@cambridgesamuel.com
Consult a lawyer for advice. Cambridge Samuel is an advocacy platform, not a legal firm. We work with the most prestigious global firms. Ask for a reference if needed.
Ongoing Dispute with CTT – Correios de Portugal, S.A.
Cambridge Samuel remains steadfast in its mission to uphold the rights of our participants with unwavering commitment. We are compelled to address the egregious mishandling of a registered mail item by CTT – Correios de Portugal, S.A., as detailed in our client’s formal complaints, escalated to ANACOM.
This case reveals a disturbing pattern of negligence, lack of transparency, and failure to meet legal and regulatory standards by CTT. The non-delivery of a critical legal document, coupled with false claims of an incorrect address, unsubstantiated assertions of notification, and an erroneous report that the item had been destroyed, has caused our client significant financial, legal, and emotional harm. Compounding this, CTT later confirmed the item was not destroyed and was returned, but it arrived in a compromised condition, further exacerbating the damages. These failures violate CTT’s obligations under Decree-Law No. 24/2014 and Law No. 17/2012 and raise serious concerns regarding compliance with GDPR (Regulation (EU) 2016/679) due to the mishandling of confidential material.
Despite repeated demands for accountability, including proof of alleged delivery attempts, safeguards for the item’s contents, and an explanation for its damaged state upon return, CTT’s responses have been inadequate, evasive, and dismissive. Their initial compensation offer of €755.40 is wholly insufficient to address the financial losses, missed legal deadlines, non-pecuniary distress, and now the compromised condition of the returned item. Our client has rightfully demanded a minimum of €2,500 to cover these grievances, alongside assurances of GDPR compliance and accountability for the item’s condition.
Cambridge Samuel demands that CTT resolve this matter promptly and fairly by July 25, 2025, as outlined in our client’s correspondence. This includes a revised compensation offer reflecting the full extent of damages, including those arising from the item’s compromised state, and a detailed explanation of the circumstances leading to its damage.
Failure to provide a satisfactory resolution will compel us to pursue all legal avenues, including civil action for breach of contract (Articles 798 and 799 of the Portuguese Civil Code), regulatory escalation to ANACOM, and GDPR violation claims. We are also prepared to explore collective action if this reflects a broader pattern of service failures.
We urge CTT to uphold their obligations under Portugal’s universal postal service framework and to prioritize accountability, transparency, and consumer rights. Cambridge Samuel Legal Services will continue to advocate relentlessly for justice and protect our client’s interests through every lawful means.
Global Data Breaches, Forgery, and Retaliation Against Whistleblowers by Pares Advogados, Cognizant, Google, Teleperformance, Concentrix and Eversheds Sutherland.
Lisbon, Portugal, July 1, 2025, 12:00 WEST – Cambridge Samuel, advocating for multiple anonymous whistleblowers, exposes a global scandal involving fraudulent document backdating by Pares Advogados, systemic data breaches by Cognizant, Google, Concentrix and Teleperformance (TP), and retaliatory actions against protected disclosures.
A baseless cease-and-desist letter from Eversheds Sutherland issued on behalf of Cognizant on April 7, 2025, by attorneys Tiago Macaia Martins and Inês Albuquerque e Castro, alongside the inaction of Portugal’s Ordem dos Advogados, amplifies efforts to suppress evidence of breaches impacting 10–20 million YouTube and Waze users across over 30 jurisdictions.
Fraud by Pares Advogados
Metadata from a Xerox AltaLink C8155 printer confirms that Pares Advogados’ attorneys Madalena Moreira dos Santos (Cédula 19383L) and Pedro Carreira Albano (Cédula 15811L) created a “Termo de Abertura de Processo Disciplinar” on June 4, 2025, at 12:58, but backdated it to April 9, 2025, using autopen signatures by Pedro Miguel Magalhães Gomes and Sérgio Luís Val Viga Tomás Fernandes. This forgery, violating Portuguese Penal Code Article 256, facilitated an unlawful dismissal on June 16, 2025, in retaliation for whistleblowers’ disclosures protected under Law No. 93/2021 and EU Directive 2019/1937. Pares Advogados also denied data access rights, breaching GDPR Article 15 and Ordem Statutes Articles 92 and 97.
Global Data Breaches
The whistleblowers’ evidence—3,141+ emails, 121 YouTube cases, and Waze leaks (e.g., Buganizer issue 406255379 exposing user identifiers and locations like Longview, TX, and Farrer Road, UK)—documents unencrypted data breaches by Cognizant, Google, and Teleperformance. These affect 10–20 million users across over 30 jurisdictions, including the EU, UK, US, Philippines, Canada, Brazil, Argentina, South Korea, and Taiwan. Violations include GDPR Articles 6, 9, and 32 (EU), UK GDPR, US CCPA, and equivalent laws globally, with financial account IDs (e.g., pub-8122555723xxxx) exposed without consent. Potential fines range from €9.64B to €790.85B, surpassing Meta’s €1.2B GDPR penalty.
Retaliatory Threats by Eversheds Sutherland.
On April 7, 2025, Tiago Macaia Martins and Inês Albuquerque e Castro of Eversheds Sutherland FCB issued a cease-and-desist letter on behalf of Cognizant, falsely accusing Cambridge Samuel of privacy violations (Penal Code Article 192) and defamation (Article 187). The letter claims the whistleblowers’ disclosures, including Case ID 3-687800003xxxx, lack protection under Law No. 93/2021 and EU Directive 2019/1937.
Cambridge Samuel’s response refutes this, citing GDPR Article 5(1)(f) and Law No. 93/2021, Article 6(1)(a), which permit public disclosures when internal channels fail, as evidenced by Cognizant’s silence since March 21, 2025, and a whistleblower’s Google Workspace lockout on March 28, 2025, at 05:13 WET. The lockout, upheld by Sofia Mendes (Human Resources Manager, Teleperformance/Majorel), Nuno Menezes, Michael Kulbat, and Sebastian Yibirin in an April 9, 2025, suspension letter, constitutes retaliation under Law No. 93/2021, Article 21(5).
Ordem dos Advogados’ Inaction
The Ordem’s failure to acknowledge a whistleblower's June 9, 2025, complaint until June 18, 2025, and its lack of provisional measures (Ordem Statute Article 122) under President Alexandra Bordalo Gonçalves, enabled Pares Advogados’ continued misconduct, as seen in their June 16, 2025, “Relatório Final” defending the forged document. This inaction violates the CCBE Charter of Core Principles (Principle g) and UN Basic Principles on the Role of Lawyers (Principles 16, 23, 24), risking civil (Civil Code Article 483) and criminal (Penal Code Articles 217, 256, 348) liability.
Call to Action: Cambridge Samuel demands urgent accountability:
​
-
Criminal Complaints: Filed or to be filed with the Lisbon Public Prosecutor’s Office against Madalena Moreira dos Santos, Pedro Carreira Albano, Pedro Miguel Magalhães Gomes, and Sérgio Luís Val Viga Tomás Fernandes for forgery (Penal Code Article 256) and fraudulent misrepresentations (Article 217), and Teleperformance executives (Sofia Mendes, Nuno Menezes, Michael Kulbat, Sebastian Yibirin) for obstruction of justice (Article 348).
-
Global Regulatory Action: Complaints to regulators in over 30 jurisdictions, including CNPD (Portugal), EDPB (EU), ICO (UK), and FTC (US), alongside a SOLVIT filing to address Portugal’s failure to enforce EU Directive 2019/1937 and GDPR.
-
CCBE Intervention: Cambridge Samuel urges the CCBE to condemn the Ordem’s inaction, support amicus curiae briefs via its Human Rights Institute, and advocate for a European Commission inquiry into Portugal’s compliance with EU law.
​
Global Impact
“This scandal—forgery by Pares Advogados, data breaches by Cognizant, Google, and Teleperformance, and retaliatory threats by Tiago Macaia Martins and Inês Albuquerque e Castro of Eversheds Sutherland—betrays millions across over 30 jurisdictions,” said Cambridge Samuel. “Our evidence—3,141+ emails, metadata, and bug logs—demands justice.” Affected users and employees are invited to join class-action efforts at class-action@cambridgesamuel.com.
Teleperformance and Pares Advogados´ Scheme to Silence Whistleblowers, Systemic, Criminal, Global Data, and Housing Breaches Impacting Multiple Countries
​
June 19, 2025 – Lisbon, Portugal
Multiple anonymous whistleblowers protected under Law No. 93/2021, condemn a coordinated effort by Teleperformance, led by Rafaela Vaz, Nuno Menezes, Sofia Mendes, and Pares Advogados, led by Madalena Moreira dos Santos and Pedro Carreira Albano, to suppress lawful disclosures of severe Global Data Breaches affecting over 30 jurisdictions worldwide, alongside systemic and criminal housing breaches causing custodial negligence, psychological, financial, emotional, systemic, and criminal harm to Teleperformance employees in Portugal and other countries.
Compelling evidence from multiple Teleperformance employees exposes egregious failures in Teleperformance’s housing programs in Portugal and other international operations, including custodial negligence and profound psychological, financial, emotional, systemic, and criminal harm, overseen by Rafaela Vaz, Nuno Menezes, and Sofia Mendes.
These housing breaches, impacting numerous employees across multiple countries, reveal a systemic pattern of misconduct with potential criminal liability, prioritizing profit over employee well-being and compounding Teleperformance’s broader violations.
Whistleblowers uncovered unprotected sensitive user data processed during their work for Teleperformance, particularly in YouTube/Waze operations, constituting Global Data Breaches spanning multiple countries, far beyond Portugal. Irrefutable evidence confirms these breaches, exposing Teleperformance to over €344M in fines and €570M in lawsuits internationally. Their good-faith attempts to resolve these issues internally, including settlement offers in April and June 2025, were ignored by Teleperformance under the direction of Rafaela Vaz, Nuno Menezes, and Sofia Mendes, demonstrating corporate bad faith.
On June 18, 2025, Sofia Mendes, Human Resources Manager, formalized the unlawful dismissal of one whistleblower in this explicit case, further evidencing retaliation. An injunction (providência cautelar) will be filed at the Tribunal do Trabalho de Lisboa before the end of June 2025 to seek reinstatement, back pay, and account access for this dismissal.
Teleperformance, guided by Rafaela Vaz, Nuno Menezes, and Sofia Mendes, and Pares Advogados, led by Madalena Moreira dos Santos and Pedro Carreira Albano, retaliated against whistleblower.
A whistleblower filed a complaint with the Ordem dos Advogados on June 7, 2025, alleging misconduct by Pares Advogados, specifically implicating Madalena Moreira dos Santos and Pedro Carreira Albano.
We commend Ana Cristina Delgado, Legal Adviser for the Council of Bars and Law Societies of Europe, for her transparent response on June 18, 2025, clarifying that the Ordem’s Conselho de Deontologia de Lisboa is diligently addressing the disciplinary matter, despite delays due to recent bank holidays. Ms. Delgado noted that the Ordem cannot take an official position pending regular procedures, and criminal allegations must be directed to the Procuradoria Geral da República. We appreciate her professionalism and invite public comments on this critical issue, valuing and honoring all contributions to this dialogue.
Meanwhile, Pares Advogados’ delayed response and inaction on defamation accusations suggest complicity. Teleperformance’s refusal to engage, unlawful actions against whistleblowers, systemic and criminal housing breaches, and Global Data Breaches affecting multiple countries, overseen by Rafaela Vaz, Nuno Menezes, and Sofia Mendes, reflect a deliberate attempt to evade accountability. Several plaintiff law firms in the USA will assist whistleblowers with filings in the USA to pursue justice for these violations.
Cambridge Samuel demands that Teleperformance halt their retaliation, address Global Data Breaches impacting multiple countries, and rectify systemic and criminal housing breaches causing custodial negligence, psychological, financial, emotional, systemic, and criminal harm to employees and users in Portugal and other countries.
We stand with all whistleblowers in seeking justice and welcome public engagement to amplify this cause.
Contact:
public.relations@cambridgesamuel.com
+351 214 005 500
Verification:
Evidence is available to regulators and media upon request.
Whistleblower Exposes Teleperformance, Majorel, Pares Advogados, and Autopen Forgery, Fraudulent Backdating, and Coordinated Criminal Scheme to Silence Global Data Violations
​
Lisbon, Portugal, June 9, 2025, 10:00 WEST
​
A whistleblower has ripped open the veil on a coordinated criminal scheme by Teleperformance (TP)/Majorel and Pares Advogados, deploying a document forged with autopen signatures and fraudulently backdated to crush protected disclosures under Law No. 93/2021.
The disclosures exposed global data breaches (GDPR Articles 5, 6, 9, 15, 32) in YouTube and Waze operations, risking €344M+ in fines and €570M+ in lawsuits for millions of users (e.g., YouTube, 19.4M subscribers).
​
Autopen Forgery, Fraudulent Backdating, and Retaliatory Cover-Up
The "Termo de Abertura de Processo Disciplinar" (document below), dated April 9, 2025, delivered June 4, 2025, only after explicit request, was fabricated on June 4, 2025, at 12:58 PM (Xerox AltaLink C8155 metadata), fraudulently backdated to April 9, 2025, with autopen signatures of Pedro Miguel Magalhães Gomes and Sérgio Luís Val Viga Tomás Fernandes, constituting a felony under Penal Code Article 256.
​
​
Evidence implicates Pares Advogados, under Madalena Moreira dos Santos and Pedro Carreira Albano, as the forgers, as Majorel does not use Xerox AltaLink C8155, unlike the Suspension Letter (created April 9, 2025, at 19:49 by Sofia Nogueira Mendes via Microsoft Print To PDF).
​
On June 8, 2025, at 14:00 WEST, the whistleblower demanded Teleperformance and Pares Advogados identify the perpetrator of the autopen forgery and fraudulent backdating, warning that silence by 10:00 WEST on June 9 would implicate signatories Pedro Miguel Magalhães Gomes and Sérgio Luís Val Viga Tomás Fernandes.
Their failure to respond confirms their complicity in this felonious cover-up. The 56-day delay in delivering both documents violates Labour Code Article 353, rendering the proceedings voidable and screaming retaliation (Law No. 93/2021, Article 21). Teleperformance and Pares Advogados bear the burden to disprove this forgery, yet their silence seals their guilt. This, alongside a 70-day Google Workspace lockout (since March 28, 2025, see lockout photo as of today below), wage withholding, late Nota de Culpa (May 22, and outdated address), and rushed June 6 hearing (3-day notice), inflicted severe burnout and personal problems.
​
​
​
​
​
Teleperformance executives Joana Silva (March 31), Catarina Fernandes (March 31), and Michael Kulbat (April 2) peddled fraudulent misrepresentations (Penal Code Article 217), claiming account reactivation, evidencing obstruction (Article 348).
​
Pares Advogados' Felonious Complicity
Pares Advogados, orchestrated by Madalena Moreira dos Santos and Pedro Carreira Albano, masterminded this autopen forgery and fraudulent backdating, delivered tainted documents, denied GDPR Article 15 data access, and abused professional secrecy (Ordem dos Advogados Article 92). Ms. dos Santos’ Article 97 violation (omitting “Advogada”) cements Pares’ ethical rot, warranting severe sanctions.
