Court partially overturns GDPR sanctions applied in the context of GPS monitoring
In the spotlight
IN THE SPOTLIGHT
Court partially overturns GDPR sanctions applied in the context of GPS monitoring
A recent court case involving a Romanian data controller and the Romanian Data Protection Authority (Romanian DPA) has concluded with a partial success for the company. While the fine imposed for GDPR violations was annulled in court, the reprimand related to excessive data retention remains in effect.
Background of the investigation
The investigation, completed in October 2024, was initiat…
The Romanian DPA sanctions a natural person and a market research company
Recently, the Romanian Data Protection Authority (ANSPDCP) announced two new sanctions for GDPR violations.
A company active in market research – fined for multiple GDPR breaches
Following complaints from two European supervisory authorities, the ANSPDCP investigated a Romanian-based company active in the field of market research. The investigation revealed several shortcomings - failure to …
![AdobeStock_295690916 [Converted]](https://privacyoutloud.ro/wp-content/uploads/2023/04/AdobeStock_295690916-Converted-320x240.jpg)
Romanian Cybersecurity Authority issues draft orders on NIS2 Notification and Risk Assessment
The Romanian Cybersecurity Authority (DNSC) has recently published some updates regarding the secondary legislation issued under the Government Emergency Ordinance 155/2024 (transposing NIS2 Directive).
Thus, the authority published the following draft documents:
The updated version of the Order on notification for registration – available in Romanian here (Notification Order);
The firs…
ARTICLES
GDPR | 7-year anniversary. Romanian DPA Publishes 2025 Q1 Enforcement Update
Authors: Iurie Cojocaru, Mihai Rotaru
As the EU General Data Protection Regulation (GDPR) marked its seventh anniversary on May 25, 2025, the Romanian DPA has released a short-form activity update covering the first four months of the year. The figures offer a snapshot of enforcement trends, complaint pattern…
GDPR | 7-year anniversary. Our top picks of past and upcoming judgements of the Court of Justice of the European Union
Authors: Iurie Cojocaru, Oana Stefan, Diana Albu
Our top judgements of the Court of Justice of the European Union (26 MAY 2024 – 25 MAY 2025) 1. Judgement in the Case C-621/22 - Koninklijke Nederlandse Lawn Tennisbond What the Court mainly said: According to the CJEU, a purely commercial interes…
Romanian DPA Report – A Year in Review – 2023
Author: Iurie Cojocaru, Mihai Rotaru
Romanian DPA case studies – our top 5 picks 1. Unlawful disclosure of a photo Case study: A doctor complained to the Romanian DPA that the public hospital where she is employed published her personal data without her consent. The hospital (acting as controller) published…Speaking engagements
NNDKP organized a webinar on the EU AI Act
On 28 May 2024, NNDKP organized the EU AI Act: First steps towards compliance webinar which focused on the legal updates introduced by the new regulation.
Together with the participants, our colleagues, Iurie Cojocaru, Partner and Head of the Data Protection Practice, and Madalina Vasile, Managing Associate in the same practice, discussed about the legal provisions of the EU AI Act which compan…
Iurie Cojocaru – speaker at the „GDPR – Data Privacy Observer 2024” conference
On January 25, Iurie Cojocaru, Partner and Head of the Data Protection Practice, was a speaker at the „GDPR – Data Privacy Observer 2024” conference. Iurie Cojocaru talked in the conference`s first session of discussions and shared information on the personal data protection requirements resulting from the EU`s Data Act, recently entered into force.
Moreover, the third edition of the Romanian R…
NNDKP organized an event dedicated to data protection
On Tuesday, November 21, NNDKP`s Data Protection practice organized an event focused on current issues in the field of data protection and security, an information and debate opportunity dedicated to clients.
In an interactive discussion framework, the participants discussed topics of interest with NNDKP`s data protection team members and analyzed various situations encountered in practice, fac…
