Enforcement
EN

S.C. PRIMONET RO S.R.L.: Insufficient technical and organisational measures to ensure information security

€20,000 fine - Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP)

€20,000 Fine
S.C. PRIMONET RO S.R.L.
ROMANIA
Insufficient technical and organisational measures to ensure information security
Sep 25, 2025 Source

Content

The Romanian DPA has imposed a fine of EUR 20,000 on S.C. PRIMONET RO S.R.L. The controller failed to implement adequate technical and organisational measures to ensure data security. This resulted in a cyber attack that compromised the bank details of customers and caused financial losses.

GDPR Articles: Art. 32 (1) a), b), (2) GDPR
Industry: Industry and Commerce