GDPR | 4-year anniversary – Our top picks of past and upcoming judgements of the Court of Justice of the European Union
Romanian DPA fines controller with EUR 3000 following multiple GDPR breachesOn 26 June 2025, the Romanian DPA announced new sanctions, consisting of 2 fines of 2000 EUR and 100…
Failure to respond to authority requests for information sanctioned by the Romanian DPALately, the Romanian DPA announced two new sanctions for violation of GDPR article 58. A natural …
Court partially overturns GDPR sanctions applied in the context of GPS monitoringA recent court case involving a Romanian data controller and the Romanian Data Protection Authority …
The Romanian DPA sanctions a natural person and a market research companyRecently, the Romanian Data Protection Authority (ANSPDCP) announced two new sanctions for GDPR viol…
Romanian Cybersecurity Authority issues draft orders on NIS2 Notification and Risk AssessmentThe Romanian Cybersecurity Authority (DNSC) has recently published some updates regarding the second…
Draft Order on notification process for registrationFollowing our recent post on the Draft Order published by the National Directorate for Cybersecurity…
DNSC publishes draft order on notification process for registration and information transmissionThe National Directorate for Cyber Security (DNSC) published yesterday, March 6, 2025, the Draft Ord…
Controller fined for data breach linked to processor’s employee misconductOn February 6, 2025, the Romanian DPA announced the conclusion of an investigation concerning a cont…
AI Act provisions on prohibited practices and literacy start to applyOn February 2, 2025, specific provisions of the European Union's Artificial Intelligence Act became …
Healthcare provider fined for unauthorized disclosureOn 13 January 2025, the Romanian DPA announced a fine of the RON equivalent of EUR 2,000 imposed aga…