NTT DATA ROMANIA S.A. – €25,000 Fine (Romania, 2025)

€25,000Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal25 March 2025Romania
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

NTT DATA ROMANIA S.A. was fined €25,000 for not having enough security measures in place, which led to a data breach. They also failed to inform the authorities about the breach within the required time. This case highlights the importance of having strong security practices to protect personal data.

What happened

NTT DATA ROMANIA S.A. failed to implement sufficient security measures, resulting in a data breach and delayed notification to authorities.

Who was affected

Individuals whose personal data was compromised during the data breach at NTT DATA ROMANIA S.A.

What the authority found

The Romanian DPA found that NTT DATA ROMANIA S.A. did not take adequate technical and organizational measures to protect personal data, violating GDPR requirements.

Why this matters

This ruling emphasizes that companies must prioritize data security and timely breach reporting. Small businesses should review their security protocols to avoid similar penalties.

GDPR Articles Cited

AI-verified

Art. 32(1)(b) GDPR
Art. 33(1) GDPR
View original scraped data
Art. 32(1) b) GDPR
d)
(2) GDPR
Art. 33(1) GDPR

Original data from scraper before AI verification against source document.

Source verified 13 March 2026
verified correct
Romania enforcementAutoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal actionsAll NTT DATA ROMANIA S.A. actions
Full Legal Summary
Detailed

The Romanian DPA has imposed a fine of EUR 25,000 on NTT DATA ROMANIA S.A. The controller failed to implement sufficient technical and organisational measures, resulting in a data breach. The controller also failed to notify the DPA of the breach within 72 hours of becoming aware of the incident.

Related Enforcement Actions (0)

No other enforcement actions found for NTT DATA ROMANIA S.A. in RO

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

25 March 2025

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal

Fine Amount

€25,000

Enforcement Tracker ID

ETid-2703

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. NTT DATA ROMANIA S.A. - Romania (2025). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: