ILN Data Privacy Paper

Romania

Processing of personal data and special categories of personal data in the context of a task carried out in the public interest The processing of personal and special data necessary for the performance of a task carried out in the public interest shall be carried out with the establishment of the following safeguards by the controller or the third party: a) implementation of appropriate technical and organizational measures to comply with the principles of the GDPR, in particular data minimization and the principle of integrity and confidentiality; b) the appointment of a data protection officer; c) the establishment of storage periods depending on the nature of the data and the purpose of the processing, as well as specific periods within which personal data must be deleted or reviewed for deletion; 3.1.4. Other key definitions pertaining to data and its processing As per GDPR. Specific Romanian regulations The following are also defined: “Authorities and public bodies” – the Chamber of Deputies and the Senate, the Presidential Administration, the Government, ministries, other specialized bodies of central public administration, authorities and

autonomous public institutions, authorities of local and county public administration, other public authorities, as well as institutions under their subordination/coordination. For the purposes of the law, religious entities and associations and foundations of public utility are assimilated to public authorities/organizations; “National identification number” – the number by which an individual is identified in certain record systems and which has general applicability, such as: personal identification number, series and number of the identity document, passport number, driver's license number, social security number; “Remediation plan” – annex to the finding and sanctioning minutes of the offence, by which the National Supervisory Authority for Personal Data Processing establishes measures and a remediation deadline; “Remediation measure” – a solution ordered by the national supervisory authority in the remediation plan for the fulfilment by the public authority/organization of the obligations provided by law; “Remediation deadline” – a period of up to 90 days from the date of communication of the finding and sanctioning minutes

www.peterkapartners.com/e n/local/bucharest/

Made with FlippingBook - PDF hosting