ILN Data Privacy Paper

Romania

Decision No 133 of 3 July 2018 approving the Procedure for the receipt and settlement of complaints Decision No 161 of 9 October 2018 approving the Procedure for conducting investigations Decision No 174 of 18 October 2018 on the list of operations for which it is obligatory to carry out a personal data protection impact assessment There are also soft law documents of importance for the interpretation of applicable law from the European Data Protection Board (former Article 29 Working Party), namely: Opinion No 2/2017 on data processing in the workplace; Working document on the supervision of electronic communications in the workplace; Opinion No. 8/2001 on the processing of personal data in the context of employment; Opinion No 6/2014 on the notion of legitimate interests of the controller under Article 7 of Directive 95/46/EC; Guidelines 9/2022 on personal data breach notification under the GDPR; Guidelines 01/2022 on data subject rights – Right of access;

2.3.

Upcoming

or

proposed

legislation (if applicable) There is no upcoming or proposed legislation in Romania. Scope of Application 3.1. Legislative Scope As per GDPR. 3 .1.1. Definition of personal data As per GDPR. 3 .1.2. Definition of different categories of personal data As per GDPR. 3 .1.3. Treatment of data and its different categories Regulation of personal and non- personal data: As per GDPR. Regulation of electronic and non- electronic data: As per GDPR. Specific Romanian regulations Three situations of data processing are regulated separately from the provisions of the GDPR, namely: Processing a national identification number The processing of a national identification number, along with the collection or disclosure of documents containing it, must

www.peterkapartners.com/e n/local/bucharest/

Made with FlippingBook - PDF hosting