How can I check if my Romania website is GDPR compliant?

You can use PrivacyChecker's free GDPR scanner to instantly audit your website. It checks cookie consent, privacy policy, security headers, and 25+ compliance points relevant to Romania's data protection requirements.

PrivacyChecker

🇷🇴

GDPR Compliance in Romania

România · Law no. 190/2018

TL;DR

Websites targeting users in Romania must comply with GDPR as implemented locally through the Law no. 190/2018. The supervisory authority is the Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP). Use our free scanner below to check your website instantly.

Check your website's Romania compliance now

Free audit — 25+ automated checks in 60 seconds

Scan My Website Free →

Data Protection Authority

Authority

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP)

Website

www.dataprotection.ro ↗

Local Law

Law no. 190/2018

Language

Romanian

Population

19 million

Key Requirements for Romania

Cookie consent required with clear information

DPO required per standard GDPR thresholds

National ID (CNP) processing heavily regulated

Data breach notification within 72 hours

Health data requires additional safeguards

Employee monitoring requires prior information

What Makes Romania Different?

Romania has a growing tech sector and the DPA has been issuing increasing numbers of fines, particularly targeting companies that fail to respond to data subject requests.

Romania Website Compliance Checklist

☐

Cookie consent banner that requires opt-in before non-essential cookies

☐

Clear identification of data controller and contact details

☐

Data Processing Agreement (DPA) with all third-party processors

☐

Lawful basis documented for each processing activity

☐

Data Subject Access Request (DSAR) process in place

☐

Data breach notification procedure compliant with 72-hour rule

☐

Data Protection Impact Assessment for high-risk processing

☐

International data transfer mechanisms documented (SCCs, adequacy decisions)

☐

Records of processing activities (ROPA) maintained

Frequently Asked Questions

What are the GDPR requirements for websites in Romania?

In Romania, websites must comply with GDPR as implemented by the Law no. 190/2018. Key requirements include obtaining explicit consent before setting non-essential cookies, providing a clear privacy policy, appointing a DPO when required, and notifying data breaches within 72 hours to the Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP).

Who enforces GDPR in Romania?

The Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP) is the supervisory authority responsible for enforcing data protection laws in Romania. They can investigate complaints, conduct audits, and issue fines up to €20 million or 4% of annual global turnover.

How can I check if my website complies with Romania data protection laws?

Use PrivacyChecker's free scanner to perform an instant audit of your website. Our tool checks 25+ compliance points including cookie consent, privacy policy presence, security headers, tracker detection, and more — all relevant to Romania's GDPR requirements.

Is your website compliant in Romania?

Find out in 60 seconds with our free GDPR scanner

Run Free Audit →

GDPR Compliance in Other Countries

🇩🇪Germany 🇫🇷France 🇳🇱Netherlands 🇪🇸Spain 🇮🇹Italy 🇧🇪Belgium 🇦🇹Austria 🇵🇱Poland