Laws ›

Romanian Data Protection Act (Law No 677/2001) - Article 32

Definition

Imposes fines ranging from 10 million to 250 million ROL for contraventions involving the processing of personal data in breach of specific provisions.

Excerpt

The processing of personal data by a data-controller or by a delegate n empowered person of the data-controller, whichile breaching the provisions of Articles 4-19, or while disregarding the terms in rights set out at 12-15 or in Article 17, is considered a contravention. If the offence , if the respective maladministration falls short of a criminal offence, the fine can be and is fined from 10 million to 250 million ROL.

View full legislation ›

Related cases

Autoritatea Naţională de Supraveghere a Prelucrării Datelor cu Caracter Personal v. Orange România SA

Orange România SA was found responsible for using pre-ticked boxes as a form of obtaining consent from customers for storing copies of their identity documents, which does not constitute active consent.

Related deceptive patterns

Preselection
The user is presented with a default option that has already been selected for them, in order to influence their decision-making.
Legal enforcement database by Leiser, Santos and Doshi

The information about laws and cases on this website is brought to you by the Leiser, Santos and Doshi enforcement database.

About us