IN THE SPOTLIGHT

Cyber security safe encrypted digital data networks for secure global information technology - Conceptual 3D illustration rendering

Healthcare provider fined for unauthorized disclosure

On 13 January 2025, the Romanian DPA announced a fine of the RON equivalent of EUR 2,000 imposed against a controller in the healthcare industry for violation of the GDPR. The violations pertained to the controller’s unauthorized disclosure of a patient’s login credentials. The fine was applied following an investigation triggered by a complaint stating that at one of the controller’s biologica…
Padlock With Keyhole icon in personal data security Illustrates cyber data or information privacy idea. blue color abstract hi speed internet technology.

Romania transposes the NIS2 Directive

On 30 December 2024, the Romanian Government adopted the Government Emergency Ordinance (GEO) 155/2024 which transposes the NIS2 Directive. The GEO 155/2024 was published in the Official Gazette and entered into force with its most provisions on 31 December 2024. According to the transitory norms of such enactment, some of its provisions will enter into force at a later day (for example, the…
Cyber security safe encrypted digital data networks for secure global information technology - Conceptual 3D illustration rendering

Public transport operator fined for driver monitoring

On 12 December 2024, the Romanian DPA announced a fine of the RON equivalent of EUR 4,000 imposed on a controller offering public transport services for violation of the GDPR. The violations pertained to the controller’s excessive monitoring of its employees. The fine was applied following an investigation triggered by a complaint stating that the controller installed in its vehicles audio-vide…

ARTICLES

Abstract digital data background. Wave with moving dots. Musical stream of sounds. 3D .

Romanian DPA Report – A Year in Review – 2023

Author: Iurie Cojocaru, Mihai Rotaru
Romanian DPA case studies – our top 5 picks 1. Unlawful disclosure of a photo Case study: A doctor complained to the Romanian DPA that the public hospital where she is employed published her personal data without her consent. The hospital (acting as controller) published…
AdobeStock_295690916 [Converted]

Trying to patch up an old law, the EDPB adopts a new ePrivacy guidance

Author: Iurie Cojocaru
It is hard to regulate technology. One of the reasons, amongst many others, is time. What you regulate today does not correspond to the technical landscape of tomorrow. Back in the first decade of 2000, when the ePrivacy Directive was adopted and amended, the European legislator did not…
AdobeStock_235934934 [Converted]

Romanian DPA Report – A Year in Review – 2022

Author: Iurie Cojocaru, Oxana Gorgan
Romanian DPA case studies – our top 5 picks 1. Refusal to provide the contractual clauses which represent the safeguard for the data transfer to a third country Case study: A data subject complained about the refusal of a financial banking institution to provide him with…

Speaking engagements

This technology-inspired data abstract background is perfect for capturing the essence of the internet's vast expanse of information.

NNDKP organized a webinar on the EU AI Act

On 28 May 2024, NNDKP organized the EU AI Act: First steps towards compliance webinar which focused on the legal updates introduced by the new regulation. Together with the participants, our colleagues, Iurie Cojocaru, Partner and Head of the Data Protection Practice, and Madalina Vasile, Managing Associate in the same practice, discussed about the legal provisions of the EU AI Act which compan…
This technology-inspired data abstract background is perfect for capturing the essence of the internet's vast expanse of information.

Iurie Cojocaru – speaker at the „GDPR – Data Privacy Observer 2024” conference

On January 25, Iurie Cojocaru, Partner and Head of the Data Protection Practice, was a speaker at the „GDPR – Data Privacy Observer 2024” conference. Iurie Cojocaru talked in the conference`s first session of discussions and shared information on the personal data protection requirements resulting from the EU`s Data Act, recently entered into force. Moreover, the third edition of the Romanian R…
Colaj 3

NNDKP organized an event dedicated to data protection

On Tuesday, November 21, NNDKP`s Data Protection practice organized an event focused on current issues in the field of data protection and security, an information and debate opportunity dedicated to clients. In an interactive discussion framework, the participants discussed topics of interest with NNDKP`s data protection team members and analyzed various situations encountered in practice, fac…

Statistics