Romania
S.C. PRIMONET RO S.R.L.
20,000 €
GDPR enforcement action by Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) on 2025-09-25.
Rank · Sector
#168
of 595 in Industry and Commerce
Rank · Romania
#19
of 283
Rank · All fines
#1,098
of 3,042
Case details
- Authority
- Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)
- Date
- 2025-09-25
- Controller / Processor
- S.C. PRIMONET RO S.R.L.
- Sector
- Industry and Commerce
- Quoted Articles
- Art. 32 (1) a), b), (2) GDPR
- Type of violation
- Insufficient technical and organisational measures to ensure information security
Summary
The Romanian DPA has imposed a fine of EUR 20,000 on S.C. PRIMONET RO S.R.L. The controller failed to implement adequate technical and organisational measures to ensure data security. This resulted in a cyber attack that compromised the bank details of customers and caused financial losses.
Open original source
Links to the regulator's original publication or another source.
Related fines
Romania
2019-06-27
130,000 €
ETid-57
UNICREDIT BANK SA
Finance, Insurance and Consulting
Romania
2026-03-25
125,000 €
ETid-3071
RENAULT COMMERCIAL ROUMANIE S.R.L.
Industry and Commerce
Romania
2023-11-13
110,000 €
ETid-2112
Rompetrol Downstream SRL
Transportation and Energy
Romania
2020-12-17
100,000 €
ETid-489
Banca Transilvania SA
Finance, Insurance and Consulting
Romania
2023-08-21
70,000 €
ETid-2013
Uipath SRL
Industry and Commerce
Romania
2023-06-20
40,000 €
ETid-2135
Dante International SA
Industry and Commerce