Law 124/2025 approves with amendments the NIS2-transposing ordinance in Romania
On 7 July 2025, Law No. 124/2025 was published in the Official Gazette of Romania, approving Governm…
In the spotlight
Romanian DPA fines controller with EUR 4000 for unlawful storage of non-essential cookies
On 27 June 2025, the Romanian DPA announced a fine of the RON equivalent of 4000 EUR imposed against…
Romanian DPA fines controller with EUR 3000 following multiple GDPR breaches
On 26 June 2025, the Romanian DPA announced new sanctions, consisting of 2 fines of 2000 EUR and 100…
Failure to respond to authority requests for information sanctioned by the Romanian DPA
Lately, the Romanian DPA announced two new sanctions for violation of GDPR article 58.
A natural …
Court partially overturns GDPR sanctions applied in the context of GPS monitoring
A recent court case involving a Romanian data controller and the Romanian Data Protection Authority …
The Romanian DPA sanctions a natural person and a market research company
Recently, the Romanian Data Protection Authority (ANSPDCP) announced two new sanctions for GDPR viol…
![AdobeStock_295690916 [Converted]](https://privacyoutloud.ro/wp-content/uploads/2023/04/AdobeStock_295690916-Converted-710x355.jpg)
Romanian Cybersecurity Authority issues draft orders on NIS2 Notification and Risk Assessment
The Romanian Cybersecurity Authority (DNSC) has recently published some updates regarding the second…
Draft Order on notification process for registration
Following our recent post on the Draft Order published by the National Directorate for Cybersecurity…
DNSC publishes draft order on notification process for registration and information transmission
The National Directorate for Cyber Security (DNSC) published yesterday, March 6, 2025, the Draft Ord…
Controller fined for data breach linked to processor’s employee misconduct
On February 6, 2025, the Romanian DPA announced the conclusion of an investigation concerning a cont…