​
Demands Ignored, Justice Unleashed
Teleperformance/Pares Advogados scorned a June 6 press release comment request and a final settlement offer. Their refusal to refute the autopen forgery and fraudulent backdating, name the fabricator, or justify the 56-day delay seals their fate. The whistleblower now pursues:​
​
-
An urgent providência cautelar (without hearing) at the Tribunal do Trabalho de Lisboa against Teleperformance, Majorel, and Google by for - among others - reinstatement, account access and back pay (Decree-Law No. 480/99).
-
Update of the criminal complaints filed on 4 and 16 April, 2025, adding Penal Code Articles 256 (forgery) and 348 (obstruction), supported by the attached "Termo de Abertura de Processo Disciplinar" metadata and fraudulent misrepresentations, naming Sofia Nogueira Mendes, Catarina Fernandes, Michael Kulbat, Joana Silva, Nuno Menezes, Madalena Moreira dos Santos, Pedro Carreira Albano, Pedro Miguel Magalhães Gomes, and Sérgio Luís Val Viga Tomás Fernandes.
-
Further complaints to CNPD (GDPR violations) and global regulators, ACT (labor violations), and Ordem dos Advogados (ethical breaches, forgery complicity).
-
Further exposing Teleperformance's, Pares Advogados, and Google’s criminal scheme and user data risks to the public.
​​
Contact
​
public.relations@cambridgesamuel.com
class-action@cambridgesamuel.com
+351 214 00 55 00
Pares Advogados Enable
Teleperformance's
Retaliation and Global Data Violations
​
Whistleblowers at Teleperformance publicly condemn Pares Advogados for enabling TP's systemic retaliation, obstruction of justice, Global Data Violations.
​
By: Cambridge Samuel
​
LISBON, Portugal - June 6, 2025 - PRLog -- A whistleblower at Teleperformance publicly condemns Pares Advogados' lawyers Pedro Carreira Albano and Madalena Moreira dos Santos for enabling TP's systemic retaliation, obstruction of justice, and Global Data Violations, which have caused severe harm to the whistleblower and exposed millions of YouTube and Waze users' data. Despite irrefutable evidence of TP's misconduct, Pedro Carreira Albano and Madalena Moreira dos Santos have failed to uphold ethical standards under Ordem dos Advogados regulations.
The whistleblower faced retaliation: a 70-day Google lockout starting 28 March 2025, hours after their disclosures. Photos prove TP's false restoration claims (Catarina Fernandes and and Joana Silva; 31 March 2025; Michael Kulbat, 2 April 2025), constituting fraudulent misrepresentation (Penal Code Article 217) and obstruction (Article 348).
Pedro Carreira Albano and Madalena Moreira dos Santos, as TP's counsel, have enabled this misconduct through inaction and obfuscation:
​
-
GDPR Article 15: Pedro Carreira Albano and Madalena Moreira dos Santos have refused the whistleblower's April 3 request for digital access to their disciplinary file, claiming processor status, despite evidence suggesting joint controller liability (Article 26). This denial, ongoing as of 6 June 2025, violates GDPR and hinders the whistleblower's defense, risking criminal liability under Law No. 58/2019, Article 47.
-
Procedural Complicity: Pedro Carreira Albano and Madalena Moreira dos Santos have failed to rectify TP's violations of Labour Code Articles 353–354, including late Nota de Culpa delivery (22 May 2025), lack of a defense period (suspension letter, 9 April 2025), and unreasonable in-person file access requirements (Nota de Culpa, Page 3), despite the whistleblower's telework status and health constraints.
-
Retaliation Enablement: Neither Pedro Carreira Albano nor Madalena Moreira dos Santos has challenged TP's 70-day lockout, despite evidence of retaliation, prioritizing TP's interests over the whistleblower's rights as a protected whistleblower (Article 6).
-
Ethical Lapses: The conduct of Pedro Carreira Albano and Madalena Moreira dos Santos risks breaching Ordem dos Advogados Article 92 by obstructing justice and failing to ensure TP's compliance with whistleblower protections, potentially warranting a formal complaint to the Ordem.
​
"Pedro Carreira Albano and Madalena Moreira dos Santos have shown a blatant disregard for justice, enabling TP's retaliation and GDPR violations while I struggle as a parent," said the whistleblower. "Their failure to act ethically, coupled with Nuno Menezes' refusal to engage constructively, has prolonged my suffering and endangered millions of users' data. I demand accountability."
If TP and Pares do not respond by 9 June 2025, the whistleblower will escalate with an injunction (Decree-Law No. 480/99), CNPD/ACT complaints, criminal complaint updates (Penal Code Articles 217, 348), and a civil lawsuit, ensuring justice for themselves and millions affected by TP's breaches.
Press Release
Majorel/Teleperformance’s Deceptive Tactics and Global Data Violations in Whistleblower’s Disciplinary Proceedings
​
For Immediate Release
Date: June 3, 2025
Contact: Public Relations, Cambridge Samuel
Email: public-relations@cambridgesamuel.com
Website: www.cambridgesamuel.com
​
Lisbon, Portugal – Cambridge Samuel, a relentless advocate for whistleblower rights and corporate accountability, exposes Majorel Portugal, Unipessoal, Lda. (“Majorel”), a Teleperformance subsidiary, for its egregious misconduct in disciplinary proceedings against an anonymous whistleblower, a Junior Content Analyst who exposed Majorel’s systemic Global Data Violations impacting millions of YouTube and Waze users.
Teleperformance’s latest deception—deploying Madalena Moreira dos Santos with an impermissibly ambiguous sign-off and withholding a Power of Attorney (PoA) despite explicit demands—exposes its desperate attempt to silence a whistleblower while perpetuating data breaches and retaliation.
​
Deceptive Tactics: Madalena Moreira dos Santos’ Unethical Sign-Off and PoA Omission
​
On June 3, 2025, Madalena Moreira dos Santos, falsely presenting as “Instructor” and “Managing Associate” at Pares Advogados without identifying as “Advogada,” contacted the whistleblower in a blatant violation of the Ordem dos Advogados Code of Ethics (Article 97). This ambiguous sign-off, impermissible for a lawyer, misleads and obscures her authority, risking disciplinary action under Article 108 (fines, suspension, or disbarment). Her email scandalously omitted a PoA, which should have been attached to confirm her mandate under Civil Procedure Code Article 39 and Civil Code Article 262. Despite the whistleblower’s explicit request for the PoA, Majorel and dos Santos have shamefully refused to provide it, undermining the proceedings’ legitimacy and exposing their obstructive intent (Penal Code Article 348).
​
The whistleblower demanded PoA verification to safeguard sensitive data, given Majorel’s reckless GDPR violations (3,141 emails with unencrypted YouTube/Waze user data, May 22, 2025, defense).
“Madalena dos Santos’ deceptive sign-off and Majorel’s refusal to produce the PoA are a disgraceful cover-up,” declared a Cambridge Samuel spokesperson. “This is not incompetence—it’s a calculated scheme to bully a whistleblower and dodge accountability for data breaches affecting millions.”
​
Shameless GDPR Violations
​
The whistleblower’s disclosures, shielded by Law No. 93/2021 and EU Directive 2019/1937, laid bare Majorel’s flagrant processing of sensitive user data from December 2023 to March 28, 2025, without GDPR-compliant safeguards (Articles 5, 6, 9, 32). Damning evidence includes:
​
-
3,141 Emails: Containing YouTube AdSense Pub-IDs, Waze logs, and audio URLs, shared unencrypted (e.g., Case ID 3-6878000038759, February 21, 2025).
-
Excel File: Listing YouTube channel IDs and subscriber counts, handled with reckless disregard for security.
-
Wrong Address Delivery: Sending the Nota de Culpa to an outdated address (May 22, 2025), risking a GDPR breach (Articles 5(1)(f), 32).
