Orange Romania SA – €40,000 Fine (Romania, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Orange Romania was fined €40,000 for not deleting user data when requested. The company also collected and stored data without a proper legal reason. This case emphasizes the need for businesses to handle user data requests promptly and legally.
What happened
Orange Romania failed to erase user data as requested and stored data without legal basis.
Who was affected
Users whose data was improperly stored and not erased upon request.
What the authority found
The authority found that Orange Romania did not comply with data protection rules regarding data erasure and legal basis for data storage.
Why this matters
This fine serves as a reminder for companies to respect user requests for data deletion and to ensure they have a valid reason for collecting data. Businesses must prioritize compliance with data protection laws.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Romanian DPA has imposed a fine of EUR 40,000 on Orange Romania SA. The controller failed to fulfil a request for the erasure of data. The controller also execsevly stored and collect data of data subjects without legal basis.
Related Enforcement Actions (0)
No other enforcement actions found for Orange Romania SA in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
27 January 2025
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€40,000
Enforcement Tracker ID
ETid-2686
About this data
Cite as: Cookie Fines. Orange Romania SA - Romania (2025). Retrieved from cookiefines.eu
Last updated: