Bucharest Court of Appeal partially overturns GDPR sanction by annulling corrective measure
A recent data protection-related court case involving a Romanian data controller challenging GDPR-re…
In the spotlight
Gambling company sanctioned for unlawful processing and failure to verify data accuracy
On April 28, 2026, the Romanian DPA concluded an investigation into a gambling company. The DPA foun…
An engineering and technical consulting company sanctioned for inadequate security measures
On April 3, 2026, the Romanian DPA concluded an investigation into an engineering and technical cons…
Bucharest Tribunal confirms DPA sanction for unlawful disclosure of personal data
On March 16, 2026, the Bucharest Tribunal dismissed a complaint from a company in the oil and gas se…
![AdobeStock_295690916 [Converted]](https://privacyoutloud.ro/wp-content/uploads/2023/07/AdobeStock_295690916-Converted-710x355.jpg)
Suceava Tribunal confirms DPA sanction for unlawful disclosure of personal data and failure to notify the data breach
On February 19, 2026, the Suceava Tribunal dismissed a complaint from a company in the tourism secto…
Prahova Tribunal partially overturns GDPR sanction applied in the context of disclosure of data
A recent court case involving a Romanian data controller and the Romanian Data Protection Authority …
An automotive manufacturing company fined for inadequate data security measures
On January 19, 2026, the Romanian DPA concluded an investigation into an automotive manufacturing co…
A gambling company fined for failing to properly respond to data access requests
On December 10, 2025, the Romanian DPA concluded an investigation into a gambling company. The DPA f…
Chartered accountant fined for inadequate data security measures
On November 27, 2025, the Romanian DPA wrapped up an investigation into a data controller operating …
Energy-sector controller fined for inadequate security measures
On October 9, 2025, the Romanian DPA announced the conclusion of an investigation concerning a contr…