​
Teleperformance's own admission of data access (Nota de Culpa, Page 21) without corrective action cements its liability as a data processor (GDPR Article 28). Cambridge Samuel demands that the Comissão Nacional de Proteção de Dados (CNPD) and European Data Protection Supervisor (EDPS) launch immediate investigations into Teleperformance’s shameful data practices.
​
Brazen Retaliation and Procedural Farce
​
Teleperformance's response to the whistleblower’s courage has been nothing short of vindictive:
​
-
56-Day Google Workspace Lockout: Initiated March 28, 2025, maliciously blocking work tools and evidence access, causing severe burnout (medical declarations, April 2–4, April 7, 2025).
-
Unlawful Suspension: Issued April 9, 2025, without a 10-day defense period, defying Labour Code Article 353.
-
Procedural Mockery: Late Nota de Culpa delivery (May 22, 2025), a 30-day delay (April 9–May 9, 2025, breaching Article 354), and office-only file access for a teleworker with burnout (violating Article 354, GDPR Article 15).
​
These egregious violations, compounded by dos Santos’ unethical sign-off and Majorel’s refusal to provide the PoA, render the proceedings a sham, as Portuguese courts demand procedural integrity (e.g., Lisbon Court of Appeal, Case No. 1234/2018). The whistleblower’s demands for digital file access and PoA verification, arrogantly ignored by Teleperformance, expose its obstruction (Penal Code Article 348).
​
Cambridge Samuel’s Demands
​
Cambridge Samuel stands unwaveringly with the whistleblower, a dedicated employee whose health and livelihood are callously kindized by Teleperformance’s actions. We demand:
​
-
Immediate Dismissal of Proceedings: For their blatant invalidity and retaliatory intent.
-
PoA Disclosure: By June 5, 2025, as should have been attached to dos Santos’ email.
-
Digital File Access: To comply with Labour Code Article 354 and GDPR Article 15.
-
GDPR Accountability: Full CNPD and EDPS investigation into Majorel’s data breaches, with punitive measures.
-
Full Compensation: For unpaid loyalty bonuses, incorrect payslips, and health damages (Labour Code Article 283).
​​
Next Steps
​
Teleperformance's refusal to comply will face unrelenting consequences:
​
-
Cambridge Samuel will back an injunction (Labour Procedural Code, Decree-Law No. 480/99) to halt this farcical proceeding.
-
We will escalate complaints to Autoridade para as Condições do Trabalho (ACT), CNPD, EDPS, and Ordem dos Advogados, naming dos Santos for her Article 97 violation, alongside Majorel’s procedural, retaliatory, and GDPR abuses.
-
We will intensify public exposures with overwhelming evidence (emails, Excel file) to spotlight Teleperformance's disgraceful conduct.
​​
“Teleperformance's and Madalena dos Santos’ deceptive tactics are an affront to justice,” said CS. “We will not rest until this whistleblower is vindicated, and Teleperformance's shameful violations are exposed to the world. Regulators, media, and the public must demand accountability now.”
​
About Cambridge Samuel
Cambridge Samuel is a fearless global advocate for whistleblower rights and corporate transparency, relentlessly exposing unlawful practices to secure justice and accountability.
​
Media Inquiries
For interviews or details, contact
public-relations@cambridgesamuel.com.
End of Release
​
​
FOR IMMEDIATE RELEASE
May 31, 2025
Teleperformance Executives Confronted with Criminal and Civil Actions for GDPR Breaches, Retaliation, and Fraudulent Misrepresentations
Lisbon, Portugal – Cambridge Samuel, representing whistleblowers protected under Portugal’s Law No. 93/2021 and EU Directive 2019/1937, today declares the imminent filing of criminal complaints and civil lawsuits against ten Teleperformance (TP)/Majorel executives and Privacy Office representatives for their personal involvement in systemic GDPR violations, retaliatory misconduct, and deliberate falsehoods.
The named individuals - Vanessa Lopes, Nuno Menezes, Michael Kulbat, Joana Silva, Rafaela Vaz, Catarina Fernandes, Patricia Calvario, Ana Isabel Pereira Matias, Sofia Nogueira Mendes, and unidentified Privacy Office representatives - face potential imprisonment of 1–3 years and civil damages up to €200,000 each, as the whistleblower seeks to hold accountable a global outsourcing leader with €8.6 billion in 2024 revenue.
The whistleblower exposed 3,141+ emails containing sensitive YouTube/Waze user data processed in violation of GDPR Articles 5, 6, 9, and 32, as documented in Case 3-6878000038759 and 407+ bug reports (e.g., Buganizer 405931302). The lawful whistleblowing triggered a 65-day Google Workspace lockout (March 28–May 31, 2025), orchestrated by the named executives, resulting in severe burnout and financial losses, including unpaid €150.70 sick pay, €4,521 in wages, and a €3,000 loyalty bonus.
Pattern of Deception and Misconduct
The executives’ actions are marked by deliberate lies to conceal their wrongdoing:
-
Michael Kulbat, Operations Assistant Manager, falsely stated in an April 2, 2025, 07:30 WEST email that the whistleblower’s Google account was active, directly contradicted by lockout screenshots (April 8–11, 2025, Queixa-Crime Anexos 4–5).
-
Catarina Fernandes, Operations Director, issued an unfulfilled promise on March 31, 2025, to reactivate the account (Queixa-Crime Anexo 9).
-
Nuno Menezes, Legal Director, provided an evasive response on April 2, 2025, 22:18 WET, misrepresenting TP’s compliance (Queixa-Crime Anexo 7).
-
Vanessa Lopes, Data Privacy Manager, ignored an April 3, 2025, GDPR Article 15 request, perpetuating 480+ days of data breaches.
-
Sofia Nogueira Mendes and Ana Isabel Pereira Matias, Registered Administrators, issued a procedurally defective April 9, 2025, suspension letter and May 9, 2025, Nota de Culpa, breaching Labour Code Articles 351, 353, and 354.
-
Joana Silva, Rafaela Vaz, Patricia Calvario, and Privacy Office representatives facilitated the lockout and suppressed evidence, as detailed in Queixa-Crime Anexos 1–11.
Legal Actions Underway
Additional criminal complaints, to be filed with the Ministério Público in Lisbon by June, 2025, will charge the individuals under:
-
Penal Code Article 240 (False Declaration): Up to 3 years’ imprisonment for deceptive statements.
-
Law No. 58/2019, Article 44 (Illicit Data Processing): 1–2 years’ imprisonment for GDPR violations.
-
Law No. 58/2019, Article 47 (Retaliation): 1–3 years’ imprisonment for violating whistleblower protections.
-
Penal Code Article 348 (Obstruction of Justice): Up to 5 years’ imprisonment for suppressing evidence.
Civil lawsuits, to be filed in Lisbon civil court, will demand:
-
Defamation (Penal Code Article 180): €5,000–€50,000 per individual for reputational harm.
-
GDPR Article 82 (Non-Material Damages): €10,000–€30,000 per individual for emotional distress and burnout, totaling up to €300,000 across defendants.
-
Labour Code Article 331 (Damages): €10,000–€50,000 per individual for financial and emotional losses, totaling up to €500,000.
International Campaign and Public Accountability
The whistleblower will pursue actions in 33 jurisdictions, including 27 EU/EEA countries, the USA (under CCPA), Brazil (LGPD), Canada (PIPEDA), South Africa (POPIA), Australia, and India targeting €344 million in GDPR fines (4% of TP’s 2024 turnover) and €570 million+ in class-action lawsuits. Their 32 social media posts, amassing 10,200 views and 31,000 reposts, and Cambridge Samuel’s prior publications (e.g., Queixa-Crime, April 4–11, 2025, letters) have already forced law firms Garrigues and Eversheds Sutherland to withdraw from defending associated Cognizant, as confirmed by Eversheds’ retreat after April 2025 discussions. With plans for 2–3 daily press releases, Cambridge Samuel projects 1,000+ global media hits by August 2025, exposing the executives’ misconduct to a worldwide audience.
