Roumasport SRL – €10,184 Fine (Romania, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Roumasport SRL (the controller) notified the Romanian DPA (ANSPDCP) of repeated data breaches affecting a significant number of its customers. Consequently, the DPA launched an investigation into the controller. The DPA found that the controller failed to implement appropriate technical and organisational measures to ensure that the level of security corresponded to the risk posed by the personal data processing. Therefore, the DPA issued a fine of RON 50,920 (€10,000) to the controller for violations of Article 32(1)(b) GDPR, Article 32(2) GDPR and Article 24(1) GDPR.
GDPR Articles Cited
Roumasport SRL (the controller) notified the Romanian DPA (ANSPDCP) of repeated data breaches affecting a significant number of its customers. Consequently, the DPA launched an investigation into the controller. The DPA found that the controller failed to implement appropriate technical and organisational measures to ensure that the level of security corresponded to the risk posed by the personal data processing. Therefore, the DPA issued a fine of RON 50,920 (€10,000) to the controller for violations of Article 32(1)(b) GDPR, Article 32(2) GDPR and Article 24(1) GDPR.
Related Enforcement Actions (0)
No other enforcement actions found for Roumasport SRL in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
30 December 2025
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€10,184
50,920 RON
GDPRhub ID
gdprhub-9719About this data
Cite as: Cookie Fines. Roumasport SRL - Romania (2025). Retrieved from cookiefines.eu
Last updated: