Cybersecurity breaches and liability under Romanian law: what companies must prepare for
As cyberattacks become more sophisticated and damaging, Romanian businesses must adapt to a rapidly volving legal landscape and prevent cybersecurity breaches. Since 2 January 2025, companies operating in Romania face stricter compliance obligations following the adoption of Emergency Ordinance No. 155/2024. This ordinance ransposes the updated NIS2 Directive (EU 2022/2555) into national law, significantly expanding […]
Data breaches in Romania: legal obligations and response under GDPR
In today’s digital environment, data breaches are not a matter of if, but when. Companies that collect, store, or process personal data must respond swiftly and lawfully when a breach occurs. The General Data Protection Regulation (GDPR) imposes strict obligations on organisations for breach notification, investigation, and mitigation. This article outlines the key legal responsibilities […]