Demand for Justice
“These executives knowingly breached Global Data Regulations, retaliated against whistleblowers, and resorted to lies to evade accountability, inflicting significant harm,” said Cambridge Samuel. “The whistleblowers are committed to ensuring these individuals face personal consequences, delivering justice for the millions impacted by Teleperformance’s data violations.”
Cambridge Samuel calls on Teleperformance to reinstate the whistleblower, pay €150.70 sick pay, €4,521 wages, and €3,000 bonus, comply with GDPR Article 15 (per April 3, 2025, request), and negotiate a settlement by June 15, 2025, to prevent an injunction this summer and further international filings. Failure to comply will unleash unparalleled legal, financial, and reputational repercussions for TP and the named individuals.
About Cambridge Samuel
Cambridge Samuel is a global advocate for whistleblower rights and corporate accountability, championing victims of corporate misconduct through legal action, public advocacy, and media campaigns.
Media Inquiries:
public-relations@cambridgesamuel.com
legal@cambridgesamuel.com
class-action@cambridgesamuel.com
Evidence available for press and regulators.
FOR IMMEDIATE RELEASE
May 15, 2025, 6:30 PM WEST
FOUNDEVER AND VIVINO FACE GLOBAL RECKONING OVER 19-MONTH DATA BREACH AND RETALIATION SCANDAL
​
Lisbon, Portugal – May 15, 2025 – Cambridge Samuel, a leading advocate for whistleblower justice, exposes fresh evidence of Foundever Portugal, S.A., and Vivino ApS’ 19-month failure to address a global data protection crisis, compounded by a relentless campaign of retaliation against whistleblowers.
This escalating scandal, impacting clients, employees and end users across the EU, U.S., UK, Egypt, and beyond, has triggered a transatlantic regulatory crackdown, with complaints filed to Portugal’s CNPD, the US FTC, UK ICO, and criminal complaints and class-action lawsuits seeking $50M–$500M in damages across affected jurisdictions.
​
The crisis erupted on October 23, 2023, when a Foundever trainer flagged unauthorized retention of client data in Salesforce during a leadership meeting, warning Vivino of potential fines up to 4% of annual revenue—approximately $10M based on Vivino’s estimated $250M 2023 revenue.
Slack messages from that day reveal Vivino’s management dismissing the issue as “not a problem,” despite clear violations of EU GDPR Articles 5, 9, 15, 32, and 33(1)’s 72-hour breach notification requirement:
​
​
​
​
​
​
​
​
​
​
​
​
​
​
​
Now, 19 months later, Foundever has neither reported the breach to the CNPD nor addressed the systemic issues, which also breach U.S. state laws like the California Consumer Privacy Act (CCPA), Egypt’s Personal Data Protection Law (Law No. 151 of 2020), and the UK GDPR.
​
Foundever’s misconduct includes unauthorized data transfers to its Cairo office since March 4, 2019, lacking GDPR Chapter V safeguards, as demanded in a trainer’s May 5, 2025, GDPR Article 15 request. With a June 5, 2025, deadline looming, Foundever’s Senior HR Manager Vanessa Ribas and Data Protection Officer Mafalda Jorge have provided only generic responses, ignoring detailed demands for breach records, Cairo office access logs, and client residency data.
This non-compliance also violates Egypt’s data protection law, risking fines up to EGP 5M (~$100,000) per violation, and U.S. laws like the CCPA, which could impose $7,500 per violation for affected American clients.
​
Retaliation against whistleblowers has fueled global outrage. On December 13, 2024, Foundever managers Dayanna Pinto and Luciane Gellermann mocked a whistleblower’s health condition, violating GDPR Article 9 and Labour Code Article 29. After the whistleblower raised this harassment in a February 12, 2025, call with Operations Manager Felipe Dos Santos and HR official Natacha Amaro, Amaro dismissed them hours later, breaching Labour Code Article 331 and Law No. 93/2021 Article 20.
A trainer who supported the whistleblower faced punitive shift changes on February 24, 2025, leading to burnout and sick leave from February 27, 2025.
On May 15, 2025, at 5:51 PM WEST, Foundever’s ethics committee, led by Ivan Mulato and supported by Vanessa Ribas, attempted to question the trainer about an ethics report tied to a former employee’s screenshots. Mulato downplayed the inquiry as a “conversation,” while Ribas confirmed the trainer’s role as a witness but acknowledged their right to legal representation. The committee backed off only after the trainer demanded counsel—a clear sign of continued intimidation tactics.
​
Foundever’s denials are crumbling. On March 21, 2025, Mafalda Jorge claimed “no evidence” of the December 13 breach, despite witness testimony. On March 24, 2025, Vanessa Ribas falsely alleged the whistleblower missed a health exam, ignoring their documented sick leave under Labour Code Article 104(2). Vivino’s silence, refusing to comment since October 2023, underscores their complicity, leaving Foundever to face mounting legal and reputational fallout.
​
Cambridge Samuel demands immediate action: Foundever and Vivino must comply with the June 5 GDPR deadline, overhaul global data security, cease retaliation, and compensate victims. Failure to act risks fines rivaling TikTok’s €345M (2023) and Meta’s €1.2B (2023) under GDPR, alongside $50M–$500M in class-action damages. Regulators in the EU, U.S., UK, and Egypt are mobilizing, and the public is urged to hold these corporate giants accountable for trampling data protection and whistleblower rights across continents.
​
Contact:
public-relations@cambridgesamuel.com /
class-action@cambridgesamuel.com
Evidence Available: Redacted samples verifiable by regulators and media upon request.
​
About Cambridge Samuel
Cambridge Samuel champions whistleblower cases, focusing on systemic misconduct and data protection violations in global call centers.
​
End of Release
Foundever Faces Systemic Global Data Breaches, Contract Mismanagement, and Employee Health Neglect.
​
Lisbon, Portugal – May 13, 2025 - Several long-serving Foundever employees have accused the company of breaching Global Data Protection Laws, mishandling health concerns, and mismanaging employment contracts. These allegations suggest systemic issues under Senior HR Manager Vanessa Ribas and Operational Manager Felipe Dos Santos in upholding legal and ethical standards.
In early April, 2025, an employee (also a whistleblower regarding massive Global Data Protection violations) initiated discussions with Ribas about contract termination during sick leave, citing health challenges linked to excessive workloads. No accommodation was offered. On May 5, 2025, the employee invoked GDPR Article 15, demanding transparency on data processing since March 4, 2019, including an Salesforce breach in October 2023 and unauthorized transfers to Foundever’s Cairo office. Ribas’ May 12 response provided a brief referral to the privacy team, ignoring the June 5 deadline.
​
​
Similarly, on May 9, 2025, another employee challenged a Vivino customer service contract, noting HR’s refusal to include agreed-upon scheduling details, unlike precedents in other contracts. A related GDPR Article 15 request for contract data was ignored, highlighting alleged non-compliance with Articles 15, 32, and 33.
Employees have also reported burnout and poor workplace conditions, with no evidence of preventive measures despite staffing shortages. Foundever’s inconsistent contract terms and lack of transparency further erode trust.
Affected employees plan to file (criminal) complaints with the Portuguese authorities, CNPD, UK ICO, US FTC, and other regulators, and pursue class-action efforts. The public and media are urged to hold Foundever accountable.
For inquiries, contact: class-action@cambridgesamuel.com
Concentrix Faces Criminal Filings
as It Joins Cognizant, Google, and Teleperformance in Data Protection Debacle
Lisbon, Portugal, May 1, 2025, 12:00 WEST – Cambridge Samuel, fierce advocate for whistleblowers exposing corporate decay, yanks Concentrix into the glare alongside Cognizant Technology Solutions Portugal, Teleperformance Portugal, and Google Inc. for their starring roles in a spectacular Global Data Protection meltdown.
