Controller fined for data breach linked to processor’s employee misconduct
On February 6, 2025, the Romanian DPA announced the conclusion of an investigation concerning a cont…
In the spotlight
![AdobeStock_469644365 [Converted]](https://privacyoutloud.ro/wp-content/uploads/2022/10/AdobeStock_469644365-Converted-710x355.jpg)
AI Act provisions on prohibited practices and literacy start to apply
On February 2, 2025, specific provisions of the European Union's Artificial Intelligence Act became …
Healthcare provider fined for unauthorized disclosure
On 13 January 2025, the Romanian DPA announced a fine of the RON equivalent of EUR 2,000 imposed aga…
Romania transposes the NIS2 Directive
On 30 December 2024, the Romanian Government adopted the Government Emergency Ordinance (GEO) 155/20…
Public transport operator fined for driver monitoring
On 12 December 2024, the Romanian DPA announced a fine of the RON equivalent of EUR 4,000 imposed on…
Romanian DPA issues fine and corrective measures for GDPR violations in healthcare sector
In October 2024, the Romanian DPA concluded an investigation into a healthcare sector controller for…
Romanian DPA fines controller with EUR 4000 following data breach
On 28 November 2024, the Romanian DPA announced a fine of the RON equivalent of 4,000 EUR imposed ag…
Unlawful GPS monitoring of employees fined with EUR 4,000 by the Romanian DPA
On 13 November 2024, the Romanian DPA announced a fine of the RON equivalent of EUR 4,000 imposed on…
The Romanian Cybersecurity Authority publishes the updated draft transposing NIS2 Directive
On 15 October, the Romanian Cybersecurity Authority (DNSC) has published the updated draft transposi…
The Romanian DPA has imposed a fine of €2,000 and issued two warnings for several GPS-related violations
On 2 September 2024, the Romanian DPA announced that it had imposed a fine of €2,000 and issued two …
