Thu, Aug
43 New Articles

The Romanian DPA Fines yet Another Data Processor for Failure to Ensure Data Security

The Romanian DPA Fines yet Another Data Processor for Failure to Ensure Data Security

  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times

On 11 July 2022, the Romanian DPA announced it sanctioned a courier services company with a EUR 3,000 fine for breaching its obligations regarding the level of security that must be ensured with respect to personal data.

The investigation was launched following the receipt of several complaints reporting that the database of the company was for sale on a website that has since been seized by the Federal Bureau of Investigation (FBI).

During the investigation, the Romanian DPA found that the confidentiality of the data belonging to a number of 26,566 data subjects was breached, as such data were available for sale on web.

It is important to note that the company was sanctioned for the aforementioned breach in its capacity as data processor. From the publicly available sources, this is the third time in less than 30 days when the Romanian DPA sanctions a data processor for failing to comply with the data protection requirements.

Until recent, the Romanian DPA’s enforcement policy seemed to be revolving around punishing controllers for most GDPR-related breaches. However, moving forward, we might see more data processors sanctioned in case of non-compliance with the data protection requirements, given that the Romanian DPA appears to have changed its approach.

By Iurie Cojocaru, Partner and Co-head of the Data Protection Practice, Vlad Giurgiu, Associate, NNDKP

Romanian Knowledge Partner

Țuca Zbârcea & Asociații is a full-service independent law firm, employing cross-disciplinary teams of lawyers, insolvency practitioners, tax consultants, IP counsellors, economists and staff members. It also operates a secondary law office in Cluj-Napoca (Romania), and has a ‘best-friend’ agreement with a leading law firm in the Republic of Moldova. In addition, thanks to the firm’s dedicated Foreign Desks, the team provides the full range of services to international investors seeking to gain a foothold or expand their existing operations in Romania. Since 2019, the firm and its tax arm are collaborating with Andersen Global in Romania.

Țuca Zbârcea & Asociaţii is providing legal services in every aspect of business, covering all major areas of practice: corporate and M&A; litigation and international arbitration; corporate tax; public procurement; TMT; employment; insurance; banking and finance; capital markets; competition; healthcare and pharmaceutical; energy and natural resources; environmental; intellectual property; real estate; regulatory legal services.

Țuca Zbârcea & Asociaţii is a First-Tier law firm in all international legal directories and a multiple award-winning law firm both locally and internationally. It received the CEE Deal of the Year Award (DOTY Awards 2021) and the Law Firm of the Year Award: Romania (IFLR Europe Awards 2021). 

Firm's website.

Our Latest Issue