RENAULT COMMERCIAL ROUMANIE S.R.L. – €125,000 Fine (Romania, 2026)

€125,000Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal25 March 2026Romania
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

RENAULT COMMERCIAL ROUMANIE S.R.L. was fined €125,000 for not protecting personal data properly, which led to a cyber attack. This matters because it shows the importance of having strong security measures to protect customer information from breaches.

What happened

RENAULT COMMERCIAL ROUMANIE S.R.L. suffered a cyber attack due to inadequate security measures, resulting in personal data being exposed.

Who was affected

Customers whose personal data was compromised during the cyber attack on RENAULT COMMERCIAL ROUMANIE S.R.L.

What the authority found

The Romanian authority found that RENAULT failed to implement sufficient technical and organizational measures to ensure data security, violating GDPR requirements.

Why this matters

This case highlights that companies must prioritize data security to avoid hefty fines. It serves as a warning for other businesses to review their security practices.

GDPR Articles Cited

AI-verified

Art. 28(1) GDPR
Art. 32(1)(b) GDPR
Art. 32(1)(d) GDPR
Art. 32(2) GDPR
View original scraped data
Art. 28(1) GDPR
Art. 32(1) b) GDPR
d)
(2) GDPR

Original data from scraper before AI verification against source document.

Source verified 3 April 2026
articles corrected
Romania enforcementAutoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal actionsAll RENAULT COMMERCIAL ROUMANIE S.R.L. actions
Full Legal Summary
Detailed

The Romanian DPA has imposed a fine of EUR 125,000 on RENAULT COMMERCIAL ROUMANIE S.R.L. The controller suffered a successful cyber attack due to insufficient technical and organisational measures to ensure data security, resulting in a large quantity of personal data being published on a platform. Additionally, the controller failed to use data processors that could guarantee the technical and organisational measures ensuring data security.

Related Enforcement Actions (0)

No other enforcement actions found for RENAULT COMMERCIAL ROUMANIE S.R.L. in RO

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

25 March 2026

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

Fine Amount

€125,000

Enforcement Tracker ID

ETid-3071

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. RENAULT COMMERCIAL ROUMANIE S.R.L. - Romania (2026). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: