Region: Romania

UiPath hit with Romanian fine following data breach

Software provider UiPath will challenge a 346,598 lei (around €70,000) fine issued by Romania’s data protection authority, following a breach that disclosed more than half a million users’ personal data.

22 August 2023

ECJ to hear question on DPA obligation to explain fines

A Romanian court has asked the European Court of Justice to clarify data protection authorities' obligations to analyse and explain their decisions when imposing a fine.

21 March 2023

ECJ rules against Orange pre-ticked consent boxes

Companies need to be able to demonstrate that individuals have actively consented to data collection, the European Court of Justice has found – concluding that Orange Romania could not properly obtain consent through pre-ticked boxes.

11 November 2020

Scraper fights back against Ryanair lawsuit

An Irish court will hear allegations that Ryanair’s attempt to block a Romanian company from scraping its data constitutes an abuse of the airline’s dominant position.

29 June 2020

GDPR roundup: coronavirus concerns continue

Work continued apace across the continent over the past two weeks as data regulators issued fines, warnings and guidance – often focusing on coronavirus-linked data protection concerns.

22 June 2020

Advocate-general says offline data consent must be explicit

A European Court of Justice advocate-general has said Orange Romania could not use pre-ticked boxes to obtain permission to collect and store data.

05 March 2020

Romania fines bank and credit rating agency

Romania’s data regulator has fined Raiffeisen Bank and Vreau Credit after the credit rating agency leaked personal data to the bank.

14 October 2019

Legal blog hit with Romanian fine

Romania’s data regulator has fined the operator of a legal blog €3,000 after files containing customer details were made publicly available online.

15 July 2019

Hotel operator hit with Romanian fine

Romania’s data regulator has fined the operator of World Trade Center Bucharest €15,000 after customer information appeared online.

08 July 2019

UniCredit Bank hit with Romania’s first GDPR fine

Romania’s data regulator has fined UniCredit Bank €130,000 for disclosing payer data, including personal identification numbers.

05 July 2019

Unlock unlimited access to all Global Data Review content