Controller fined for data breach linked to processor’s employee misconduct
On February 6, 2025, the Romanian DPA announced the conclusion of an investigation concerning a cont…
![AdobeStock_469644365 [Converted]](https://privacyoutloud.ro/wp-content/uploads/2022/10/AdobeStock_469644365-Converted-710x355.jpg)
AI Act provisions on prohibited practices and literacy start to apply
On February 2, 2025, specific provisions of the European Union's Artificial Intelligence Act became …
Healthcare provider fined for unauthorized disclosure
On 13 January 2025, the Romanian DPA announced a fine of the RON equivalent of EUR 2,000 imposed aga…
Romania transposes the NIS2 Directive
On 30 December 2024, the Romanian Government adopted the Government Emergency Ordinance (GEO) 155/20…
Romanian DPA Report – A Year in Review – 2023
Author: Iurie Cojocaru, Mihai Rotaru
Romanian DPA case studies – our top 5 picks 1. Unlaw…Public transport operator fined for driver monitoring
On 12 December 2024, the Romanian DPA announced a fine of the RON equivalent of EUR 4,000 imposed on…
Romanian DPA issues fine and corrective measures for GDPR violations in healthcare sector
In October 2024, the Romanian DPA concluded an investigation into a healthcare sector controller for…
Romanian DPA fines controller with EUR 4000 following data breach
On 28 November 2024, the Romanian DPA announced a fine of the RON equivalent of 4,000 EUR imposed ag…
Unlawful GPS monitoring of employees fined with EUR 4,000 by the Romanian DPA
On 13 November 2024, the Romanian DPA announced a fine of the RON equivalent of EUR 4,000 imposed on…
The Romanian Cybersecurity Authority publishes the updated draft transposing NIS2 Directive
On 15 October, the Romanian Cybersecurity Authority (DNSC) has published the updated draft transposi…
