Skip to content
News
EN

ANSPDCP (Romania) - Fine against Ascendex Technology SRL

GDPRhub

Content

The DPA fined a cryptocurrency exchange platform RON 57,839 (€11,000) for failing to properly and timely handle data subjects’ erasure requests in a cross-border processing case. English Summary. Facts. The Romanian DPA (ANSPDCP) launched an investigation into the cryptocurrency exchange platform Ascendex Technology SRL (the controller). The DPA was notified by the French DPA (CNIL) regarding a complaint filed by a data subject in France against the controller. Since the controller’s sole establishment was in Romania and its processing substantially affected data subjects in multiple Member States, which constituted cross-border processing under Article 4(23)(b) GDPR, the Romanian DPA accepted its role as the lead supervisory authority. During the investigation, the DPA found that the controller handled the data subject’s erasure request only after approximately 12 months. It noted that the controller did not provide a final response regarding the fulfilment of the request nor justifie

Related across sources

Similar Content