Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

Romania: ANSPDCP fines Estee Lauder Romania €3,000 for GDPR violations

The National Supervisory Authority for Personal Data Processing ('ANSPDCP') announced, on 11 June 2020, its decision ('the Decision') to impose a fine of SA RON 14,483.4 (approx. €3,000) on Estee Lauder Romania SRL for violations of Articles 6, 7, and 9 of the General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR'). In particular, the Decision notes that Estee Lauder illegally disclosed and collected personal data, including the names, surnames, telephone numbers, dates of birth, and health information of data subjects, without obtaining their consent or relying upon another legal basis for processing.

You can read the Decision, only available in Romanian, here