GENPACT ROMANIA SRL – €10,000 Fine (Romania, 2026)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
GENPACT ROMANIA SRL was fined for not having strong enough security measures, which led to a cyber attack. This matters because it shows that companies must protect user data to prevent breaches. Small businesses should invest in better security to avoid similar issues.
What happened
GENPACT ROMANIA SRL suffered a cyber attack due to weak technical and organizational security measures.
Who was affected
Users whose data was compromised during the cyber attack were affected.
What the authority found
The Romanian data protection authority found that GENPACT ROMANIA SRL did not implement sufficient security measures to protect personal data.
Why this matters
This ruling emphasizes the importance of robust cybersecurity practices. Companies must take proactive steps to secure user data to avoid fines and breaches.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Romanian DPA has imposed a fine of EUR 10,000 on GENPACT ROMANIA SRL. The controller suffered a successful cyber attack due to insufficient technical and organisational measures. The attacker was able to exploit vulnerabilities in some passwords and in the way user accounts' authentication could be reset.
Related Enforcement Actions (0)
No other enforcement actions found for GENPACT ROMANIA SRL in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
4 February 2026
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€10,000
Enforcement Tracker ID
ETid-3028
About this data
Cite as: Cookie Fines. GENPACT ROMANIA SRL - Romania (2026). Retrieved from cookiefines.eu
Last updated: