Draft Order on notification process for registration
Following our recent post on the Draft Order published by the National Directorate for Cybersecurity…
DNSC publishes draft order on notification process for registration and information transmission
The National Directorate for Cyber Security (DNSC) published yesterday, March 6, 2025, the Draft Ord…
Controller fined for data breach linked to processor’s employee misconduct
On February 6, 2025, the Romanian DPA announced the conclusion of an investigation concerning a cont…
![AdobeStock_469644365 [Converted]](https://privacyoutloud.ro/wp-content/uploads/2022/10/AdobeStock_469644365-Converted-710x355.jpg)
AI Act provisions on prohibited practices and literacy start to apply
On February 2, 2025, specific provisions of the European Union's Artificial Intelligence Act became …
Healthcare provider fined for unauthorized disclosure
On 13 January 2025, the Romanian DPA announced a fine of the RON equivalent of EUR 2,000 imposed aga…
Romania transposes the NIS2 Directive
On 30 December 2024, the Romanian Government adopted the Government Emergency Ordinance (GEO) 155/20…
Romanian DPA Report – A Year in Review – 2023
Author: Iurie Cojocaru, Mihai Rotaru
Romanian DPA case studies – our top 5 picks 1. Unlaw…Public transport operator fined for driver monitoring
On 12 December 2024, the Romanian DPA announced a fine of the RON equivalent of EUR 4,000 imposed on…
Romanian DPA issues fine and corrective measures for GDPR violations in healthcare sector
In October 2024, the Romanian DPA concluded an investigation into a healthcare sector controller for…
Romanian DPA fines controller with EUR 4000 following data breach
On 28 November 2024, the Romanian DPA announced a fine of the RON equivalent of 4,000 EUR imposed ag…