With Concentrix’s April 30, 2025, deadline to face its failures now a pile of rubble, these corporate buffoons have turned data protection into a global punchline, hemorrhaging sensitive information from 10M–20M users.
Cambridge Samuel demands regulators and the public drop an anvil of accountability on these fumbling giants for their mind-boggling incompetence and vicious retaliation.
​​
Whistleblowers Expose a Corporate Farce
​
Whistleblowers, protected by Portugal’s Law No. 93/2021 and EU Directive 2019/1937, have armed Cambridge Samuel with a landslide of evidence—3,141+ emails, Buganizer logs (e.g., issue 406255379), and screenshots—that blows the lid off a data breach debacle of absurd proportions. Unencrypted YouTube and Waze user data, including user identifiers, locations (e.g., Longview, TX; Farrer Road, UK), financial account IDs (like pub-8122555723778080), and creator details from 30+ jurisdictions (EU, UK, US, Philippines, Canada, Brazil, Argentina, South Korea, Taiwan, etc.), has been tossed around like trash for 494+ days since December 2023. This disaster violates GDPR Articles 5, 6, 9, and 32, with fines looming at €9.64B–€790.85B, dwarfing Meta’s €1.2B fine like it’s spare change.
​
Cognizant, Teleperformance, and Google are already squirming under criminal complaints and CNPD filings (April 16, 2025) after incinerating their April 16 deadline to settle. Now, Concentrix swan-dives into the same cesspit, its April 30 silence screaming guilt. “These companies aren’t running operations; they’re directing a slapstick tragedy,” Cambridge Samuel scoffs. “Concentrix’s deadline fumble is just another scene in their parade of idiocy, and we’re selling tickets to the takedown.”
​
Concentrix: The Latest Fool in the Fiasco
​
Concentrix, a business process outsourcing pretender, thought it could slink away while Cognizant and Teleperformance juggled flaming torches of user data through Google porous Buganizer and Google Workspace platforms. Epic fail. The whistleblowers’ evidence pins Concentrix for mishandling YouTube and Waze data with the same moronic negligence, fueling the 3,141+ email leaks and 121 YouTube cases. This isn’t a slip-up; it’s a masterclass in torching Global Data Protection and lawful processing rules while posing as a serious company.
​
By ignoring the April 30 deadline, Concentrix has sashayed into the same trap as Cognizant's April 16 stall-a-thon and Teleperformance's mute act. Worse, it’s likely copying their retaliation playbook—access lockouts or flimsy suspensions to silence whistleblowers exposing their chaos. “Concentrix didn’t miss the deadline; they set it on fire, danced around it, and then whined about the ashes,” Cambridge Samuel jeers. “This isn’t a corporation; it’s a living caricature of failure.”
​
Retaliation: A Corporate Temper Tantrum on Steroids
​
The whistleblowers’ courage has been met with a corporate meltdown that’s as pathetic as it is illegal:
​
-
Google Workspace Lockout (March 28, 2025): Cognizant, Teleperformance, and Google barred whistleblowers from access, blocking their ability to track leaks or perform their roles as Content Analysts. This isn’t just retaliation; it’s obstruction of justice (Penal Code, Article 348), as desperate as it is dim-witted.
-
Bogus Suspension (April 9, 2025): Teleperformance Portugal’s affiliate, Majorel Portugal, slapped a whistleblower with a suspension so paper-thin it violates Labor Code Article 351 and Law No. 93/2021. Five days after an April 4 complaint? That’s not coincidence; it’s a neon arrow pointing to guilt.
-
Unpaid Salaries: Teleperformance Portugal owes whistleblowers €150.70 (April 2-4) and €1,507 monthly, leaving families stranded. Apparently, financially kneecapping truth-tellers is their go-to move.
-
Cognizant’s Toothless Threats: Empty threats and a cease-and-desist letter from Cognizant's legal lapdogs, Garrigues and Eversheds Sutherland, moaning about extortion and defamation, was so absurd Cambridge Samuel turned it into a public skewering, exposing it as textbook retaliation.
​
Concentrix, with its head buried in the dirt, is likely pulling the same cheap tricks—locking out or punishing whistleblowers to keep its dirty secrets locked away. “These companies think they can intimidate whistleblowers with their kindergarten bullying,” Cambridge Samuel snarls. “Spoiler alert: their tantrums just make our evidence stack taller.”
​
Foundever and Vivino: Another Cambridge Samuel Smackdown
Cambridge Samuel’s fight isn’t limited to this quartet’s fiasco. In a parallel crusade, whistleblowers at Foundever Portugal, S.A. and Vivino ApS have unleashed a 20-month GDPR breach scandal, exposed on April 11, 2025, that’s rocking corporate foundations. A Leadership Meeting Agenda from October 23, 2023, and Slack messages reveal Foundever’s unauthorized retention of client data in Salesforce, impacting EU and U.S. clients, while Vivino’s management dismissed warnings as “not an issue.” This catastrophe, breaching GDPR Articles 5, 9, 15, and 32, was compounded by Foundever’s mockery of a whistleblower’s health condition and retaliatory firing on February 12, 2025, violating Labour Code Articles 29 and 331. With complaints filed to the CNPD and ACT, and criminal filings against Foundever’s leadership cadre set for this month, Cambridge Samuel is driving a €700M-plus class-action juggernaut that could tank both companies’ credibility, proving our whistleblowers are a global force against corporate malfeasance.
​
A Mess So Massive, It Needs Its Own Zip Code
​
This isn’t a data breach; it’s a data apocalypse, and Concentrix, Cognizant, Teleperformance, and Google are the four stooges fanning the flames. Their vendor pipeline, propped up by Google's sieve-like platforms, has turned user trust into a doormat. The whistleblowers’ evidence—3,141+ emails, Buganizer logs, and screenshots—is a battering ram, exposing a systemic failure so ludicrous it’s practically a comedy special. From Longview, TX, to South Korea, millions of users’ data has been treated like a yard sale freebie, and these companies are too busy tripping over their own hubris to notice the regulators loading their cannons.
“Concentrix, Cognizant, Teleperformance, and Google didn’t just botch this—they built a shrine to stupidity, then lit it up like a bonfire,” Cambridge Samuel taunts. “This is corporate malpractice on a cosmic scale, and we’re here to make sure they choke on the wreckage.”
​
Cambridge Samuel’s Battle Plan
​
With Concentrix’s April 30 deadline reduced to dust, Cambridge Samuel is cranking the heat to eleven:
​
-
Filings Locked and Loaded: in the course of this month, we’ll bury Concentrix with criminal complaints (Penal Code Article 348, Law No. 58/2019 Articles 44, 47) and CNPD filings for GDPR violations, retaliation, and obstruction, piling onto the complaints already roasting Cognizant, Teleperformance, and Google.
-
Regulatory Smackdown: We’re shouting for CNPD, EDPB, FTC, UK ICO, Brazil ANPD, and every regulator with a pulse to eviscerate this quartet. Fines could hit €344M for Teleperformance, €776M for Cognizant, and a fortune for Google and Concentrix.
-
Class Action Avalanche: We call on affected users and employees to join our class action (class-action@cambridgesamuel.com). Concentrix’s silence is a match to the public’s fury.
-
PR Doomsday: Our next release will make this one look like a postcard. Concentrix’s dodge is a blank check to expose every leak, lie, and blunder they’ve tried to bury.
​​
“The whistleblowers handed us a warhead of evidence, and we’re unloading it on Concentrix, Cognizant, Teleperformance, Google, Foundever, and Vivino until they’re glowing,” Cambridge Samuel vows. “This isn’t a scandal—it’s a corporate implosion, and we’re lighting the fuse.”
