While CNIL’s recent decision to fine Google is still subject to legal challenge from Google, it is relevant to look into CNIL’s position in this matter, from the perspective of its potential impact on the future positions of other data protection authorities in similar matters and the risks associated with GDPR. The article below relies on publicly available sources and does not aim to draw any conclusions on the merits of the case or make any assessment of the respective factual situation of the matters to which CNIL’s decision refers to, but rather to look into CNIL’s reasoning and outline key aspects for consideration going forward by the market players.
Bucharest, April 11th 2019
Under the GDPR, every data controller that processes personal data through a data processor must conclude a GDPR-compliant data processing agreement with the processor. Parties may seek to negotiate the allocation of liability and shift it towards the other party. When doing this in Romania, we look at the interplay with the rules of the main forms of liability set out in the law.
Recent practice in the Romanian dispute resolution landscape has shown a rise in (i) litigation involving wrongful decisions concerning unpaid tax, lack of liquidities, and consequent lack of debt settlement, and (ii) cases of fraudulent acts linked to insolvent companies, mostly committed prior to the commencement of the insolvency proceedings.
Gun jumping refers to premature enforcement of a merger before obtaining clearance from the competition authority. While most companies are aware of this interdiction, it can be difficult to balance the scope of the competition standstill obligation during the pre-closing period and the measures taken by the acquiring company to protect the value of a target.