Unicredit Bank SA – €15,000 Fine (Romania, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Unicredit Bank SA was fined EUR 15,000 for failing to protect personal data, which led to two separate data breaches. This situation shows how important it is for companies to have strong security measures to safeguard customer information. Businesses should prioritize data security to prevent breaches.
What happened
Unicredit Bank SA failed to implement sufficient technical and organizational measures to ensure data security, resulting in two separate data breaches.
Who was affected
Customers of Unicredit Bank SA whose personal data was exposed due to the bank's security failures were affected.
What the authority found
The Romanian DPA determined that Unicredit Bank SA did not comply with data security requirements under GDPR.
Why this matters
This ruling serves as a reminder that financial institutions must take data security seriously. Other banks and companies should evaluate their security protocols to avoid similar penalties.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Romanian DPA has imposed a fine of EUR 15,000 on Unicredit Bank SA. The controller failed to implement sufficient technical and organisational measures to ensure data security, resulting in two separate data breaches.
Related Enforcement Actions (0)
No other enforcement actions found for Unicredit Bank SA in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
3 February 2025
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€15,000
Enforcement Tracker ID
ETid-2688
About this data
Cite as: Cookie Fines. Unicredit Bank SA - Romania (2025). Retrieved from cookiefines.eu
Last updated: