fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " Romania "

Romanian DPA fines UniCredit €130,000 for data protection by design failures

The National Supervisory Authority for Personal Data Processing (‘ANSPDCP’) announced, on 4 July 2019, that it had fined UniCredit Bank S.A. €130,000 for breach of Article 25(1) of the General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) relating to the principles of data protection by design and by default.

The ANSPDCP found that failure to implement appropriate technical and organisational measures designed to effectively implement data protection principles and integrate necessary safeguards in the processing of data led to the disclosure of data concerning 300,000 data subjects during the period of 25 May 2018 to 10 December 2018

Source: Romania: ANSPDCP fines UniCredit €130,000 for data protection by design failures

European Commission urged to investigate Romanian GDPR implementation

Issue The Romanian law implementing the General Data Protection Regulation (GDPR) allows national political parties to process personal data, including sensitive data, in a manner that disregards citizen rights. Law no. 190/2018 excludes the need to acquire consent for processing personal data, including sensitive data.

Source: European Commission urged to investigate Romanian GDPR implementation

Romania uses EU data protection law to silence journalists

An award-winning journalism outlet in Romania is being threatened with fines by the country’s data protection authorities – for having disclosed connections, on Facebook, of powerful politicians and a firm embroiled in scandal.

Source: Romania ‘using EU data protection law to silence journalists’

The Romanian Draft Law regarding the General Data Protection Regulation (GDPR)

About two months before the data protection regulation is due to come into force, there was a Draft Law, designed to substantiate the GDPR legislation allocated to the legislators of member states.

It was firstly filed with the Romanian Senate, withdrawn and registered on 3rd April with the Chamber of Deputies. The Draft Law was initially open for public debate until 8th May. However, on 13th April, this term was shortened without any official notice and the public debate was closed on the same date. Hence no proposals/suggestions where registered. Meanwhile the Draft Law undergoes the approval procedure; on 19th April, the Economic and Social Council (“ESC”) approved it with amendments.

Source: The Romanian Draft Law regarding the General Data Protection Regulation (GDPR) – Lexology

>