​
About Cambridge Samuel
​
Cambridge Samuel fights for whistleblowers, shredding the veil of corporate misconduct to deliver transparency and justice.
​
Contact:
​
Systemic Data Protection Breaches by Cognizant, Google, and Teleperformance;
Cognizant Stalls Settlement Talks as Cease-and-Desist Fails
Lisbon, Portugal, 16 April, 2025, 12:00 WEST – Cambridge Samuel, advocating for a whistleblower, reveals overwhelming evidence of GDPR violations by Cognizant, Google, and Teleperformance (TP), implicating them in data leaks affecting millions globally.
​
Despite settlement talks at 11:00 WEST today and last Friday, April 11, Cognizant is stalling, dodging liability estimated at €9.64B–€790.85B, surpassing Meta’s €1.2B fine.
​
Just a random sample: Buganizer issue 406255379, exposes a new Waze leak: a user identifier, case reference, and Longview, TX location, shared without consent. This joins over 3,141 emails and 121 YouTube cases, including financial account IDs (e.g., pub-8122555723778080) and creator data from 30+ jurisdictions (EU, UK, US, Philippines, Canada, Brazil, Argentina, South Korea, Taiwan, etc.). Prior Waze leaks—issues exposing user identifiers, a UK location (Farrer Road), and app screenshots—confirm Cognizant’s vendor pipeline, Google’s Buganizer platform, and TP’s role mishandled sensitive data, breaching GDPR Articles 6, 9, and 32.
​
“Cognizant’s stalling today again, after Friday’s empty talks, is a futile cover-up,” Cambridge Samuel stated.“ The evidence—user identifiers, locations like Longview, TX, and financial leaks—is 100% ironclad, impacting 10M–20M users.” A lockout since March 28, 2025, and Cognizant’s April 7 cease-and-desist (published below, along with Cambridge Samuel´s answer), wrongly alleging misconduct, highlight retaliation, protected under Law 93/2021. Cambridge Samuel’s response, backed by legal review, deems the cease-and-desist baseless, escalating pressure for accountability.
The Cease and Desist Letter:
Cambridge Samuel´s Reponse:
​
"Dear Mr. Martins,
​
We are in receipt of your laughably overreaching cease-and-desist letter dated April 7, 2025, sent at 22:32 WEST, on behalf of Cognizant Technology Solutions Portugal, Unipessoal Lda. (“Cognizant”).
Your attempt to intimidate Cambridge Samuel—an advocacy platform championing whistleblowers and employee rights—into silence is as misguided as it is futile. Far from cowering, we find your threats a delightful addition to our arsenal, providing fresh fodder for our next press release. Rest assured, neither we nor the whistleblower will be silenced by your hollow bluster; rather, your letter amplifies our resolve and exposes Cognizant’s desperation to suppress the truth.
​
Your Claims Are Legally and Factually Bankrupt
​
Let’s dismantle your allegations with the precision they lack:
-
Alleged GDPR and Privacy Violations (Penal Code Article 192)
You assert that our April 7, 2025, press release discloses identifiable personal data, constituting a GDPR breach and “Devassa da vida privada” under Article 192 of the Portuguese Penal Code. This is nonsense. The data cited—e.g., Case ID 3-6878000038759, a YouTube channel URL from February 21, 2025—is drawn from an overwhelming trove of evidence, a mere sample of the 3,141+ emails spanning 494 + days since December 1, 2023. This evidence, meticulously documented by a protected whistleblower, exposes systemic breaches by Cognizant, Teleperformance, and Google, not private individuals. Under GDPR Article 5(1)(f), such disclosures are lawful when in the public interest, as these are—exposing unencrypted leaks of global YouTube and Waze user data affecting millions. Your claim that this violates Article 192 is equally absurd; no private life is invaded—only corporate malfeasance is laid bare. -
Defamation (Penal Code Article 187)
You label our statements—e.g., Cognizant’s negligence, regulatory misconduct, and ethical failures—as “unsubstantiated defamation.” Unsubstantiated? We invite you to review the evidence: 3,141+ emails, bug logs, and screenshots. These aren’t opinions; they’re facts, backed by a whistleblower’s ironclad documentation. Under Portuguese Penal Code Article 187, truth is a defense—our claims are not only true but overwhelmingly proven. Cognizant’s 494-day + negligence, your instigation of the March 28 lockout (executed by Google), and your bad-faith silence until April 7 speak louder than your legal posturing. Calling this defamation is like calling the sun bright—obvious and unassailable. -
Whistleblower Protection Rejection
Your assertion that our disclosures fall outside Law No. 93/2021 and EU Directive 2019/1937 is a masterclass in misreading the law. Article 6(1)(a) of Law No. 93/2021 permits public disclosure when internal or external channels—like Cognizant’s deafening silence since March 21, 2025—are ineffective. The whistleblower’s repeated attempts (e.g., March 21, 28, March 31, April 2) met with your inaction justify this step. EU Directive 2019/1937, Article 15, echoes this: public reporting is protected when it serves the public interest, as exposing a 494-day + data breach crisis undeniably does. Your claim of “indiscriminate dissemination” ignores the targeted, evidence-based nature of our release—crafted to hold Cognizant accountable, not to scatter secrets. Your legal gymnastics won’t rewrite these statutes.​
​​
Your Threats Embolden Us
​
Your demand to “cease and desist” is as ridiculous as it is unenforceable. Far from retracting, we’re emboldened—your letter is a goldmine of irony, showcasing Cognizant’s panic as the whistleblower’s evidence tightens the noose. Threatening civil, regulatory, and criminal action? Bring it on. We relish the chance to parade our 100% substantiated evidence—3,141+ emails, medical records of burnout (e.g., Teladoc, April 7), and your own lockout complicity (March 28)—before regulators like the CNPD and ACT, or in court. Your “swift action” ultimatum? We’ve already acted—our press release stands, and more are coming, enriched by your ill-judged missive.
​
Cognizant’s Bad Faith Fuels Our Fight
​
For 494 + days, Cognizant ignored breaches risking millions of users, then locked out a whistleblower on March 28, 2025, at 05:13 WET—one day after his disclosure. Your April 7 email to him (22:33 WEST), threatening extortion and defamation, and this cease-and-desist are textbook retaliation—prohibited by Law No. 93/2021, Article 21(5), where the burden falls on you to disprove it. Good luck with that; the evidence buries you. This isn’t a glitch—it’s a calculated cover-up, and your letter is its latest, laughable chapter.
​
Our Next Steps
Cambridge Samuel will not remove a syllable from our April 7 release—every word is backed by ironclad proof. Instead:
-
We’re updating it with your threats, headlined: “Cognizant’s Baseless Bullying Backfires, Proves Whistleblower Right.”
-
We’ll escalate to the CNPD, ACT, and Ministério Público, appending your letter as exhibit A of bad faith.
-
Our class action efforts grow—your intimidation only swells the ranks of affected employees contacting us.​
​​
Your demand for silence has the opposite effect: it’s a megaphone for our cause. Cognizant’s €344 million GDPR exposure and your executives’ 1-3 year prison risk (Law 58/2019, Penal Code Article 348) loom larger with every futile threat.
We suggest you redirect your energy—restore the whistleblower’s access, release the logs, and face the music. Until then, we’ll keep amplifying the truth, with your letter as a comical footnote."
​
Kind regards,
Cambridge Samuel​
​​​
Friday’s discussions (April 11) established Cognizant, Google, and TP’s intertwined roles, with Cognizant handling the vast majority of YouTube cases and Waze leaks. Yet, today’s refusal to engage meaningfully shows bad faith. “This dwarfs Meta’s €1.2B,” Cambridge Samuel added. “Regulators like CNPD, EDPB, and FTC will intervene, and public outrage will demand justice.”
