Romania: Data Protection Authority investigation into Bitdefender over alleged GDPR violations following email security breach

Progress

Current status

in force

30 Apr 2025 in force

Scope

Implementers

Romania

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

software provider: other software

Government Branch

executive

Government Body

data protection authority

Implementation Level

national

Timeline of events

30 Apr 2025

in force

Data Protection Authority issued ruling on Bitdefender for GDPR violations following email security breach

On 30 April 2025, the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) concluded an investigation into Bitdefender SRL and found violations of Article 32(1)(b) and (d), as well as Article 32(2) of the General Data Prote…

Source

Event type investigation

Action type ruling

Government branch executive

Government body data protection authority

Progress

Scope

Timeline of events

Data Protection Authority issued ruling on Bitdefender for GDPR violations following email security breach

Related changes