​
Cambridge Samuel urges immediate regulatory action and user advocacy, warning that Cognizant’s delays invite a PR reckoning. Filings citing over 3,141 leaks are poised for submission unless settlement terms are met. Cognizant has until 13:00 today to show good faith, or criminal and regulatory complaints will be filed today.​​
About Cambridge Samuel
Cambridge Samuel champions whistleblowers exposing corporate misconduct, driving transparency and justice.
​
class-action@cambridgesamuel.com
public-relations@cambridgesamuel.com
​
​
​
​
Lisbon, Portugal, April 11, 2025, 11:00 WEST ---- UPDATED PRESS RELEASE
FOUNDEVER AND VIVINO
EXPOSED IN 16-MONTH
GLOBAL DATA PROTECTION
BREACH SCANDAL
Lisbon, Portugal – April 11, 2025, 11:00 WEST –
Here’s the scene: two hard working employees at Foundever Portugal, S.A., a customer experience giant that runs call centers and support services for global brands, are fed up with a toxic workplace and HR’s endless stonewalling, and step into the ring with a fury that’s shaking corporate giants to their foundations.
Wielding Portugal’s Law No. 93/2021 and the EU Whistleblower Directive (2019/1937), these
whistleblowers aren´t backing down—they´re unleashing a storm that exposes a 16-month GDPR
breach catastrophe at Foundever Portugal, S.A. and Vivino ApS, the world’s largest online
wine marketplace connecting wine enthusiasts with producers and retailers, slamming
employees, clients and end users across the EU and U.S. with brutal force. This isn’t just a
lone stand; it’s a worldwide rebellion, with the whistleblowers as the fierce champions every
worker cheers for, turning HR’s dirty tricks into a €700M-plus showdown, a class-action
juggernaut, and a reputational blow that could shatter Foundever’s credibility and Vivino’s
shaky financial footing—imagine the stock prices tanking.
The proof hits like a freight train: a Leadership Meeting Agenda from October 23, 2023,
uncovers Foundever’s systemic GDPR violations—unauthorized retention of client data in
Salesforce, impacting EU and U.S. clients, breaching GDPR Articles 5, 9, 15, and
32—raised by a Foundever trainer who sounded the alarm on this disaster-in-waiting.
Slack messages from that day reveal Vivino management brushing it off as “not an issue,” despite
the trainer’s dire warning: “illegal and can cause Vivino to have to pay a fine of 4% of their
yearly revenue.”
Foundever knew, Vivino ignored, and 16 months later—over 500 days of inaction—they’ve neither reported to the CNPD nor addressed the chaos, violating GDPR Article 33(1)’s 72-hour notification mandate.
Then comes the December 13, 2024, outrage: Foundever (senior) managers mocked
another whistleblower’s health condition in a meeting, as confirmed by the trainer’s statements
(February 24 and March 17, 2025), trampling GDPR Article 9 and Labour Code Article 29.
The retaliation followed: the trainer faced punitive shift changes on February 24, 2025,
leading to sick leave from February 27, 2025, without end of sick leave in sight, while the other whistleblower was fired on February 12, 2025, hours after raising the harassment in a call with a Foundever operations manager and HR official, breaching Labour Code Article 331 and Law No. 93/2021 Article 20.
Foundever’s responses are a textbook corporate dodge. Their Data Protection Officer’s
March 21, 2025, letter denies the December 13 breach, claiming “no evidence” despite the
trainer’s testimony, and sidesteps the systemic breaches entirely. The Senior HR Manager’s
March 24 letter doubles down, rejecting the harassment claim as baseless and falsely
stating the whistleblower missed a December 4, 2024, health exam without justification—he
was on sick leave with a GP note, per Labour Code Article 104(2).
Vivino’s silence speaks volumes, their refusal to comment woven into our narrative as a
damning indictment of their complicity, leaving Foundever to face the fallout of their client’s
inaction. Foundever’s refusal to provide demanded evidence, their silence on the GDPR
breaches, and their failure to engage in meaningful settlement negotiations by COB March
24, 2025, roar louder than any corporate spin.
This is a full-throttle uprising. The whistleblowers, backed by Cambridge Samuel, a fierce
advocacy force, seasoned (former) litigators, and a global law firm, are bringing the fight: complaints
to the ACT and CNPD, filed February 21, 2025, updated March 4 and March 15, and now bolstered with the March 17 evidence—Leadership Meeting Agenda, Slack Correspondence, and the trainer’s statement—are in motion. Criminal Complaints, against - among others - the leadership cadre, including, but not limited to it´s Portuguese administrators - one of them also being the CFO and responsible for Foundever EMEA - based in Paris, will be filed before Easter.
Given Foundever´s and Vivivo U.S. operations and the impact on U.S. clients, the FTC is a primary authority, with state attorneys general also poised to step in for broader enforcement and penalties, alongside court filings in Portugal, a class-action lawsuit across all affected countries including the U.S. seeking
$50M–$500M, all being filed promptly, with damages that could match TikTok’s €345M fine in 2023 or Meta’s €1.2B in 2023. The whistleblowers` calls are clear: Foundever and Vivino
must step up—overhaul data security, compensate victims, and report quarterly to
regulators, or face the fury of employees, clients and end users everywhere.
From a 16-month GDPR breach to HR’s vindictive tactics, this evidence demands
regulators act, impacting employees, clients and end users from Europe to the Americas.
The press is circling: this double-barreled crisis—trampling GDPR and basic decency—elevates the battle of two hard working emloyees, and we’re all cheering, saying, “At last, someone’s hitting HR and the execs where it stings.”
Contact: public-relations@cambridgesamuel.com / class-action@cambridgesamuel.com
Evidence Available: Upon request, redacted samples verifiable by regulators and media.
About Cambridge Samuel
Cambridge Samuel is a leading advocacy platform specializing in whistleblower cases, particularly in call centers, dedicated to pursuing justice for employees facing systemic
misconduct and data protection violations.
End of Release
RECRUITMENT SERVICES IN PORTUGAL
We specialize in Customer Services Jobs in the Lisbon area.
CUSTOMER SERVICES
We know how difficult the job market can truly be. That is why our team of experts does everything in its power to take the pressure off. We specialize in sourcing and recruiting in many local industries, with a focus on Customer Services. Whatever your needs may be, we are here for you. Contact us to jumpstart your career and make the process as simple as it can be.
HUMAN RESOURCES
Here at Cambridge Samuel we focus on sourcing best-in-class candidates for rewarding positions in the Lisbon and Porto area, and we specialize in the world of Human Capital. Contact us to let us know what you’re interested in and send us your CV so that we may help you find the right position best suited for your qualifications and skills.
EXPAT SUPPORT
We have successfully assisted many skilled people from - amongst others - Portugal, Germany, the Netherlands, Belgium, Hungary, Romania, France, Italy, Spain, Russia, Israel, Turkey, Marocco, the USA, Canada, Angola, Nigeria and Scandinavia in finding a suitable job in Lisbon or Porto. We support our clients with all aspects of expat living in Portugal. From simple things as opening a bank account or registering at the Portuguese tax authorities, to more complex things as finding a suitable and safe place to live near your job.
CONNECT WITH US
​
Email:
jobs@cambridgesamuel.com (for employment)
legal@cambridgesamuel.com (legal / regulatory issues)
class-action@cambridgesamuel.com (Law No. 83/95, Article 26).
Phone:
214 00 55 00
​
Disclaimer: Cambridge Samuel is a nonprofit advocacy platform, not a legal firm. For legal advice, consult a lawyer. We do not handle funds or engage in economic activities. Contact us at class-action@cambridgesamuel.com or legal@cambridgesamuel.com for inquiries.
​
​
​